firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 20:05:14 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e963d9388521b938ab0c2d19e2400bee.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: oB4V87SuYW9ttKBgwzvQa9d4gxf2HvEzJ9MWITPxG3geCqrmP3jn8A==
Age: 1372
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14121
Expires: Sat, 24 Sep 2022 00:23:28 GMT
Date: Fri, 23 Sep 2022 20:28:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.102200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.102:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 329cb27be8d7871661ed5a94ecaacb28.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: yFnmMxZUp7clsczJ3ec02IctQhKshc2_bDdfat_Q67a9JFmogaCHIg==
age: 58505
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c904a5019e4a8050561271ecb2182996
524bb8ded0a35fd8cea61a6f709b678807c10f35
1ea326a6b97fd7049749b39054a882a82f5fad2a9ac305afb63634d35acfa6ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1EA326A6B97FD7049749B39054A882A82F5FAD2A9AC305AFB63634D35ACFA6CA"
Last-Modified: Fri, 23 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21569
Expires: Sat, 24 Sep 2022 02:27:36 GMT
Date: Fri, 23 Sep 2022 20:28:07 GMT
Connection: keep-alive
xn--bimcelldemenoktam-5zb.net/
20.113.177.39200 OK 2.4 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 819b641d416661c56a88a8f6e947eddc
31959b12f9da2f5c150319a2cca8f3d578e1c728
e51f432f83f9f075b2a4850aa70e92f8494526b468270ae7f8a3ebc08b6f2f00
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET / HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:07 GMT
content-type: text/html; charset=UTF-8
content-length: 2443
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
104.17.24.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65317)
Hash be9aeb2a05f665e3606faf11c09b542f
5644d0bd4e12fdfb7235166d2883fc7acd0a2c5b
13ace8ab3d9e2cbaf3fe1768b9ba1fc5313a5541607b4c07121c0abbb7fadfae
GET /ajax/libs/font-awesome/6.1.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 20:28:07 GMT
content-type: text/css; charset=utf-8
content-length: 17041
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "623a082a-4291"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1309570
expires: Wed, 13 Sep 2023 20:28:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=st58K99JkPIFaAYLjrybojhUnhC3MvMIkwcjci8cRw4L3KVgI5ZQsxWPwn1rcoDLCp0G1kb7j9%2BHSazlx5Jc0XmgghJfSxamy5ozuXFidbzsvtyWQNWxkzvwMeznxjl6zz3SUJpy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f606634fa9b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 20:28:07 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663964887.dop202.sk1.t,1663964887.cds254.sk1.hn,1663964887.cds210.sk1.c
X-Firefox-Spdy: h2
code.jquery.com/ui/1.11.0/jquery-ui.min.js
69.16.175.42200 OK 64 kB URL HTTP/2 code.jquery.com/ui/1.11.0/jquery-ui.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32081)
Hash eb21a4fe5d12f80982a85847870a067d
f439ef9b590e65915964c82e39d82af73e3fe756
5960658511e93fdb53da135dfa505af72892f86384d653ade9fade6b8367cd52
GET /ui/1.11.0/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 20:28:07 GMT
content-encoding: gzip
content-length: 63453
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:40 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd700-39fec"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663964887.dop202.sk1.t,1663964887.cds254.sk1.hn,1663964887.cds260.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 19:33:00 GMT
Expires: Fri, 23 Sep 2022 20:31:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c52c2a46d6ce20208b2160aa3b35a5a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: LvUWyufIxX6ZQsPid_l6Qur1QvVJsUe6BjyPVilXz9mgIHf0JZOOrw==
Age: 3307
www.bimcell.com.tr/uploads/bimcell/templates/css/images/bottom_logo.png
212.98.241.171200 OK 1.3 kB URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/images/bottom_logo.png
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type PNG image data, 109 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ebbd7f7e48df7dd2d0b570f01e6ccb0
4e39ebbbb4cd36d21667821eb8494fc4b1053eca
576478ae1dc83021e5695547c46bb943fee6b8592c4b60372dc37632111942c0
GET /uploads/bimcell/templates/css/images/bottom_logo.png HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 23 Sep 2022 20:38:07 GMT
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=y4k3kkjdylek4e4pnv21lb1y; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 1309
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/reset.css
212.98.241.171200 OK 644 B URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/reset.css
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type ASCII text, with very long lines (734)
Hash 2dbf5cc26037462e12fb87fb10542a0d
bc00234ed1e47d89c60f33def64b6473e6fd138a
abaa3c8b5b548883e8ccdcf844fbb9d32962dace44da458249ea03b27fa54326
GET /uploads/bimcell/templates/css/reset.css HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public
content-type: text/css
content-encoding: gzip
expires: Fri, 23 Sep 2022 20:38:07 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=wqoz3fljrcu4bp53gelzccms; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 644
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/images/logo.png
212.98.241.171200 OK 2.5 kB URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/images/logo.png
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type PNG image data, 170 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash d39ee84d792707f7fce407bab7ecd4a1
adca826799c7513ffb2e76478763bd667f6401ef
9fa988580b6be1f2d45105d565442715cbfd2223e61f8d7afc7d47581f2387b2
GET /uploads/bimcell/templates/css/images/logo.png HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 23 Sep 2022 20:38:07 GMT
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=0lr2qba1g5kcwugilovvxekj; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 2465
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 596
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:07 GMT
Last-Modified: Fri, 23 Sep 2022 20:18:11 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.bimcell.com.tr/uploads/bimcell/templates/scripts/bootstrap.min.js
212.98.241.171200 OK 9.9 kB URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/scripts/bootstrap.min.js
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type ASCII text, with very long lines (28941)
Hash 7c1c654a4f6f1c917ff2474fd7e6b5c2
0bd3f10720e7f2561250bc60ca30b8efd59599dd
fb8fda1f4c2d91d9d7be95f247a941fb382ca61b966354ecf362adaf9f21e787
GET /uploads/bimcell/templates/scripts/bootstrap.min.js HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public
content-type: text/javascript
content-encoding: gzip
expires: Fri, 23 Sep 2022 20:38:07 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=qs0y000zirgtjdfrfxlbjuyr; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 9940
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/bootstrap.css
212.98.241.171200 OK 27 kB URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/bootstrap.css
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type assembler source, ASCII text, with very long lines (540)
Hash 8ae51650c6c77a2dfb37a2ebcf076422
27ed27f3abbaa6b1a8a7311edff469674f00db97
949ff02030d4b6d070f0ee3561c191517179c1645cc71b328d882e5327e17e12
GET /uploads/bimcell/templates/css/bootstrap.css HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public
content-type: text/css
content-encoding: gzip
expires: Fri, 23 Sep 2022 20:38:07 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=qa3tx52zebfzszojlhzbfx03; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 26756
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/scripts/main.js
212.98.241.171200 OK 227 B URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/scripts/main.js
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 408fcc8498045238dab8b335a6731051
85d88d07ac523954317b77c430dd93647f6b14aa
9de4cd211d0da6177058e2cc53bf80227713121e9b2e12465fe46f9388df44dc
GET /uploads/bimcell/templates/scripts/main.js HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public
content-type: text/javascript
content-encoding: gzip
expires: Fri, 23 Sep 2022 20:38:07 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=vdhdcc044dcb1di0yhhbhpjh; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 227
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/style.css
212.98.241.171200 OK 4.2 kB URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/style.css
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type ASCII text, with CRLF line terminators
Hash 9152835e416491a0a3dafc1551dda013
58d644ea2b1f773bb62ae26ca6e467f250f3f68d
43fec2ee62450803dfd4f24b99a89e448a5ef565f134e42914a6a9152229e424
GET /uploads/bimcell/templates/css/style.css HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public
content-type: text/css
content-encoding: gzip
expires: Fri, 23 Sep 2022 20:38:07 GMT
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=iokjj3uf3tcqgxvoygmwnujy; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 4206
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.min.js
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 20:28:08 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663964888.dop202.sk1.t,1663964888.cds254.sk1.hn,1663964888.cds210.sk1.c
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/tl-yukle
20.113.177.39200 OK 3.5 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/tl-yukle
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash e4f7fdbe65483c8d4f4be1957b68088f
c973e615cfa15f5f8243a59c31de884ed5278a41
2129a52b2ad866d18dde8ec0760db5617f0d0fd096789f42110a718c6cb0eb54
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /tl-yukle HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/html; charset=UTF-8
content-length: 3521
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/webfonts/fa-solid-900.woff2
104.17.24.14200 OK 154 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.1.1/webfonts/fa-solid-900.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 154228, version 769.768\012- data
Size 154 kB (154228 bytes)
Hash 55b416a8df21f9f987aa352f10d1343b
2717f3f58271f2f2e6120d9937c7227002656d34
d76fb4e841748a3f6bc63efa23156e02631c283bf41f84efcbdaf339ea3e1b73
GET /ajax/libs/font-awesome/6.1.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 154228
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "623a082a-25a74"
last-modified: Tue, 22 Mar 2022 17:32:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9410517
expires: Wed, 13 Sep 2023 20:28:08 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vsUebAExERcvVghCUK4T5iWAQtiDUBOOfq7D3H3DSQt0sWXCxsc9BaKrE7In0hfMsVYmjUse7ZPas7KGdAAKpQGfaVM0JAgQA6%2FbtU9Ub0FKEhCjyQcyA4LeMABIznqsxHCxU8j6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74f60666cd0fb50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/download.png
212.98.241.171200 OK 369 B URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/download.png
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type PNG image data, 15 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 42fecfa5937a3960af7788b4bded669d
2676cf8f861d12428d8740312b3cdddef3dc2986
fe63f0ede667ce21480b86f1386827bfc782968f40844b85db75538f5fdc11a7
GET /uploads/bimcell/templates/css/images/icon/download.png HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bimcell.com.tr/uploads/bimcell/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 23 Sep 2022 20:38:08 GMT
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=nixcjr5fzuhs3muxyynrardk; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 369
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/phone.png
212.98.241.171200 OK 424 B URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/phone.png
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type PNG image data, 17 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e4e4113bcfd9131a729a390d0af058a
8dcba519f480380139b0f964888e3d592d257f7a
f8f33ff94a93cb696541eda6b717e708bb09cac46afe5bb3713a479fd373d91b
GET /uploads/bimcell/templates/css/images/icon/phone.png HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bimcell.com.tr/uploads/bimcell/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 23 Sep 2022 20:38:08 GMT
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=svgdwghwzoifekbt0dkqq5yz; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 424
X-Firefox-Spdy: h2
www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/monitor.png
212.98.241.171200 OK 418 B URL HTTP/2 www.bimcell.com.tr/uploads/bimcell/templates/css/images/icon/monitor.png
IP 212.98.241.171:0
ASN #15924 Vodafone Net Iletisim Hizmetleri Anonim Sirketi
File type PNG image data, 29 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 157d2db88af73ddf7c5d26781da073fe
6902de5730cd4443eace771ff1f5f6316eb522fd
07c90a81248b93654e3e72d77b6d47abac7554b0f7d73283139827c1b037e411
GET /uploads/bimcell/templates/css/images/icon/monitor.png HTTP/1.1
Host: www.bimcell.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bimcell.com.tr/uploads/bimcell/templates/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 23 Sep 2022 20:38:08 GMT
server: Microsoft-IIS/10.0
set-cookie: ASP.NET_SessionId=wv4gy025alpnaxkjaguh0cg4; path=/; HttpOnly; SameSite=Lax
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
date: Fri, 23 Sep 2022 20:28:07 GMT
content-length: 418
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 20:28:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 176040
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 175940
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:35:48 GMT
expires: Thu, 21 Sep 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 175940
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 176040
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:50:35 GMT
expires: Thu, 21 Sep 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 175053
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 192968
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/javascript.object.create.js
20.113.177.39200 OK 419 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/javascript.object.create.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF, CR line terminators
Hash 67e8a3c094638812877afee1356bbd09
1484d825df540c5dda6108cf477214fe92f2c75f
ed89f89c73f070f3eeea9ed4c508045b40c5fb9a548b05da8c4d5462cfb5723a
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/javascript.object.create.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
content-length: 419
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: "3e2-5df4d7ca1af00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/stylea9f2.css?v=2.6
20.113.177.39200 OK 45 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/stylea9f2.css?v=2.6
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1943), with CRLF line terminators
Hash 325a0f16519e20101a4958c746fd672f
5d903daf88a53db151e1da63c277fcc260eebaab
e00239b52a6e11ee6ae0dee6a8f73bd9cc8b74b19ecb390874e415b4dae755a9
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/stylea9f2.css?v=2.6 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-49d9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.162.217.251101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.217.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +IJuIBev7kDz0FbG4COVIw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HyBUdwENCBzf8iSLILVSY773FwM=
xn--bimcelldemenoktam-5zb.net/assets/assets-ext/images/oi/avea/icon_how_do.png
20.113.177.39200 OK 3.9 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets-ext/images/oi/avea/icon_how_do.png
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bb3609c32e987ff9a0fc969ce4669e6
92f75f0c90be633d73d974540bb20efda755b75d
bae3ba98a456a91085c66342ccabb8b3be47cd152e6820392ac0facc79f3d57b
Analyzer Verdict Alert openphish Bim Cell
GET /assets/assets-ext/images/oi/avea/icon_how_do.png HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: image/png
content-length: 3932
last-modified: Wed, 18 May 2022 18:32:50 GMT
etag: "62853bd2-f5c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/svgConvert.min.js
20.113.177.39200 OK 485 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/svgConvert.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (952), with CRLF line terminators
Hash 9c137907467462d6250f363e860940f2
c0232c14f8ec33f486f3db814bce9ceb2e393280
ff068091ba9266bcf3f904e46449d81254bb91f7d7221d4672027da7cbdc52e1
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/svgConvert.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
content-length: 485
x-accel-version: 0.01
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: "3ba-5df25f9b92e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.11.1.min.js
20.113.177.39404 Not Found 370 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.11.1.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5710ebe5474c1caf7df70c82051e4d4f
d0eafde5f6d43bd42aa20c17ac660710f2e4a524
ccf1580400f4ef832fa3887447ed29d77d37977efdfb8128591622e5bd3b74ba
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery-1.11.1.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/html
last-modified: Fri, 17 Jun 2022 06:11:09 GMT
etag: W/"328-5e19e9eda315b"
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/images/captcha-refresh-digit.svg
20.113.177.39200 OK 695 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/images/captcha-refresh-digit.svg
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (429), with CRLF line terminators
Hash e82c76d46a32bc7aa7d737d136c40180
322ea7322a387a4d69e7647a594ca34cef8231a2
94b2ee1f2a08e74a5fd4ae40906bb882906ca7edafec4f2d3dabebde6a0abde4
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/images/captcha-refresh-digit.svg HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: image/svg+xml
content-length: 695
x-accel-version: 0.01
last-modified: Wed, 18 May 2022 18:32:42 GMT
etag: "2b7-5df4d7b8f0680"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/slick.mineb30.css?v=2.5
20.113.177.39200 OK 2.2 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/slick.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1297), with no line terminators
Hash d7b227e701cb01567231e1656d41ae87
2d883e99e38aa0aa8f3a7460b0fbd33dc6f43869
89b220a5d815cc1e17d4eda6b0953aec06a234ae98558dc12acdb7b1b43911dc
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/css/slick.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-511"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.11.1.min.js
20.113.177.39404 Not Found 32 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.11.1.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 70fe7031ea26017f18a359977a8f91cf
154e961ccbf12b449e7ca44f8528d01d52eb243f
8703b6a28ea9bc5ba0f11998c3c14d071ab8e14b7ffc0870cf1678159dece073
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery-1.11.1.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/html
last-modified: Fri, 17 Jun 2022 06:11:09 GMT
etag: W/"328-5e19e9eda315b"
content-encoding: br
X-Firefox-Spdy: h2
onlineislemler.turktelekom.com.tr/mps/assets/images/bimcell-logo.png
212.175.73.205200 OK 5.5 kB URL HTTP/1.1 onlineislemler.turktelekom.com.tr/mps/assets/images/bimcell-logo.png
IP 212.175.73.205:0
File type PNG image data, 82 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e69786920d234ed109e4948638fd60b
17c8d66e408a254a44e0e921f65568ad7eb0a45b
dec66a69a364b45886cab4370c8fdf0018b41750dae56f319c8a6132cdd11ac2
GET /mps/assets/images/bimcell-logo.png HTTP/1.1
Host: onlineislemler.turktelekom.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 20:28:08 GMT
Content-Type: image/png
Content-Length: 5461
Connection: keep-alive
Last-Modified: Mon, 16 May 2022 16:24:35 GMT
ETag: "1555-5df2375b8d934"
Accept-Ranges: bytes
Access-Control-Allow-Origin: http://sso.avea.com.tr, SAMEDOMAIN
X-Frame-Options: sameorigin
Set-Cookie: Apache=ae0b4848.5e95e0419ef60; path=/; expires=Sun, 07-Sep-25 20:28:08 GMT
NSC_PJN_443_WJQ=5ccba3d8ea30b30aae8c3fc431c68df13a3e061a042b2210670d8ea7eb67f07f206abfe1;Version=1;Max-Age=120;path=/;secure;httponly
TT43ed26e0=439d576f000b6f129d2369b46e82a42131a3f5bea48c617f37d6396dc868c31031dffa0da49403b3eeba662a04046500d0820aeeeb61911e2fb9deee26a274151208d0e856cb46ead456597dbe63b62940172e8b35; Path=/; Domain=.onlineislemler.turktelekom.com.tr; Secure; HTTPOnly
Strict-Transport-Security: max-age=0
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-500.woff2
20.113.177.39200 OK 32 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-500.woff2
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format (Version 2), TrueType, length 32268, version 1.0\012- data
Hash 60a23263292042ca74251d7c584f19fb
680fda5448ecba94593b50efd24e1ed5ba31638b
ad0099ac16716d9b750f608c2a261163dc5933329c5dc00fd6063312f9856f01
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/css/fonts/mulish-v1-vietnamese_latin-ext_latin-500.woff2 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/css/fonts.css
Cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: font/woff2
content-length: 32268
last-modified: Mon, 16 May 2022 19:24:38 GMT
etag: "6282a4f6-7e0c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/responsive/desktop.css
20.113.177.39200 OK 33 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/responsive/desktop.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF, CR line terminators
Hash b5ad4c85193395500025f3c868571a06
13ea5d547643d1e76d3983d6c1400b17a0d50dec
25f1e35b5caa84c4b7048b52d822d9b3e0b9cad1b02936f447494c688161077e
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/responsive/desktop.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-7c5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/favicon.ico
20.113.177.39404 Not Found 33 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/favicon.ico
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a343abfea9dc50cfd574b78f11dd322
0a663c31960934c5675f2c9436d2221b30d5b438
1b65eafe4d40d463ddb7966a11287f5f714f124c88e9f05a610e3b72030a1cb0
Analyzer Verdict Alert openphish Bim Cell
GET /favicon.ico HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/html
last-modified: Fri, 17 Jun 2022 06:11:09 GMT
etag: W/"328-5e19e9eda315b"
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10605
Expires: Fri, 23 Sep 2022 23:24:54 GMT
Date: Fri, 23 Sep 2022 20:28:09 GMT
Connection: keep-alive
xn--bimcelldemenoktam-5zb.net/assets/js/dataTables.bootstrap.js
20.113.177.39200 OK 2.7 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/dataTables.bootstrap.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash ed035c675f6e08d6b64985b13adbaf22
9384ff9298c4c14e038a97a2e7555632d818d46f
13694e3ac3f8173cbc6475108c2a30d97ec2f7e620e4f3725e728f4127d154ac
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/dataTables.bootstrap.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-1bcb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/fastclick.js
20.113.177.39200 OK 7.4 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/fastclick.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (376), with CRLF line terminators
Hash b4bd29a1b370814d458fdde50a379568
a15d3b9311e8af12950f6ac669e55a69dcbf239a
2b1f7b18d03a64f2e90bb847c2a954ab5ab60a72227aaa6f06552c139cf75fb6
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/fastclick.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-6388"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/AjaxUtil.js
20.113.177.39200 OK 1.3 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/AjaxUtil.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash fa9cc87e5cbf661a2a0a616c0ee4cca5
5e9b261acb3cd4b28f718ffd3a3c2a5051abf201
0d9ba2951aa25d0f2468e3e26a5e3c97b1e8f7c13ee527af59f0af9abcc3b399
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/AjaxUtil.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-ba9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7606ff88f05062b66970d9805f38987a
d47db5fcd83023b4a8de40a47d4510e183de387a
20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8497
x-amzn-requestid: ab65ba93-aad5-4845-b471-c50c14057c47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvqujEsIoAMF8sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632957f6-6d4635bf713fd25147948c7b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:04:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: SZ6p5NLxuGUoEOZujwPbDGwUO0dZgiITud8RWOaSW_VciGRgBidY2A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 19:36:01 GMT
age: 3128
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 92Pj9IQp3mBJQOW-XuHSK8laPqXOSBOmNbYcm4hSFzc1xqYscQKxMA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:05:08 GMT
age: 80581
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/moment.js
20.113.177.39200 OK 36 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/moment.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Algol 68 source text\012- Pascal source, ASCII text, with CRLF, CR line terminators
Hash 9ad0768fbac85e25cc50ecbf91bb8156
f2c843c7e28dc2853cc2969850ea3a5e70430532
8781bbf1f94c418c9c91923adcd40612d0fbf978003af7c0cae85014b4800000
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/moment.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: W/"6282a4f8-2091e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/js/tteb30.js?v=2.5
20.113.177.39200 OK 12 kB URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/js/tteb30.js?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash b802e1c09e8d8cb9e60b5d3a276a1640
aa03c5740024c42ea221a3a51f449c7409baf958
d4983c411e67849080e0940de804134ca6a3e5232f7cee8e7af9bc1ddff8dd12
GET /assets/assets_new_menu/js/tteb30.js?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-1730"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:04:45 GMT
age: 80604
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5ur411n5hU7eWb68iExZCUrhpCybRyTBHCi72ra8dS2kd3UhW8sb1A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:59:00 GMT
age: 80949
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /veri.php?ip=91.90.42.154 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:10 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /veri.php?ip=91.90.42.154 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:13 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/veri.php?ip=91.90.42.154
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /veri.php?ip=91.90.42.154 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://xn--bimcelldemenoktam-5zb.net
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:15 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/tt-themeeb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/tt-themeeb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/tt-themeeb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-4aed"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.input.controller6193.js?q=2.2
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.input.controller6193.js?q=2.2
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery.input.controller6193.js?q=2.2 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-1ea8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/responsive/minimum-tablet.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/responsive/minimum-tablet.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/responsive/minimum-tablet.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-a2a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/maskedinput.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/maskedinput.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/maskedinput.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: W/"6282a4f8-10ea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/datepicker/moment-with-locales.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/datepicker/moment-with-locales.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/datepicker/moment-with-locales.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-24715"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/pluginseb30.js?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/pluginseb30.js?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/pluginseb30.js?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-59419"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/responsive/mobile.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/responsive/mobile.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/responsive/mobile.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-c23"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/moment-locale.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/moment-locale.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/moment-locale.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: W/"6282a4f8-57970"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.dataTables.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.dataTables.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery.dataTables.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-6a9ba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/responsiveeb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/responsiveeb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/css/responsiveeb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-1f41"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP 142.250.74.10:0
GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 20:28:07 GMT
date: Fri, 23 Sep 2022 20:28:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/bootstrapeb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/bootstrapeb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/bootstrapeb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-2338e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/css/generaleb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-a3c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/select2.mineb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/select2.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/select2.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-3b5d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.pajinate.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.pajinate.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery.pajinate.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-1a6a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/slick.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/slick.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/slick.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: W/"6282a4f8-9e1e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/datepicker/bootstrap-datetimepicker.mineb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/datepicker/bootstrap-datetimepicker.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/datepicker/bootstrap-datetimepicker.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-2038"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/datepicker/bootstrap-datetimepicker.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/datepicker/bootstrap-datetimepicker.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/datepicker/bootstrap-datetimepicker.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-fdea"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/scss/tt.mina9f2.css?v=2.6
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/scss/tt.mina9f2.css?v=2.6
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/scss/tt.mina9f2.css?v=2.6 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-15fd4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/bootstrapeccb.js?3
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/bootstrapeccb.js?3
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/js/bootstrapeccb.js?3 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-1a3c6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/underscore.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/underscore.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/underscore.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-3d14"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/response.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/response.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/response.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-221b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/captcha.php
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/captcha.php
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /captcha.php HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: image/png
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=5ihlt5hcaaic33qkjv36hfa5en; path=/
x-powered-by: PHP/8.0.23, PleskLin
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.pajinate.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.pajinate.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery.pajinate.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-29d5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/listbox.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/listbox.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/listbox.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-4da"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/blockUI.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/blockUI.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/blockUI.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-529b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.validate.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.validate.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery.validate.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-5453"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/animate.mineb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/animate.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/css/animate.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-b5fb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/listbox.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/listbox.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/listbox.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-271b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/jquery.smartbannereb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/jquery.smartbannereb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/css/jquery.smartbannereb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-1012"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/pluginseb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/pluginseb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/css/pluginseb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-7d1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/checkiban.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/checkiban.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/checkiban.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-57f5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/dataTables.bootstrap.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/dataTables.bootstrap.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/dataTables.bootstrap.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-1bbb"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/chosen.mineb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/chosen.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/assets_new_menu/libs/css/chosen.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-228a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/wow.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/js/wow.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/js/wow.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:40 GMT
etag: W/"6282a4f8-1bab"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/select2.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/select2.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/select2.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-1045a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/slick-theme.mineb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/libs/css/slick-theme.mineb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/assets_new_menu/libs/css/slick-theme.mineb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-95c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/baseeb30.css?v=2.5
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/baseeb30.css?v=2.5
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/css/baseeb30.css?v=2.5 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-3554"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery.caret3abf.js?q=1.0
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery.caret3abf.js?q=1.0
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /assets/js/jquery.caret3abf.js?q=1.0 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:36 GMT
etag: W/"6282a4f4-9f9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/less-1.5.0.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/less-1.5.0.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/less-1.5.0.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-173c4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/css/responsive/maximum-tablet.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/css/responsive/maximum-tablet.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/css/responsive/maximum-tablet.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/css/generaleb30.css?v=2.5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-586"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/tabcontent.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/tabcontent.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/tabcontent.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-23e3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/benefitc81e.js?2
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/benefitc81e.js?2
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/benefitc81e.js?2 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-198a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/css/fonts.css
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/css/fonts.css
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
GET /assets/assets_new_menu/css/fonts.css HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/assets/assets_new_menu/scss/tt.mina9f2.css?v=2.6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 18:32:56 GMT
etag: W/"62853bd8-fa8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.12.4.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/jquery-1.12.4.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/jquery-1.12.4.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:07 GMT
content-type: application/javascript
last-modified: Thu, 20 Jan 2022 14:03:26 GMT
etag: W/"61e96bae-17b8b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/bootstrap-filestyle.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/bootstrap-filestyle.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/bootstrap-filestyle.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-1883"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/additional-methods.min.js
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/additional-methods.min.js
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/additional-methods.min.js HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Wed, 18 May 2022 18:33:00 GMT
etag: W/"62853bdc-4022"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
xn--bimcelldemenoktam-5zb.net/assets/js/maind3cb.js?v=2.7
20.113.177.39200 OK 0 B URL HTTP/2 xn--bimcelldemenoktam-5zb.net/assets/js/maind3cb.js?v=2.7
IP 20.113.177.39:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish Bim Cell
fortinet Phishing
GET /assets/js/maind3cb.js?v=2.7 HTTP/1.1
Host: xn--bimcelldemenoktam-5zb.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--bimcelldemenoktam-5zb.net/tl-yukle
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 20:28:08 GMT
content-type: application/javascript
last-modified: Mon, 16 May 2022 19:24:34 GMT
etag: W/"6282a4f2-9fa2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2