f5ajans.com/
212.98.224.64301 Moved Permanently 228 B IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80fc735d7644bc3ce7813b223b5f5327
5897bf3f01b3b677a293573407bfc926563c89a7
d5c134f4ef25df6e221b71527fcd5082b9b193c17912519fac02ac96e68a9576
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 12 Nov 2022 00:18:10 GMT
Server: Apache
Location: https://f5ajans.com/
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11462
Expires: Sat, 12 Nov 2022 03:29:12 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3171
Cache-Control: max-age=126368
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:10 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 11:24:18 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8391107bfc5e4673e8a706f90f63768
5295ed0b1cb8bad4d3e851049acc7f0270937d12
ed5c27510100ffc4481be474ebcb020d147c645beb110604d5284eeeb8b97c02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ED5C27510100FFC4481BE474EBCB020D147C645BEB110604D5284EEEB8B97C02"
Last-Modified: Fri, 11 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5319
Expires: Sat, 12 Nov 2022 01:46:49 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 23:44:06 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2044
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sv5y2DwBs3+4gv1/lrrXiNfDHuW8n32t7fqCZuLu3uLB+pHQEddU59RsvJJTnoCqrtbM1ikCjNg=
x-amz-request-id: 34E9Y4CRDSW57DQ3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 12 Nov 2022 00:12:46 GMT
age: 324
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 12 Nov 2022 00:18:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 20f75784a3740d4b76334234c53ff241
7f1e63420f4f332f5aba87652f7b42cd7e51972f
37b829fdab29feb0608495e53ec1b891cc90a3ff9ff00bc1ea3aeb8620fab770
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37B829FDAB29FEB0608495E53EC1B891CC90A3FF9FF00BC1EA3AEB8620FAB770"
Last-Modified: Sat, 12 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 12 Nov 2022 06:18:10 GMT
Date: Sat, 12 Nov 2022 00:18:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 23:24:58 GMT
cache-control: public,max-age=3600
age: 3192
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6504
Cache-Control: max-age=124625
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:11 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:55:16 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0ZYe2u/Tk9619/EF2zSZRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XVDPC3namjCVzACRbCjh7br16aU=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/
212.98.224.64200 OK 43 kB IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46242), with CRLF, LF line terminators
Hash 4ab76e8e1e96040f11fc2fe264a141a7
bf57e404016da79f9b61e4b28497f293cfa4c7a6
0e8535ff264ca61255d8bef80032ecdfad19284b00c1e4dddfbf3e668d778dc2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET / HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:10 GMT
Server: Apache
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/", <https://f5ajans.com/wp-json/wp/v2/pages/2952>; rel="alternate"; type="application/json", <https://f5ajans.com/>; rel=shortlink
Set-Cookie: vchideactivationmsg_vc11=6.5.0
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Sat, 12 Nov 2022 00:18:10 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 42893
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css
212.98.224.64200 OK 88 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with no line terminators
Hash 3b7f5df41b642a693b1ef357ecbc68d2
a9cc6166fc9106327eaec187d47d794e112f8e61
0c2e7380163dd16e4df76568ff56a96aa343ad2079ab7382a5ff02f493314840
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-svgicons/cwssvgi_f-7d460bc32828ea28737f7f05c323c6f1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 88
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
212.98.224.64200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (47826)
Hash 3b8c4b8f6260a403d6206f241159bb38
4ccf913d00b5b7f54b195883578c678ca92457ed
1e4d3d74bdad2b40969b13402b41765b074c8fbd0e2587840e2aa70a0c3c9121
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 12505
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css
212.98.224.64200 OK 304 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (607), with no line terminators
Hash c0e0c84455c91447767668980791c49b
eb0a49c4f714eba209648b8b708151077d653dc8
f1603b574b2ad999be6b4d6c1ae135a0cac9d28e78886a2d49db1a7bbf129247
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/core/css/gutenberg-aff1ea626bc579f731788f94ba01f202.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 304
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1
212.98.224.64200 OK 189 B URL HTTP/1.1 f5ajans.com/wp-includes/css/classic-themes.min.css?ver=1
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 189
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css
212.98.224.64200 OK 854 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2237), with no line terminators
Hash c32d27fc309681153da63de98aaff6a5
73f0323c876b6bd28259d6c62a2368fa264c6494
86b7134de37f8ef8abe492992f7fa041baf56ada3318ac967ed5f9dbe5c3e82e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles-eb1744f0e348ac76b724ef6e1653aa49.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 854
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css
212.98.224.64200 OK 228 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (526), with no line terminators
Hash 11dd4a3762ed1077bdd0940b9e6f6f46
56a5245711c6d653b40b1a484de9e43b7f5590fe
324b86c570d1f17665410d3a333b820c81f1ca6d189a77a05a8dc1917a66e8ad
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/css/main-72ac9081f547118d5479066d6144f506.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 228
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
212.98.224.64200 OK 9.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (50505), with no line terminators
Hash 072dbf4f6a4480bd2ddf68836618aa7b
d26138229512d24b6ce053ce5b3e58e07e94bad7
f8cd4bbf86e1a88ef650e1ed2d58bc1673d8b516f1e48e2d69f7089355a9b19f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 9500
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
212.98.224.64200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (57233)
Hash f63de6e9825762bacc6b733499464697
4957b8c5d14978cd1fada281301a0af1348e22ff
9520c47f7f13ceba096eaaa30fc6b7c6484c772f387b45f4cd57671508ff9ae6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 12292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css
212.98.224.64200 OK 1.2 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (4115)
Hash 33429ccbb8cda2a2b149bce9104ac071
1039527f0b6b1087994bc0c56fa3e3371058b614
0b9e08029a6a2ecee528fcd3b730ba6256daee15f72e39be0affc3443b63bee0
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/jquery.fancybox-e5e9a0cfd1ff61cb9e07a76fb004e321.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1234
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css
212.98.224.64200 OK 2.0 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (15221), with no line terminators
Hash 8d6843f258f239fb8b1345faae9ce93a
caf42170e921b93d6e439ed4d5c39953ab9ef1a1
ae1f2a23c55e214450c5c1e6071dbe9b0f5a901c2c01f25f3ac492a020d45abd
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/select2-2f77bcb0d83e484e1704da36cce9cc1d.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13fa5c30-6136-43f2-a03b-10bef31fb9ca.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13fa5c30-6136-43f2-a03b-10bef31fb9ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f50fc8e620dd1609bd5551d3cc883bc7
2e7020da5b16b5a4b70a770e5c86d31cdbbb437c
dee271c7472440f751722b893089188cc500182616cb4e4ad08f4501285e0423
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13fa5c30-6136-43f2-a03b-10bef31fb9ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7278
x-amzn-requestid: 9a988a74-3789-40df-b9b9-bcb632980fef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhQE6toAMF30A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-01b8f9bc4195e9f93cb981c2;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AuiV1YptN3Qa2t4aC7Jj5gXIhbmNuO25w9Gd-o54Dz-qn7YYeyYB1w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:47:57 GMT
age: 9015
etag: "2e7020da5b16b5a4b70a770e5c86d31cdbbb437c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F292d386e-36b4-4614-bebd-2fe9361cfd1d.webp
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F292d386e-36b4-4614-bebd-2fe9361cfd1d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e83775b8f2c36b850c9d82a13ed2a2a
784ce1f6b6aea8fdf1fab68595ae2617318036d6
8ccec617059cbb0ecf2bc4d4ea6734b1427e169ccb57547a1e04f67a23321751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F292d386e-36b4-4614-bebd-2fe9361cfd1d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12114
x-amzn-requestid: f30767b8-93f7-4ba5-8e36-252bbacaaf22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdM6-EBMoAMF_Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec1df-7272e2a57ea9295b3c2429d7;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e-KN8k5ImyNWZ8tTxFqS0RncJXMslQs4UzXDtacRUiZJtvxSdtBxng==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:13 GMT
age: 9179
etag: "784ce1f6b6aea8fdf1fab68595ae2617318036d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 701700f42e1b0e528a63c3bd2a4c54e7
a3af603900538ea10e094981d298a0b37d0ab896
c84ac2d3524eb950a433aa01e1226d995d87948452e4e135a4661094923ca465
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6fac57d-aa5c-42c2-904b-58aa73c59975.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4268
x-amzn-requestid: 19d2f4e7-b6c1-4093-b54c-70a9a476ad89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhSEwYIAMFg7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-6e2f5a6147153e5c32cc4499;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1tbxcsSYcJuquYxeYfqcwaQaHpWmL9jwX31h1ZIyXO6i5A8gIbFQmA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "a3af603900538ea10e094981d298a0b37d0ab896"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cabc8a-e59f-4a5a-9daf-efc2f08dd558.webp
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cabc8a-e59f-4a5a-9daf-efc2f08dd558.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b7017621a1a6181f14a2f125a1ad50
ab420d5a89044e863e543330e00aa00f12f1c490
da668278aacf51a38a1aaf687f3baf938dd288cf90ec791533c92e61ba716ed2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cabc8a-e59f-4a5a-9daf-efc2f08dd558.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8188
x-amzn-requestid: 27e084b6-0fc0-4398-a591-8317e81b96c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMiTFvJoAMF4gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec141-33db0c401d7e5c1721b4365d;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: MXrj42s2oh1Fwhea0h3w20rZeSE7DCOIx0XvaXBL9EeLnseNffwveQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 21:45:12 GMT
etag: "ab420d5a89044e863e543330e00aa00f12f1c490"
content-type: image/jpeg
age: 9180
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f5d648-d178-4f63-98ef-7a2f4504174e.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f5d648-d178-4f63-98ef-7a2f4504174e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93d01c3c2422df3f7994d3496069dc37
96a4243e7f538fdd4e0aec4f39b058a08a4898e9
1fbc7efb3dfb058984abf1fbe60021212ff1bca8e366f03b1752c615e5249e55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84f5d648-d178-4f63-98ef-7a2f4504174e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7493
x-amzn-requestid: 077e815e-bbfc-472c-9d22-a9f0e7cda511
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdNDhGYvIAMFygQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec216-3a8a5a6f41b8ade53ff48dce;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:43:50 GMT
x-amz-cf-pop: YVR50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4OOiKELCGHOkACWtRl9DqyfkKqKzqa1FwNJKQ5aOq2Ivb6pDfPYLWw==
via: 1.1 feda34dcbf6a00e232656b7983c2c7f0.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 22:00:55 GMT
age: 8237
etag: "96a4243e7f538fdd4e0aec4f39b058a08a4898e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css
212.98.224.64200 OK 3.7 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (53122)
Hash 017d1bf7f5291bd7da91e23af2a04af4
d828e569c95c0dc2ed7007450db3b3ed2c7e3fbe
c9cf3cc90c918dc57634cc9dec6a38739218a06a5faa09267a9807abaae37fa6
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/animate-9682372a3d0b532a0408f68b709706ee.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 3689
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
212.98.224.64200 OK 5.0 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 21 Jun 2022 01:30:16 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 5009
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
212.98.224.64200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (6939), with no line terminators
Hash 18e953f02b58b63b9dd772e1e13cd1d8
a6fa007d26ae7131653d3526e5316cf713f541ac
7219a399470e875d55a165ceeb12d535080e91ac3448efbdb620e5cd615b7493
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1523
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash b474f74278f0bc7d8a7d6a66c3dcc2dd
6aad727d11a42fefbcabe6af4f0d32c42c946043
db18a18706d236333a7e8671728aea6adbe89e54905799cb5dc8d32feadf2e53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
212.98.224.64200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (6826), with no line terminators
Hash 45dc63cec549cd8f1549939051502130
7b872738e94ae45bc326c859f05230d883ad3bc3
46f7e7e5dce285fc54ef800801f08ce563d219a04dbe4789cd2a6cb233c7eb71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1529
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5823b629e86542b63f4355ec5e67a126
97cbdbbb6b03e6ef7f3f45449245470ad8bd8292
96d8e39efb6eebd1413a4bc0fa6800781f636e70dc0ccadf6a546f26fa022755
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96D8E39EFB6EEBD1413A4BC0FA6800781F636E70DC0CCADF6A546F26FA022755"
Last-Modified: Thu, 10 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5646
Expires: Sat, 12 Nov 2022 01:52:18 GMT
Date: Sat, 12 Nov 2022 00:18:12 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-197116259-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-197116259-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 36389bd1cc70b33ef4ac11de1f231b2a
44aaf8e27dbaa21872df397a7a4250d676f5b6e0
3dc0ba2df26089e1d93b71db78d3cc03c73c79ce320f7ca311fd35d1d6eb7136
GET /gtag/js?id=UA-197116259-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 12 Nov 2022 00:18:12 GMT
expires: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=900
last-modified: Sat, 12 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43685
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1
212.98.224.64200 OK 443 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/style.css?ver=6.1
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
Hash a11f3ff8181293fe95aaf74a79ec9657
c1b75352ce45f92f484d4e6d45e804cfd40fc993
3699488f4dd939d210d633d11a99ff3a6c2bc58403a8968f69551647e0d95abc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/style.css?ver=6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 25 Aug 2020 08:32:32 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 443
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
212.98.224.64200 OK 12 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (53997)
Hash 53842c0e2c7e10f7b481d5255580a581
a0eaaa5ded250c0c3414ae820af88f9e6e9505ac
0b9b7393d51b1197eb8733ff39e2abf0f4099cea90a88878396f444f5a1c87c3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 11932
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash e7dc2623cb841be51d3e8857e015d8e1
cbfdb2a7b965598de893fef89d47e17763501acf
df1fc0809a603469e6abcf1f07a13d792550d68c862f80e38c00e47e9b233a5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css
212.98.224.64200 OK 14 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65536), with no line terminators
Hash a4f2debe10119a6f5fd93c9f959d8321
3b48d9fffc2dbb3d5ecd707661b78fc51f7db477
9c25ecc3c364f42d2044402894df5d4b3f00d9cfe9afa75295b03c8c52e09e20
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/mystickyelements-front.min-bd237317c544b5d840a231d066a21f65.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 14331
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css
212.98.224.64200 OK 3.0 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (19308), with no line terminators
Hash 6e10cf5685c18133c2c9be2d62f15d82
a10231172bdbe06aa5b08d495fc4b5f5ea70183f
5c60394e07f8ffea554186a4f8a5ee9fbef13fe6c86d113d57a558fc417f4fe5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/css/intlTelInput-45362dee0359a07ff8c4675425d0eea8.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2959
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
212.98.224.64200 OK 4.2 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
212.98.224.64200 OK 46 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (42889)
Hash 71eab11cb0b4102cd28a75f8776b01bd
2fd9497fbce8c459cc023feedaf182dab410c2e3
5388666fa82846ed8fbc6e60ed53ab4d0d04617cc8f08de299630a1f94dca4da
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:22:47 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 46107
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
212.98.224.64200 OK 63 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash de7a3d23f28aa973120ccaad669aac9a
fbc57cff4fea4a3995d075e5372d6a72400bfe97
866d09f4be3e3f7b09211c8f234a3023a91575ed8f05002a3c4165d02f9da3bc
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 62832
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css
212.98.224.64200 OK 46 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65359)
Hash b95490b8aa4182c6578b631568241845
9f3a3c9846684666cab0b4816bbf9f9658436596
db6cea54df089a6d2535242604e48fa5c99673a44a282f9f346dea82b45b8236
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/js_composer/assets/css/js_composer.min-8f20ddf6ce723ac8030424c9f38a046e.css HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 45985
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css; charset=utf-8
f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
212.98.224.64200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 30995
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
212.98.224.64200 OK 6.5 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 287748e15cc4a588d0df39da369d9035
b02e10a775f9d6ab54d448acffbc9253e2d9bfb9
742f6e950eecbeaf0c308f5d3877e48d6d57d48b7f8bd458d81875feb4b58654
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 02 Nov 2022 23:24:34 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6532
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
212.98.224.64200 OK 2.5 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 21 Jun 2022 01:30:16 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 2457
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js
212.98.224.64200 OK 6.6 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (21904), with no line terminators
Hash 6338eb3d6b3c8e012fbd69faff9d1f31
e4a06b74ccdc8c6a48b390188abb563fb96bd55c
efe4b5fd5f71484a2f5c8d768f23c0d635dba433f5f4b4b54071a42400063e78
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index-4c0b7145ace95314ed0208dc7df68660.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6564
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js
212.98.224.64200 OK 19 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1956)
Hash 30af1359c2f365be05f4196a20d787eb
2588834ba493585523f2b1428e0c6166d68a9a18
cc368fcd96182e6131488a162e207962173d15f05f6a9947364e0e15d616a9ef
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/scripts-1fd490df10b2abb6ee752f0496060875.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 19275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js
212.98.224.64200 OK 6.7 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (3622)
Hash c926cbc059f70566e289c0e1ecb493c5
aaa5f7dc2b69a0e3a9ef3ec1b8691c00a403ee0b
f431cdc5410701a7e45016eb50c7abceb33757e827334ce017c7a225b55c0434
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/ajax_plugin-5f64e553c6e825d7d649cb353c4d84f9.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 6656
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js
212.98.224.64200 OK 491 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (628)
Hash eec3987dcf7c3a9d7e291fe8e57385fc
4208a8d30f0913b4f9854365d2aef868fb1d863f
8818c5ae93d5d56c0a6e8001e4bec9917a2d0fcfa3adbbaffa874940848e7d88
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-essentials/assets/js/simple-likes-public-b6d8cb982c334c759ca996354f35940b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 491
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js
212.98.224.64200 OK 1.3 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1414)
Hash 60535e9fa93951c881ce4537cb071970
5ed0f7bf2edf7ae24d9ce4d6bf7c734eb7f3566f
0656e18bcaac21f22ab610219ef4471b057cf42cb8c442124f8bf7b522c0a085
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/cws-megamenu/assets/js/cws_megamenu_front-65b625ce58451add43b18045f0e69ebe.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1252
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
212.98.224.64200 OK 85 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (64270)
Hash 5c4c9100dc4d7d89e37e9f422b5a1488
5fa1f3c688087031200421fc0b573c138497f605
ceec6ae869a887d18e4ed5d094ddb26a4a0530f5c4d84e25a00dc528c377afac
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.3.3 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:22:35 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0
212.98.224.64200 OK 10 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/slick.min.js?ver=1.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (42862)
Hash 49473c84b4d22550a618192eb064f66e
ba73379f5b95dd06705278488f19197c678cf286
3418a24a2984774d030cdb5882a8aaccb1336a2573918da59dd121532d6d0640
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/js/slick.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 06:20:55 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 10443
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0
212.98.224.64200 OK 1.8 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (3524)
Hash e8cfce58064ea661c60a996c77810250
5dc24e2578c3c71c9a390bb5875d6aa610c140ff
66e16db6252c38b5efcdd33193c35ce2c9fc6da1d57c05c8032a06a7877e7b5a
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/js/jquery.easing.1.3.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 08:02:45 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1827
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js
212.98.224.64200 OK 1.9 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type HTML document, ASCII text, with very long lines (932)
Hash 296ffe5cefcc3940eb8e300e24a25eff
43f63a21c60fdc87ebb2b293b28677d6c2f2f9f8
3fda313e2eab64d81f556ac1a7916c74a96178afd82b5fdf96ed5e762d47ded1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/sticky_sidebar-d4e76bfbbec42fd1644c8f4319a17550.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 1921
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js
212.98.224.64200 OK 789 B URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1266)
Hash d249b2f834bb7f748365189b4bda007c
a3136f07732ad8d022cf44e8e09e9e7ed20f3993
4d7b72cafedfe54292c9db9b5be6a777d66d0a2cf568ed27729fa7bbbd33d71a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/js/jquery.cookie-c9681059aaab0dd042bc267816f9a802.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 789
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6
212.98.224.64200 OK 3.6 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (18644), with no line terminators
Hash cbe690a876111311c8dc8c47d1f675c8
396873013fabe92d3e33c73252482c4b091ed285
f7c8996634123f22daf76b8f4ccbbb73e0e1be1c15a67ddb2586a272fde596b7
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/js/mystickyelements-fronted.min.js?ver=2.0.6 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:12 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:12 GMT
X-Powered-By: PleskLin
Content-Length: 3600
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js
212.98.224.64200 OK 13 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Unicode text, UTF-8 text, with very long lines (8762)
Hash 940c54b4128969ab75bf0553506fa6c7
00e2d9c41163dc64eabb2f70b2c7f7b991609255
7801ae2a2078d97fead92facfb82d1e73c6b0c1f221b0944034a978b97d81d06
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/mystickyelements/intl-tel-input-src/build/js/intlTelInput-d3ea801fa3bfddefbc2038a0b853056b.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 12:33:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 12687
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b123921e6757174aa4f1b66832fccc92
3f486a171fa31bc86225cccced1a9a0cfe6ad0ba
d4c31b8348849e5301d819265ac6986dc2a018d1a67fb4331e753c10ae2f9455
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6171
Cache-Control: max-age=147000
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Etag: "636e6962-117"
Expires: Sun, 13 Nov 2022 17:08:13 GMT
Last-Modified: Fri, 11 Nov 2022 15:25:22 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
212.98.224.64200 OK 5.8 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (20422)
Hash a1f0bae161b820176df3906769a1c37b
5a75598a989d789b7f77d8278852b44b9a3c3732
d5758982448d9afbb73111a8dde6a82b7de19c81a2f8c9ecc3ad8f1dd78c8f8c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 09:10:29 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 5817
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e3f9965225cba49c71506d7dee4c1647
d1d30248236cfe679fa182860d69634d30f5b0ca
8a2641a2fa1026f8893b4acf7f7c78c633a1408779f3063c87ad292729300d97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
216.58.207.195200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:38:57 GMT
expires: Fri, 10 Nov 2023 21:38:57 GMT
cache-control: public, max-age=31536000
age: 95956
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17188, version 1.0\012- data
Hash 393d0ca42a3bfbd34fb5b86f67e426ff
989cf4c13645ec6307b8bf399b448113ab6deaa5
90ebbbbaded0b3957104970c5523090c52c7863ad78cce4f9258f576e154397e
GET /s/rubik/v21/iJWKBXyIfDnIV7nPrXyi0A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:41:04 GMT
expires: Tue, 07 Nov 2023 21:41:04 GMT
cache-control: public, max-age=31536000
age: 355029
last-modified: Mon, 18 Jul 2022 19:21:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
216.58.207.195200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:11:05 GMT
expires: Tue, 07 Nov 2023 21:11:05 GMT
cache-control: public, max-age=31536000
age: 356828
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0
212.98.224.64200 OK 5.9 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/js/particles.min.js?ver=1.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (24010), with no line terminators
Hash 51f6b729141ae1f3401d186d04116ac5
88629bfbe81228d542dfa28cf270332c0312e35e
92c80e75c05e58a3d3568599d528c989350fe9b7016f4149305cc3c49c45c1e2
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/js/particles.min.js?ver=1.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 07:37:20 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 5932
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 12 Nov 2022 00:18:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js
212.98.224.64200 OK 1.5 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (1709)
Hash f7e26d3e8ebcdfaa7cdaf5b652db0ac8
b4a0443ba317b7265b84c2b27a094803f3979898
8c0fddabc90f02c47ca227f1a85dfd60040d44bfb20941c764431a09410ed367
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/plugins/akismet/_inc/akismet-frontend-d269496fba1a7b5b95e74b4eb1c34493.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 1487
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0
212.98.224.64200 OK 10 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (32004)
Hash f3c3a6db5d9c1d0581cb21a1f41c2623
bbbed7f4f95f94a7cdaf2eeb09376e09be28a013
9364f57a5c55b4b059d2f9ed023def8e987ba8a84e6c9a4568700f7a5f547e9e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/js_composer/assets/lib/bower/isotope/dist/isotope.pkgd.min.js?ver=6.5.0 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Tue, 09 Nov 2021 10:15:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 9978
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
212.98.224.64200 OK 1.8 kB URL HTTP/1.1 f5ajans.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 10 Nov 2021 23:25:22 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 1834
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 32720, version 1.0\012- data
Hash 272ba1c184e00d2f0280ebcba62a1a17
d359beb5700a9216c4d9dc7ad590790ec09cc748
89def7428656f40331c1430ee1dc1846ed1e30d7001707b548f9f816d27264a5
GET /s/nunito/v25/XRXV3I6Li01BKofIO-aBXso.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 07 Nov 2022 21:46:41 GMT
expires: Tue, 07 Nov 2023 21:46:41 GMT
cache-control: public, max-age=31536000
age: 354692
last-modified: Mon, 18 Jul 2022 19:31:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js
212.98.224.64200 OK 9.8 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2471)
Hash 8099fb35e544de23d2414f595ac777ea
b9d61f0a622094397c92a8824eaecde6f0d8a513
2ea1a54fc82a942e26aa4554978ccbd56f857dc39a9adbb254ed688abfe0c586
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/jquery.fancybox-0af4a0eb0c26bf091b8da5b5942c7a0a.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 9789
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js
212.98.224.64200 OK 4.4 kB URL HTTP/1.1 f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (2358)
Hash b14074548745608d26039dab6f31d93a
14a0d4dddccd62ea29c500717e47355d188b8461
c7a256f9fc1c0f1457a94a8cdb0ea669e1071e772488ed80a5580ceec38b30b0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/cache/min/1/wp-content/themes/metamax/js/odometer-2b2263c92d1d7ecb3e6f84e5fc344d17.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 21 Aug 2022 13:06:06 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 4394
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
212.98.224.64200 OK 2.7 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type ASCII text, with very long lines (7889)
Hash f30be0c895abc6e9806990de4a5c6a3f
4c3a309acb1a36dfc1196d0f99648efecc63edc6
5527d8cc1ff8638d6eb220120e306257877fcaf9c25f1b3e58c428808293a7d0
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/16.1/lazyload.min.js HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 27 Feb 2022 22:29:39 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=31536000, public
Expires: Sun, 12 Nov 2023 00:18:13 GMT
X-Powered-By: PleskLin
Content-Length: 2704
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png
212.98.224.64200 OK 4.4 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/bg-service-card-media.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 421 x 265, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d21efeade653bc05947b55ee728a487
f0f19f7c2d8133803fe9fff1d9ab856e49e992cb
d895cdf13f95441afc565b3542170ba84a9cadefc1c5dcd0bc41fe4bad75671c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/bg-service-card-media.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:56:40 GMT
Accept-Ranges: bytes
Content-Length: 4446
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2
212.98.224.64200 OK 28 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Hash 9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/cws-iconpack/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/cws-iconpack/flaticon-9bc308c9843d03a51796f7799a1ab177.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
embed.tawk.to/58a9f0de57ed180aac2168b3/default
172.67.38.66200 OK 929 B URL HTTP/2 embed.tawk.to/58a9f0de57ed180aac2168b3/default
IP 172.67.38.66:0
Hash 143a05818944d7291c89cfb73acb6606
2fc23e73be5bd1b466074ec95497da1f5bbba751
c542a792f596c42b745bde74a32c9cc92041fae43f63a03c54412122b3826ac0
GET /58a9f0de57ed180aac2168b3/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:13 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-635a92a45e8"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16d00f4c0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2
212.98.224.64200 OK 28 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 28524, version 1.0\012- data
Hash 9ea7e687e990ed77db419dec2fb34df4
0e1d6ed823aeeb0b7bbbc9459ed7a2cc2ca688c0
304bc94b0a82879653e1c883b29df76e1afe331437ad9ee090b0d7627d6a185d
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/flaticon/Flaticon.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/flaticon/flaticon-31f2011bb0652a70d4e469d8d94df01a.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Tue, 14 May 2019 09:15:12 GMT
Accept-Ranges: bytes
Content-Length: 28524
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
f5ajans.com/wp-content/themes/metamax/img/enter.png
212.98.224.64200 OK 514 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/enter.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 32 x 27, 8-bit colormap, non-interlaced\012- data
Hash 3fd2c8be7f198619f20e8ed5e6d46285
258217ef9b8471d979c1b691e58dd384866a1f5c
fe97a3755b2273a02bdf7e3c9a2fb416b00762eb563f8b6bd3497d245c2f00ee
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/enter.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:44 GMT
Accept-Ranges: bytes
Content-Length: 514
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png
212.98.224.64200 OK 2.8 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/form-arrow-1.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 256 x 94, 8-bit colormap, non-interlaced\012- data
Hash 9d732ac7cf364a10e5336306bb1039ed
523b2fdc7f91cf416961b0fe498c344eed330e62
fa765334727fbcb94cb05bfcc5c5fe4cd5aac720e82ca3487d243d8d1766770d
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/form-arrow-1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 06 Sep 2019 05:48:26 GMT
Accept-Ranges: bytes
Content-Length: 2846
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg
212.98.224.64200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/bg_a.jpg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x600, components 3\012- data
Hash 91464dea2f3edb3b4359a0112a66009c
cfcefa0cfeb5142e68f4ea0de8f472af49aafaa0
9ca42026e2398bff07330c704dc6ffd1d5ff670bafbb1458e72d0d45b73d11e5
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/07/bg_a.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:49 GMT
Accept-Ranges: bytes
Content-Length: 30715
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png
212.98.224.64200 OK 5.5 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/form-arrow-2.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 221 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 9787a3c349d510781a9f25cfb6cc077f
d8a7966f2f9d0cf7954a7d518a78e4ad1472ae3d
cdc12d7f7e2a607f6a2827c8b6f9084a49a5619ab449a23525a6b6e371152012
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/themes/metamax/img/form-arrow-2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/css/main-a48e314de8f5e08f7334b4a9dc582afd.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Wed, 04 Sep 2019 13:51:38 GMT
Accept-Ranges: bytes
Content-Length: 5492
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66
212.98.224.64200 OK 4.3 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/bg_text_b.jpg?id=66
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 585x585, components 3\012- data
Hash c453a4eaf934083493cd5393c055327f
81625301168b9e430964499ec6bcb994b6ff2828
ac23743686aeffe39f030d809c983638552bb251f6b9a421434474e7f40c6ade
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/uploads/2019/07/bg_text_b.jpg?id=66 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 18:59:55 GMT
Accept-Ranges: bytes
Content-Length: 4254
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff
212.98.224.64200 OK 102 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size 102 kB (101652 bytes)
Hash 100da06a3856fc4aac8fae7315367988
878c2b32627953f388a76489f6c3ab2747e3daca
c95af5277e77da5473984e2519a9da7290d7422f5065547d8fa9df604150e542
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/fonts/fa-solid-900.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Length: 101652
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100
212.98.224.64200 OK 5.3 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/07/Bg_n.jpg?id=100
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x320, components 3\012- data
Hash 7ef3a1dec54f562e93e276cf87b99e68
a0b85dfa5421eebec32bb15b858aa5799706c503
610ec2ced5a11beced9d49ff008bd15b293b596fc68b5dc7db4a07637ab86484
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/07/Bg_n.jpg?id=100 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:00:04 GMT
Accept-Ranges: bytes
Content-Length: 5251
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2
212.98.224.64200 OK 14 kB URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format (Version 2), TrueType, length 13564, version 330.32636\012- data
Hash e7d4bfa72a1f7d352fa6605501a3e2f2
afd94b571eff9da7d85490bdb4c9874419cd260d
d144631af733437b73fba8e784ab694a97fab80476e82325f7a58f6408b28850
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/fonts/font-awesome/fa-regular-400.woff2 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/themes/metamax/fonts/font-awesome/font-awesome-654bae776f681dc26ea4a0f1190a8784.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Wed, 18 Mar 2020 14:40:58 GMT
Accept-Ranges: bytes
Content-Length: 13564
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png
212.98.224.64200 OK 1.2 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon_003200320_3281.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash de9f31ae40750aee64ca9aab5edbc487
d0fa6bc142dcc4ffba03624e089cbf68f8362572
54bcce524c0982b96591c80caaae8c41638dc9f914a5f8183711957058ea6a04
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon_003200320_3281.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:27:30 GMT
Accept-Ranges: bytes
Content-Length: 1156
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png
212.98.224.64200 OK 7.4 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 198 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 11cf3b0c24c45809668efae12eb51207
39c2c0e492a07151aa354604e5229c9f94736b4b
fe0ea0ce14494e9e39e8390080518e70dbcb58e1cf83ae497d6b905d31588de3
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/logo-f5ajans_00c8003f0_3053.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 00:35:29 GMT
Accept-Ranges: bytes
Content-Length: 7449
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png
212.98.224.64200 OK 6.6 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/logo-2_009d00321_3055.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 157 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 27b5c87227925590a9bf457ac034b8b0
773bd21e71652a5fff00d472ed450a17553afb3f
f3c0283eb86a7f7807d274bcfec07d6c8eb5dc7239987dd2e82bda0f7d8c0c7c
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/logo-2_009d00321_3055.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 20:52:53 GMT
Accept-Ranges: bytes
Content-Length: 6632
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff
212.98.224.64200 OK 90 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 90060, version 331.-31261\012- data
Hash 423ddcd1c3685d59de8eb5ab68b2f007
b6f3cc5710bed4370123567befcfa143e7c2dfe5
7bbff24dee1b2ffa70e60a06a202d789b3fe9248200e3f89afa239f850eb5097
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/plugins/mystickyelements/fonts/fa-brands-400.woff HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/mystickyelements/css/font-awesome.min-b413115e42f511c6d2c564f990fe7aa1.css
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Last-Modified: Sun, 21 Aug 2022 12:31:51 GMT
Accept-Ranges: bytes
Content-Length: 90060
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:13 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg
212.98.224.64200 OK 75 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_bg.jpg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Macintosh), datetime=2019-07-25T05:31:46+03:00], baseline, precision 8, 1920x990, components 3\012- data
Hash 9b87cffda0d6a534833aa5ec31224af2
b83eddcd9115c974a41a81d83b44ad55bc915cfd
f30de2addac76456f5e7dde3233276b81fe9cde201577ce2b1ab5347150ddd73
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_bg.jpg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 74881
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png
212.98.224.64200 OK 143 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2019/09/welcome_img_045603481_2087.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size 143 kB (143265 bytes)
Hash 8cd364eba2762e2887aa4c028d781630
cea072f7cbe656d4b4d9b20a8b8264acd304a990
ece17bc56bd5542046bcd5d1004b5a6000fcbc898931a9d33982da2b0249ab5b
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2019/09/welcome_img_045603481_2087.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:02:12 GMT
Accept-Ranges: bytes
Content-Length: 143265
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png
212.98.224.64200 OK 88 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Hash 9455a9256201f7a71a437eab2db22a08
e16bdca6905251110c11506c64f9cba231dd35db
9d6db0cbc64055e8bd1f6a1be82ea4de0bee33ddc2db257a3de01e45ffe40949
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/amasya-e-ticaret-sitesi_045603481_3068.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:18:49 GMT
Accept-Ranges: bytes
Content-Length: 87625
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png
212.98.224.64200 OK 185 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 549 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size 185 kB (184691 bytes)
Hash 056cd87da8a61b27e4d6a2053eaf1e37
1b61e9111a87016fe4e4d5df46c90734e55ee5ec
1752824e860c71ab9279f8961989a593b879e68f0baeb8a58a40df1fb317da28
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/amasya-web-tasarimci_045603481_3066.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 22:15:06 GMT
Accept-Ranges: bytes
Content-Length: 184691
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:13 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
www.google-analytics.com/analytics.js
216.239.34.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.34.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 11 Nov 2022 22:46:56 GMT
expires: Sat, 12 Nov 2022 00:46:56 GMT
cache-control: public, max-age=7200
age: 5478
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png
212.98.224.64200 OK 779 B URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon-32x32.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 1df7e80889c3b56ee55d2aacbc11522b
3ea51e9b255a2b92053345a3e3f8930a53b96616
e61da40a5b08686577e4c3c2478929ddf59b1e1a4931d22b8930d85fd94f0a62
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon-32x32.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 779
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png
212.98.224.64200 OK 4.6 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/2021/01/cropped-icon-192x192.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 590886c93d6bb8a37d06de0a9b87eadb
6237bafee73c2a9267ed4549961b34d599ca7381
b31140344bf1b3adb30986492b3fb643917e6fb4081c9e90fb87d12518228e71
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2021/01/cropped-icon-192x192.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Sun, 31 Jan 2021 12:25:31 GMT
Accept-Ranges: bytes
Content-Length: 4640
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png
212.98.224.64200 OK 19 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el2.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 453 x 429, 8-bit/color RGBA, non-interlaced\012- data
Hash 030347cad80ea77c85f5f19deb873e90
580860119306c544c610f418321791b08a799ff6
b2ebb818e4f3babbfe6b7a1596331c5f58b79ac6a7c18d2f8c42534cdedc4664
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 18852
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el4.png
212.98.224.64200 OK 19 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el4.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 172 x 305, 8-bit/color RGBA, non-interlaced\012- data
Hash 59a42b71df548d08153bfad9daa0c72f
e59e8d5ee645f086e0add485919b12001e7214e8
89c60832f7578052e099518912a2bd57cad6827ffd0dc17d72749e66f152d3d1
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el4.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 18612
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png
212.98.224.64200 OK 57 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el1.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 461 x 586, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a598f89171795fbb4db710696ef06fa
44be03b0531e504107e62741a671f276d1d22690
326102cbd6b6a2f80ddcff2fa909d0963646cb92614789f7d6735de001245e75
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 57101
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema
212.98.224.64200 OK 163 B URL HTTP/1.1 f5ajans.com/wp-json/contact-form-7/v1/contact-forms/4/feedback/schema
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type JSON data\012- , ASCII text, with no line terminators
Hash 8f17d00d334598b97e1e6bb2485fb163
2775aa3f9c1d2c19d82f63bc1714b5ee32341db8
136f53792ca12f8f9b164f0699fcf893a14cc4f2d2951cad95aa7112fc268772
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-json/contact-form-7/v1/contact-forms/4/feedback/schema HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Connection: keep-alive
Cookie: vchideactivationmsg_vc11=6.5.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:13 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://f5ajans.com/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin,Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=0
Expires: Sat, 12 Nov 2022 00:18:13 GMT
X-Powered-By: PHP/7.4.33, PleskLin
Content-Length: 163
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
212.98.224.64200 OK 7.5 kB URL HTTP/1.1 f5ajans.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://f5ajans.com/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6-48846f1dd317a8067103b4fafee2a7b0.css
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Last-Modified: Mon, 28 Dec 2020 00:32:39 GMT
Accept-Ranges: bytes
Content-Length: 7536
Cache-Control: max-age=2592000
Expires: Mon, 12 Dec 2022 00:18:14 GMT
Vary: Accept-Encoding
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: application/font-woff
f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png
212.98.224.64200 OK 25 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_3_el3.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 449 x 342, 8-bit/color RGBA, non-interlaced\012- data
Hash 13f30f2ba6109f68004f7b3f186534b9
ecbd7072697b20431245b95059e3387cea459258
f92605540a4af1468406540b537d88b657ca6e7fc55e94aecf7c682e8d4f94f8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_3_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:20 GMT
Accept-Ranges: bytes
Content-Length: 24591
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png
212.98.224.64200 OK 31 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el2.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 283 x 248, 8-bit/color RGBA, non-interlaced\012- data
Hash 17a459df9d5b95bf7a166680a66ee541
1acf65c897a4695c21f6de7a9e1ed6116a56bfa5
f67f6f42bf929c2d92e9999e4322653f7c139651ea21d265fd451cdd15616f5f
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 31109
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=84
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png
212.98.224.64200 OK 25 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el3.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 375 x 169, 8-bit/color RGBA, non-interlaced\012- data
Hash 0495ab24c0f9e944f8f2a47cf1cdb87c
627f5ded074643e5f2a63218a6e78b5aee4375e9
1821b4a1f51dbf39e21c2171250f4f449e6f277e8ee4cb0759d406853047c8e7
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 25316
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png
212.98.224.64200 OK 22 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el3.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 119 x 482, 8-bit/color RGBA, non-interlaced\012- data
Hash c8870a4f25db85f6584569385762209c
390621196d6fb1da6c196bd7362dde9afdc91bee
8be1e624b483799ee66f6cfe318ffef6984eece21f8d48c8ef00dc739fa0c52e
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el3.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 22248
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png
212.98.224.64200 OK 57 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_1_el1.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 740 x 547, 8-bit colormap, non-interlaced\012- data
Hash 66a85608a506550bfeb96c5f56f46952
87ed6cd40cb0137be370b32383aaf699e8daf4c0
f402e257306ecb0cf253d7687a1fdd91d6b94925e8ab15f21875ef7bb962b090
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_1_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 56749
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png
212.98.224.64200 OK 38 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el1.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 263 x 382, 8-bit/color RGBA, non-interlaced\012- data
Hash 609c7a2139ac3feca7bd747bc2d44eea
c1837467c63df0cdd151c1e8bf1167bc1bf0f047
1fab602e9f40b0819daa8f60ad979fcd068692de3ab2861f9d44e9821a2d5583
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el1.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 38112
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png
212.98.224.64200 OK 62 kB URL HTTP/1.1 f5ajans.com/wp-content/uploads/revslider/default/slide_2_el2.png
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type PNG image data, 474 x 717, 8-bit/color RGBA, non-interlaced\012- data
Hash cf592fcf352be2eb0a27049a4d86828c
91e58437ec0d8ed49fba0dd898fba1e04351cf4c
3ede6d98c9d8a515c07794b8d601e72bb3a4bba0ef48427de068a05015e91379
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/revslider/default/slide_2_el2.png HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:14 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Thu, 28 Jan 2021 19:09:19 GMT
Accept-Ranges: bytes
Content-Length: 61517
Cache-Control: max-age=10368000, public
Expires: Sun, 12 Mar 2023 00:18:14 GMT
X-Powered-By: PleskLin
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
212.98.224.64200 OK 426 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Hash 5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/svg+xml
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js
172.67.38.66200 OK 41 kB URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-common.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65466)
Hash b882434bc64460a7bd36463c1b380f03
4c4b93c15fb41a045ddf5ca60c74ae6cb1c20a49
3cfcc8fb141511816414b0ef20feabce1b5b3e91811adce2f8447deb8a42d286
GET /_s/v4/app/635a92a45e8/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"37e555e4ffba86d238c6b19fb69bad9e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d5a0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
212.98.224.64200 OK 426 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Hash 5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
212.98.224.64200 OK 426 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-1.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (805), with no line terminators
Hash 5986b3cd55ef38d232370cb1a7f10de4
1f7a9408b2c352de3ec048b7858ccc6658074174
767fcfd52309c536d5f181912bba339982c31ecba0feb8eaa452bfa9610a2477
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-1.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 426
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg
212.98.224.64200 OK 316 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-3.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (482), with no line terminators
Hash c1ad17aedbdf47a4655933cbbe580fd1
ed39ff310f343a3a0d12ca5c1151a08c34fe75ea
01fdb21518306b24ae8534a6e146d232ee4c87e668b31bb37f1dbeae0ac7fd89
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-3.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 316
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg
212.98.224.64200 OK 248 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-2.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (352), with no line terminators
Hash 439b2c1f5e5bae3e03f46476b6b86d95
48597fc205cdb4e1ed81311798b2ba9fd7860538
e987669bf8ef818d5e4249f750ead65157779f804fe03e9f7ae1fc7bdf904e3b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-2.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 248
Keep-Alive: timeout=5, max=82
Connection: Keep-Alive
Content-Type: image/svg+xml
f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg
212.98.224.64200 OK 281 B URL HTTP/1.1 f5ajans.com/wp-content/themes/metamax/img/particles/particle-4.svg
IP 212.98.224.64:0
ASN #48678 PENTECH BILISIM TEKNOLOJILERI SANAYI VE TICARET LIMITED SIRKETi
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (401), with no line terminators
Hash a7e7af5d29fc3b189eb62e42ca37055e
eab9520fe1b9c6065c064149ad2d73b3e34df7d8
4d0ba39a06d6cca297cab001daf88cee527de59592f8bd2db694650564827ff5
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /wp-content/themes/metamax/img/particles/particle-4.svg HTTP/1.1
Host: f5ajans.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Cookie: vchideactivationmsg_vc11=6.5.0; _ga=GA1.2.1425512754.1668212294; _gid=GA1.2.403467447.1668212294; _gat_gtag_UA_197116259_1=1; TawkConnectionTime=1668212294898; twk_idm_key=lWUojOtOW5i37FS3INC6Z
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:15 GMT
Server: Apache
Vary: Accept-Encoding
Last-Modified: Fri, 26 Jul 2019 08:55:50 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
Expires: Mon, 12 Dec 2022 00:18:15 GMT
X-Powered-By: PleskLin
Content-Length: 281
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js
172.67.38.66200 OK 10 kB URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (15846), with no line terminators
Hash 656e3542c73aa752ffefc72aff880dbc
c8004202997067847b287e6e7071b2ddf980c12f
af9050f8525b5943e509165a61c1679282f8014b4f09ff913513ed539068cb28
GET /_s/v4/app/635a92a45e8/js/twk-chunk-48f46bef.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"35b74b4d87efe5782e575c273fce182b"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e219320b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js
172.67.38.66200 OK 58 kB URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (11056), with no line terminators
Hash c31c00765970a5f13a03d5f006cb4830
e844fbc1976b74eb0fe78f833e8a28ed76b91f6f
336b6dabcf501372a3752b186cd19d802f3ba8034e376f0b0d47078d84018aea
GET /_s/v4/app/635a92a45e8/js/twk-chunk-f163fcd0.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"a92075fd9ac5ba130387a80453676099"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229350b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 3ae323859d4702bcc31063e89fc25f7e
37b9ed7c51ea0ec0ef8f68422e259dccaeb040fb
c2c8bf2820553d2eb3943f03a26a2efe6f1274ec08d54bc75c1713ef5c67ae66
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 12 Nov 2022 00:18:16 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "988F3BCE4B016F75489A0EF7D21CBCFD758B3046"
Expires: Sat, 12 Nov 2022 10:00:00 GMT
Last-Modified: Fri, 11 Nov 2022 22:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3543
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 768b16e45ebc1c06-OSL
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js
172.67.38.66200 OK 2.3 kB URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (7068), with no line terminators
Hash a5b05f036d8991ef25fb88905f31a084
7db2cdc735972fb4f3bf8c144693992c75a0496b
3f3808b4700efc7d262601009e935e88979b536e1da5948cb32a5bfbea8419c3
GET /_s/v4/app/635a92a45e8/js/twk-chunk-2c78ba82.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"fac25ff2d2c405e1ac7e156dca1f819c"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e2192d0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js
172.67.38.66200 OK 674 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (546), with no line terminators
Hash 89141f8f833df78b97fa26a16d430e3f
b534514b4cd4b57b8db48adb933f37142a98ca00
a2fc8e0312ed9dc8da1a4cf6a04fb84e11402be4f214a64e53d5137e8e8f24a3
GET /_s/v4/app/635a92a45e8/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"09c3819d373bd4178a620d721429fada"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229340b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229330b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1
IP 142.250.74.10:0
GET /css?family=Rubik%3A300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C700%2C900%7CRubik%3Aregular%7CNunito%3Aregular%2Citalic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=latin&ver=6.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 00:18:12 GMT
date: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-app.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d600b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d590b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-main.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:56 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da6d560b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-runtime.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"28824857224eeeac7394f7755fa2d3ed"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da7d5f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-vendor.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f5ajans.com
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:14 GMT
content-type: application/javascript
age: 172798
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16da6d570b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-chunk-696bc286.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7a1cce8ba15e49dc07d33b416f0fda26"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e2192e0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"7031f234532c26d04cce67a704e934f4"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e229360b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/log-performance/v3
IP 172.67.38.66:0
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Content-Type: application/json; charset=utf-8
Origin: https://f5ajans.com
Content-Length: 95
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-8mf7
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e74c260b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 172.67.38.66:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
x-served-by: visitor-application-preemptive-njzf
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16de0f3c0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined
IP 172.67.38.66:0
GET /v1/widget-settings?propertyId=58a9f0de57ed180aac2168b3&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Origin: https://f5ajans.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-mlgs
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-12-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16ddff280b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/js/twk-chunk-f1596d96.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: application/javascript
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
etag: W/"6dba9d01f672f86fe4df10013a74a548"
age: 1330220
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e219310b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/css/bubble-widget.css
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/css/bubble-widget.css
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/css/bubble-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=13594
access-control-allow-origin: *
etag: W/"ce7913b80c763449b3895d46419f7a6b"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 1330220
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e349ea0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/css/max-widget.css
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/css/max-widget.css
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=75771
access-control-allow-origin: *
age: 1330219
etag: W/"0158db159e8967dbda5865ed6b2e435d"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e36a040b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tawk.link/58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f
172.67.162.230200 OK 0 B URL HTTP/2 tawk.link/58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f
IP 172.67.162.230:0
GET /58a9f0de57ed180aac2168b3/var/chat_bubble/b09136b5cdad33d4037462b2efab1eba5dfca88f HTTP/1.1
Host: tawk.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:17 GMT
content-type: application/octet-stream
x-powered-by: Express
strict-transport-security: max-age=600
cache-control: max-age=86400
cf-cache-status: MISS
last-modified: Sat, 12 Nov 2022 00:18:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nXcSsMb8DcyGuU9TnTPSHgzhKtQRkIS%2B%2Fu3J8mESG6puVrecossn8OZ09mrnbehwvTRZ%2FbnGtkObZvXPV5r9lsxYW3ZhBb%2F%2FU6qdHux09IzS3HkYrpjyL8H9ACo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 768b16e3d948b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400
IP 142.250.74.10:0
GET /css?family=Nunito:800%2C700%7CRubik:400%2C700%2C900%7CRoboto:400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://f5ajans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 12 Nov 2022 00:18:12 GMT
date: Sat, 12 Nov 2022 00:18:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
172.67.38.66200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 172.67.38.66:0
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f5ajans.com/
Content-Type: application/json; charset=utf-8
Origin: https://f5ajans.com
Content-Length: 171
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:15 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-qgk9
access-control-allow-origin: https://f5ajans.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16df1fa80b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/635a92a45e8/css/message-preview.css
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/635a92a45e8/css/message-preview.css
IP 172.67.38.66:0
GET /_s/v4/app/635a92a45e8/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 12 Nov 2022 00:18:16 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38268
access-control-allow-origin: *
age: 1330220
etag: W/"949ecc85ac578750ec9a03e5680f7b0e"
last-modified: Thu, 27 Oct 2022 14:17:55 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 768b16e35a000b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2