ozelmimarsinanmtal.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
185.90.240.218200 OK 164 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/css/classic-themes.min.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
Hash 1a0804b1a9d09705657f91fe7cad4c5a
feeece6f0b3e0bcf090547c475329a2772f6b26b
dcd9f488bd62ba0ee403b07a97e40b9ffd63a0eff61091588c913b16d5153d48
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/classic-themes.min.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 14:14:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 164
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1
185.90.240.218200 OK 824 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
Hash 76e12144b6be9bc0a17dd880c5566156
c57db768b452aea923a2b083162e9e6ffb98d2f8
070edfef42e0980783d0acf8fa9ca6a9833b994eca13ffaa94e9a2deb47c92cf
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.4.1 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sun, 09 May 2021 23:58:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 824
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
185.90.240.218200 OK 12 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/css/dist/block-library/style.min.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (48325)
Hash 47cdb0e81ea341ad27a1a0b0ba6b02d8
6195a67b0b7f7919f07309e2c8ce71f3d4729d03
aca566587618e75fa291a419c7c430be02e03fc72f6105658c1bc8e7d59a65e4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 14:14:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11775
date: Thu, 25 May 2023 15:42:41 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/fontawesome/font-awesome.css?ver=6.2.2
185.90.240.218200 OK 6.6 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/fontawesome/font-awesome.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (30800), with CRLF line terminators
Hash 1cbdf58db7054d3a8dad5f59864b7053
fd32723700bdb3c7a06b73a9eddc7d3bd4c56885
0d208db5ade19fdd2a973c7c2520575b5e54e009a147007eea616550d0006d45
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/fontawesome/font-awesome.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sun, 09 May 2021 23:58:17 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6600
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/elegant/elegant-font.css?ver=6.2.2
185.90.240.218200 OK 3.8 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/elegant/elegant-font.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (21733), with no line terminators
Hash 1151d563689d7335d1aa1859d4de509f
4986da52b44ef9614f3d4ada60a849ae74f6eed2
02e2b3b30a747b8196a16712d5fe39efd502cc6c04257a86fab515970eaf0653
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/elegant/elegant-font.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sun, 09 May 2021 23:58:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3848
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/style.css?ver=1621114726
185.90.240.218200 OK 3.6 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/style.css?ver=1621114726
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (21054)
Hash 2a94b58f68ef59beaa20f70bd8232853
7b9b596235a5c158a6d1062f02fbec2710e794a2
de4e341b1a285fff3121549808a5481e86dd83b4cc695dd9cdd93fc2692c439b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/style.css?ver=1621114726 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sat, 15 May 2021 21:38:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3624
date: Thu, 25 May 2023 15:42:41 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2
185.90.240.218200 OK 982 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (4186), with no line terminators
Hash ea958276b7de454bd3c2873f0dc47e5f
b143f6e8e8f79d8f104c26b0057ef5514d763219
2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 14:14:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
185.90.240.218200 OK 2.4 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Tue, 02 May 2023 14:14:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/css/page-builder.css?ver=6.2.2
185.90.240.218200 OK 35 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/css/page-builder.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
Hash b150be66eb4ae211f390d5a8093b6bb6
fe4865898ddf9ecb3f363e11d723acae21a59c3a
25c6ecd8b48dcf4866cf1821fd50635ad8707906777b3efa5c93f1305af06747
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/include/css/page-builder.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sun, 09 May 2021 23:58:03 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 34774
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6
185.90.240.218200 OK 12 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 21867fde12d174f02d5b6646e28de7f0
f60c1425131f91de62bbb95d2a01b1ae1ddf55a4
10b04e9bba7ae280e2def9ead90c2c49c876ce1c901e5c04cc43de77f81d85f3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Mon, 10 May 2021 00:00:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12411
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/themes/kingster/css/style-core.css?ver=6.2.2
185.90.240.218200 OK 17 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/themes/kingster/css/style-core.css?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
Hash d982238f25cd50da165386607817a54f
ea0700177b75309b301a86b0b1aee073265a7e8c
2f10fb477259a85e328ca549bfb16e1d3e45bb3a71aa1e8ad3180180e8139cf0
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kingster/css/style-core.css?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Mon, 10 May 2021 01:40:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17405
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/kingster-style-custom.css?1621114727&ver=6.2.2
185.90.240.218200 OK 13 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/kingster-style-custom.css?1621114727&ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (1069)
Hash 290780dedbcee517825103bc5da896ab
33bd8a24dc0e046373675d3c3d6e420d95be197b
28449fedb52aae3f3a18797e0e5c7b53e66646d275f283f4fc18dc3d1c278548
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/kingster-style-custom.css?1621114727&ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: text/css
last-modified: Sat, 15 May 2021 21:38:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12682
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
185.90.240.218200 OK 30 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (65447)
Hash 0e850a69bc7fd0acc2e92ce6eee87959
8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c
afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.4 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30376
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
185.90.240.218200 OK 4.6 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4603
date: Thu, 25 May 2023 15:42:41 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
185.90.240.218200 OK 48 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (42889)
Hash 6043a95513dd7d5177aaa23c674fb6d6
6fd1a3943da46eb3ff5d197eae5e580f6a6ef650
139a4be7157a9197b7d386c61f24831df5338c86112ad5f62b9ae95e6263026f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.4 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Mon, 10 May 2021 00:00:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 48282
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/themes/kingster/learnpress/kingster-learnpress.js?ver=6.2.2
185.90.240.218200 OK 3.1 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/themes/kingster/learnpress/kingster-learnpress.js?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (6232)
Hash ae5b0234cafeff9a16e344cab1a7e1e0
5ab97f85dec4c11e519a8aea15803f7bf6668614
42f033cf111ae560f4d5a2a5bb9feb95a534c3652e48c3e73e0d5f9a11e4fb57
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kingster/learnpress/kingster-learnpress.js?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Sat, 11 Jul 2020 17:29:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3140
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.6
185.90.240.218200 OK 93 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.6
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (64270)
Hash 6af60acd7708ef1864b0d68e9582becd
17caacc10f69c208f7ad676f47e2dc52140f7d1c
0cd5a52207a7bc4b20f04eae7396cbd712804325cfacfa4af1ad7b97697f983b
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.6 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Mon, 10 May 2021 00:00:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 92777
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
185.90.240.218200 OK 2.3 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (8171), with no line terminators
Hash dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2320
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
185.90.240.218200 OK 2.4 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (6607), with no line terminators
Hash 9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2398
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1
185.90.240.218200 OK 6.6 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (19706), with no line terminators
Hash 39c3f02a3475005cdc31e164a15e694d
08d659788fc9b139492510ac468e7c23362aa45c
f45bb2e1a7f9b23743cef5b2f7d7ea2282514b1aebdc9cc8549d2a81cea75d27
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.1 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Sun, 09 May 2021 23:58:53 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6596
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/script.js?ver=1621114726
185.90.240.218200 OK 113 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/script.js?ver=1621114726
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (23053)
Size 113 kB (112603 bytes)
Hash 9b59a9ea5a69c86545f71771c564dd0b
cf12bcbd529b79f3bac05a89b5da0a3ddada5d85
3a65a18bcf7cdaa0384d650d397e11ba61738f8eb7a9998226ac70e75e8455b9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/script.js?ver=1621114726 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Sat, 15 May 2021 21:38:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 112603
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
185.90.240.218200 OK 6.3 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6335
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/js/page-builder.js?ver=1.3.9
185.90.240.218200 OK 19 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/js/page-builder.js?ver=1.3.9
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (317), with CRLF line terminators
Hash 651d6529f3adfd4a5bbb45a2f5237f9e
79d6ce83bd9189246e4b6c705e7f21f138b7a892
1c972126bc119778f48001359506502b5c53d8a6e0211966b006fb742001408c
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/include/js/page-builder.js?ver=1.3.9 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Sun, 09 May 2021 23:58:10 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18662
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
185.90.240.218200 OK 6.3 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (15442)
Hash 7680263f3e0dd05de609d8cafbcd668f
4c7936acad30e14700430faa60153dd355131ab3
e01066b294dfd407a252a6a27d433b576931311f83b52352633bd6a1a3ae16cf
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6307
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/themes/kingster/js/script-core.js?ver=1.0.0
185.90.240.218200 OK 16 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/themes/kingster/js/script-core.js?ver=1.0.0
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (10443), with CRLF line terminators
Hash b9502f677d8856f2c4d6beca1b9b9921
2b1a7d87210065be4810a2f514c1ef6acf7ce4e8
5e2d69a3f93cba5d56f94246113b961d0f3ae1ac5c6ae58b5c949ae79d003e2f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/kingster/js/script-core.js?ver=1.0.0 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Thu, 09 Jan 2020 08:19:36 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16115
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
185.90.240.218200 OK 36 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (65266)
Hash e53ec3d6e21be78115810135f5e956fe
523892839b88351523e0498ba881c4431197b54e
b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36433
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.2.2
185.90.240.218200 OK 479 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (1191), with no line terminators
Hash 51300497928562f8c86c7aaba99237cd
e5826832b85c6afc6502b74cbb8ac5394b04c363
6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 479
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.2.2
185.90.240.218200 OK 453 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.2.2
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type HTML document, ASCII text, with very long lines (1107), with no line terminators
Hash 8a5c9689ae636c452b6808740ba04136
8d2c85d7779d00c12aeb6b55a99443952d9a144e
79cb399203843f65199bec32bc4abac5dfd20f141d3e4ec1424bf00c7108fa45
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.2.2 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 453
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
185.90.240.218200 OK 2.1 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type ASCII text, with very long lines (6194)
Hash 170687433986a4a559fa4f16b1d7c70e
84349b5fb0fcb057ae1768667f480fd607a1da49
722a90d42ef2bd0ea38f0fdac6b4c0523aa4a027e9ffe889972100746e165582
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: application/javascript
last-modified: Wed, 17 May 2023 09:40:47 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2071
date: Thu, 25 May 2023 15:42:41 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 02441e71b96dfcb212dc26c6742966fa
893af98d5499b9838549a364494517859f99e38e
2cffe2846eca0320d66174334f55ba35bd299aff59b40c730f7f4b179d542c7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ozelmimarsinanmtal.com/wp-content/uploads/2021/06/3.png
185.90.240.218200 OK 1.7 MB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/06/3.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 2000 x 1256, 8-bit/color RGBA, non-interlaced\012- data
Size 1.7 MB (1680495 bytes)
Hash 1947e2f80e6d9cda00c37bf32bf0f9c6
58887e4118833b162b105dd1551d621069fa0052
623f3b3431f76eb35b24d7903e0bacc0cbf28370b2f801b84e2e71308b8521ce
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/06/3.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 23 Jun 2021 15:31:20 GMT
accept-ranges: bytes
content-length: 1680495
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/WhatsApp-Image-2021-04-09-at-17.40.11.jpeg
185.90.240.218200 OK 279 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/WhatsApp-Image-2021-04-09-at-17.40.11.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1600x1200, components 3\012- data
Size 279 kB (278847 bytes)
Hash 867164056867580f1bb90f89f4544d06
4c33928307e6f77d3449a797aab31af55a704ae5
7fcdd8565e6147e571e04307d0a76a3a9bf496b22cf4f1ffbfcad2ef2f045eb6
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/WhatsApp-Image-2021-04-09-at-17.40.11.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Fri, 14 May 2021 20:02:20 GMT
accept-ranges: bytes
content-length: 278847
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/book-1.png
185.90.240.218200 OK 1.3 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/book-1.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 51 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash bae6cc01473536219e8450f44cd1210d
c0b8bd5162da5f735e6a257b5f9c72c08104e1bc
66e73a262b0d89ede9420b4bde6994d12aa7aee59a79a59e00714d892c0c615c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/book-1.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:06:09 GMT
accept-ranges: bytes
content-length: 1276
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2018/08/hp2-col-1-icon.png
185.90.240.218200 OK 2.2 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2018/08/hp2-col-1-icon.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d91119a19bc3ba7b9441b93e802da36
f35c90e1b9d63afcf14c7f46131245cda9a885e9
306746856b7e0387a82e9975e45d98a7fabdc40b53b929f15d62b20e245c3ceb
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/08/hp2-col-1-icon.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Mon, 10 May 2021 00:12:25 GMT
accept-ranges: bytes
content-length: 2198
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/12-1-400x150.png
185.90.240.218200 OK 104 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/12-1-400x150.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size 104 kB (103919 bytes)
Hash cd59120b21e7694780cc7e39a8ec596e
a3d537068dba9a51f6d2c91564e1089055ee91bd
1e7e62e023c0f9b80db175b07987442596e20c754b44a89238e9ba387b17d805
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/12-1-400x150.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:00:23 GMT
accept-ranges: bytes
content-length: 103919
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/robotik-scaled.jpg
185.90.240.218200 OK 383 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/robotik-scaled.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, manufacturer=FUJIFILM, model=X-T1, orientation=upper-left, xresolution=174, yresolution=182, resolutionunit=2, software=Digital Camera X-T1 Ver4.21, datetime=2018:12:13 23:26:04, copyright= ], baseline, precision 8, 2560x1707, components 3\012- data
Size 383 kB (383368 bytes)
Hash e34d1ac1bbeb854da731ea93d758ef37
0b134c237c1f749292cf1de39394c0ab2d8a6365
aefc0125cf26ae5df2028797b30100bd8865aa5642b1b9d49c64f6d9f4eb959d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/robotik-scaled.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Fri, 14 May 2021 20:15:13 GMT
accept-ranges: bytes
content-length: 383368
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2018/08/hp2-col-2-icon.png
185.90.240.218200 OK 2.2 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2018/08/hp2-col-2-icon.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 49 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 7fceeebb81a7dc6255d416c2482f722e
e48a95e93a2af49caf24b20e7d4134ffb57e7171
052eeca7aec0ded664055de016fcde71f4d2bb26887a170c43e56a81ac2696d3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/08/hp2-col-2-icon.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Mon, 10 May 2021 00:13:39 GMT
accept-ranges: bytes
content-length: 2181
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/help.png
185.90.240.218200 OK 1.1 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/help.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f7203054835fdb575b161c56cc59a7a
245658c144ca8f300df75ebfb36667a9d698ec42
87ea176d66a9f09ca1bc89bad6ec42f6a04f557d575ebb35ba0569fa6e4df853
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/help.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Sat, 15 May 2021 21:28:19 GMT
accept-ranges: bytes
content-length: 1131
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/13-400x150.png
185.90.240.218200 OK 41 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/13-400x150.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c28c988489d7b33b43d766a5d17c1a6
1cbb2ac012167e665112f3270f3c83ceb444d8b7
c6ccfbe27e2ff5bf0a4885ae62fa6e6ded668182b95bcf3c93757abf250aa4b9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/13-400x150.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:09:08 GMT
accept-ranges: bytes
content-length: 40911
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/1-1-400x150.png
185.90.240.218200 OK 82 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/1-1-400x150.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash a54b3a563e148ebe88f437aa47596ff5
22e607481f3ce3f25acb5e95687aef7d86e68786
47bf22d262a9e44a6b6ddd8da1cf9362578e2467e44a0cf6aeccb6a948f8c8fd
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/1-1-400x150.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:20:28 GMT
accept-ranges: bytes
content-length: 81953
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/3-400x150.png
185.90.240.218200 OK 67 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/3-400x150.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash ddd576c954851a7921316223ad5d984c
b4ed60e08ab0176347f47480835b045e0bf81d12
48dabe465f6a2ee8b4eb05a04970ee7582ae5593401a5c9c56d0bf8140ee58e2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/3-400x150.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:13:41 GMT
accept-ranges: bytes
content-length: 66807
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/20-1-400x203.png
185.90.240.218200 OK 108 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/20-1-400x203.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 203, 8-bit/color RGBA, non-interlaced\012- data
Size 108 kB (107549 bytes)
Hash 4ff442588bb715d36a3c1841ecc2de39
f4840ce0d97b7c78082a07a2f65bf57ed9a2bad5
b8c2b5b5608962385bb318899897aa09c2477b22617f719290251c742241456a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/20-1-400x203.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:39:13 GMT
accept-ranges: bytes
content-length: 107549
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2018/08/icon-play.png
185.90.240.218200 OK 2.8 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2018/08/icon-play.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 82 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash f531df3cafe206dbfc2866043082d4e3
8ff495e1790e92f2ec77ecb18b5b0c24f1621475
22a0a64150badf7a919f1cccf506dc5f2e4b4d461f868c857f37f2f8e7a41c39
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/08/icon-play.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Mon, 10 May 2021 00:06:46 GMT
accept-ranges: bytes
content-length: 2786
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/19-150x150.jpeg
185.90.240.218200 OK 6.5 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/19-150x150.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 150x150, components 3\012- data
Hash 9631241ac15805e26f0a6489ab2ff9aa
1a41350827f8ca652de0d5c535a25ca9da317c43
e9a2e644dd60cdaf63c4b108016a22a0d378af119a4af005d878914b28bf5052
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/19-150x150.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Sat, 15 May 2021 22:02:20 GMT
accept-ranges: bytes
content-length: 6484
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/18-150x150.jpeg
185.90.240.218200 OK 5.4 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/18-150x150.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 69a3ccd7ba6013fffb0618f1c3ccbee9
c7eb29b6fdc0bdea1d6ed3f990eef3d0c0d5dd5a
e26620a00affd8d708691567e13de3241709b6b8bce1ca5bdd0c85a14136e0ab
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/18-150x150.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Sat, 15 May 2021 21:57:02 GMT
accept-ranges: bytes
content-length: 5352
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/14-150x150.jpeg
185.90.240.218200 OK 5.9 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/14-150x150.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 3b3a5e399e5007baca0be31d418baab3
d0780ce2ef516a672ee622585a61d3cfbf962d63
dbbee1608d9553d427c1a976a90b791f63633ca1a7558284d5881282187eee76
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/14-150x150.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Fri, 14 May 2021 21:53:21 GMT
accept-ranges: bytes
content-length: 5914
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/5-150x150.jpeg
185.90.240.218200 OK 8.0 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/5-150x150.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash d7234447e2aea3750772528ff5e7f2b3
7ffc3bb66b38b0c343ad6b221167f7d40d8e6a73
bbb8ac54c6ccdd5632768cdb043ea53d7d23dd6d6b19db98d5a0fa12d96f63d3
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/5-150x150.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Fri, 14 May 2021 21:34:27 GMT
accept-ranges: bytes
content-length: 7978
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/o%CC%88nka.png
185.90.240.218200 OK 6.9 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/o%CC%88nka.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash d9f7c5c51be9f6c993a64ba736615e6d
6404ed62c3b07d02d0e10e36239b78b7934428bb
ec59bb028b80755495856373c571ca065ab381d920581f2b6ff98f8678815044
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/o%CC%88nka.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:52:25 GMT
accept-ranges: bytes
content-length: 6870
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/icon2.png
185.90.240.218200 OK 7.0 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/icon2.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 412 x 412, 8-bit colormap, non-interlaced\012- data
Hash 57716ea4f33991371286c059a8480035
b1a0e9ae4753cb33697f0615fb63ac453fef589d
30a1c8f49065c61eb164be2039656b4ac397ccc83cc3a7ecdb58b845c3f1c20b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/icon2.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:54:01 GMT
accept-ranges: bytes
content-length: 7009
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/fly.png
185.90.240.218200 OK 14 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/fly.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash ec39abcb99834506396195023953bd11
24838fc11bd5c972ed6b98c9dcdd24dcaf6d7069
90cc9966a6c72eb23bd434c34cee5d75ec89574e9e4209b9e281a244d7d12258
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/fly.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:53:42 GMT
accept-ranges: bytes
content-length: 13787
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/0037110_knex-education-robotics-building-system-set-400x320.jpeg
185.90.240.218200 OK 36 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/0037110_knex-education-robotics-building-system-set-400x320.jpeg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x320, components 3\012- data
Hash 6fbc7d46e3007dd48b1886d9eb865beb
0fff471ec057649a0a709d5c104d09180dfad1e5
dc7f3e42b4a4740dd4a410758ee2897ffaf0e0adaa316dcfa3345c703e4861ef
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/0037110_knex-education-robotics-building-system-set-400x320.jpeg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Tue, 11 May 2021 22:57:44 GMT
accept-ranges: bytes
content-length: 36002
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/10/1562922372_tIp5-400x266.jpg
185.90.240.218200 OK 26 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/10/1562922372_tIp5-400x266.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Bassam], baseline, precision 8, 400x266, components 3\012- data
Hash 0f7dcdfa7f8f4d954ed3ee3eddcebda2
1ba0692a8ea47a47760b199761b316a53072c71d
737ada4c533cc333aeb842e48f04fc5e877ac70b2991f9c1e463fbcefba0b29e
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/10/1562922372_tIp5-400x266.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Sat, 30 Oct 2021 10:40:10 GMT
accept-ranges: bytes
content-length: 25786
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/15-800x300.png
185.90.240.218200 OK 70 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/15-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash f63d60d919bd0dc58d58a2e2e08a9ac4
76dc76541f05c2d793395dfa987d7ec8b06e0c65
652f5699f4d47f82f3089aeb96847f61e82629a89a9b9fd9ed00ee1a210b0ece
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/15-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:05 GMT
accept-ranges: bytes
content-length: 70163
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/18-800x300.png
185.90.240.218200 OK 37 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/18-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 911c2ef214f58edfa3e83ef45673f085
a26265ea2ea5b8238e4496e3fe65faf382596b92
10923f6850089d470ce0b8ea06d04a38510d0214529ee09b3cf3032958c03fc3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/18-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:20 GMT
accept-ranges: bytes
content-length: 36640
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/16-800x300.png
185.90.240.218200 OK 128 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/16-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 128 kB (127825 bytes)
Hash 14802adb1e4ee072f8f10a75ceaed5a7
092418129eb7d77e01b574af2d8997737dd7b8bd
54c273f24987af0215ee0dffc4347e981d2b940846a15b2f8d5dc36c66a74600
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/16-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:14 GMT
accept-ranges: bytes
content-length: 127825
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/logo_k.png
185.90.240.218200 OK 12 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/logo_k.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 400 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 2edcc0f5d80a856d2f74c04874de268c
a88637ad268322665e774a6246b414b99bb3d85c
f973de4ba18b81051cb2faee9c07388df3b0db0a70e0e44b92a79342cf17efb4
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/logo_k.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:27:39 GMT
accept-ranges: bytes
content-length: 11463
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/assets/transparent.png
185.90.240.218200 OK 122 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/assets/transparent.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 300 x 200, 1-bit grayscale, non-interlaced\012- data
Hash 86c58b484b48eac285e131e8b55d2ce7
3d3ee4c137a6f36e5fbee31e21a4d08f2c38d20e
9603ffeb6772f1cf745e0097d5d6c046eaf16151e5bc521f20764bba5ddb7713
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/assets/transparent.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Mon, 10 May 2021 00:00:45 GMT
accept-ranges: bytes
content-length: 122
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/12431512_ml.jpg
185.90.240.218200 OK 241 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/12431512_ml.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1678x1119, components 3\012- data
Size 241 kB (240698 bytes)
Hash 9174ccb5bca56612e55b7c64dd0aba66
7ad7819058ad7bcca23471268a19a57d9a64a24e
b30d97d347eedc30dbfd0ce3f609fe85da768c45a5f3f6ba0f156217903bcb28
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/12431512_ml.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/jpeg
last-modified: Fri, 14 May 2021 19:59:14 GMT
accept-ranges: bytes
content-length: 240698
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/19-800x300.png
185.90.240.218200 OK 43 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/19-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d62f81adf9e07817e241227dbd16180
6450a6df6ba8f2855fe8d356f882ff5b60d32d67
877de04cefdaef0b987ecd13ec8287b0e1aa8a41e252d81d5a90988f41e9e9d7
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/19-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:22 GMT
accept-ranges: bytes
content-length: 42864
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/17-800x300.png
185.90.240.218200 OK 154 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/17-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 154 kB (153614 bytes)
Hash efc8338631d5c16cca83bdbe24f5b54e
07e871dfebafa9ed300b722967a874e8a0ffea2c
cc83a8757ac6e1226e4b6af21e67f8babc33ddead066b9c4e8897fa252519491
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/17-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:18 GMT
accept-ranges: bytes
content-length: 153614
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/Ekran-Resmi-2021-05-07-02.38.44-600x761.png
185.90.240.218200 OK 417 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/Ekran-Resmi-2021-05-07-02.38.44-600x761.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 600 x 761, 8-bit/color RGBA, non-interlaced\012- data
Size 417 kB (416876 bytes)
Hash 5b614235cf748cb0cdbf3de42029f739
e512b21f229f599216284b4609a6008765406406
b26a2c404217d02d3e7cb62e46bd29e1c769e44938f3d2337eb9547e6cfbb78c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/Ekran-Resmi-2021-05-07-02.38.44-600x761.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:08:00 GMT
accept-ranges: bytes
content-length: 416876
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/13-1-800x300.png
185.90.240.218200 OK 129 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/13-1-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 129 kB (129217 bytes)
Hash 38e9a24344c5e1676fc527f9561ce626
1c9da2958856c89845901e9439deebc4cd1f2beb
196522185cb54c8157c9d57e5e0e92f84afae4cf59d96b5f93a8d3f8a632aeae
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/13-1-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:40:56 GMT
accept-ranges: bytes
content-length: 129217
date: Thu, 25 May 2023 15:42:41 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/14-800x300.png
185.90.240.218200 OK 86 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/14-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash faac196ffc4ef4c83db3e218cfa93921
75b5f5391c640e01c725c2b7b6f68391cae2db52
b1ebeb3d1c851920288d35dc828924017538c9aa38b576e70d319b02777becfa
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/14-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:41 GMT
content-type: image/png
last-modified: Wed, 12 May 2021 21:41:02 GMT
accept-ranges: bytes
content-length: 86234
date: Thu, 25 May 2023 15:42:41 GMT
185.90.240.218200 OK 24 kB URL User Request GET HTTP/2 IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721), with CRLF, LF line terminators
Hash e02f8a5e16c184b5457b1ffff522b0c9
5798aff62271688028302efc83e144779d784027
07e55732b21d5051ac5432639d3c84bc3a6af83795bba1c0a44ddb31db4f60d8
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html;charset=utf-8
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 May 2023 15:42:40 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
isx.sx/Yyb0j5
190.115.26.9404 Not Found 0 B IP 190.115.26.9:443
ASN #262254 DDOS-GUARD CORP.
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subjectisx.sx
Fingerprint59:C9:49:53:E2:DE:83:A4:6A:A3:59:CD:9A:63:62:31:ED:E9:57:84
ValidityMon, 15 May 2023 11:43:30 GMT - Sun, 13 Aug 2023 11:43:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /Yyb0j5 HTTP/1.1
Host: isx.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=ws3A1SeO4X089h23Pz9T; Domain=.isx.sx; HttpOnly; Path=/; Expires=Fri, 24-May-2024 15:42:44 GMT
date: Thu, 25 May 2023 15:42:44 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/images/pattern/pattern-26.png
185.90.240.218200 OK 95 B URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/include/images/pattern/pattern-26.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 7 x 7, 1-bit colormap, non-interlaced\012- data
Hash fc95086d2dbfd7d85a902a1158217c61
7553dbe87fdcdcf6a7d4044cc1860590418df727
988064c64938b1fbdb1726d3e084a6c45c9a78df0ddc57b2518d28ea56d2312a
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/include/images/pattern/pattern-26.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/wp-content/uploads/kingster-style-custom.css?1621114727&ver=6.2.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/png
last-modified: Sun, 09 May 2021 23:58:09 GMT
accept-ranges: bytes
content-length: 95
date: Thu, 25 May 2023 15:42:43 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/fontawesome/fontawesome-webfont.woff2?v=4.7.0
185.90.240.218200 OK 77 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/fontawesome/fontawesome-webfont.woff2?v=4.7.0
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/fontawesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/fontawesome/font-awesome.css?ver=6.2.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: font/woff2
last-modified: Sun, 09 May 2021 23:58:18 GMT
accept-ranges: bytes
content-length: 77160
date: Thu, 25 May 2023 15:42:43 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.131200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 20:44:47 GMT
expires: Sun, 19 May 2024 20:44:47 GMT
cache-control: public, max-age=31536000
age: 413877
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.131200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 13:43:18 GMT
expires: Sun, 19 May 2024 13:43:18 GMT
cache-control: public, max-age=31536000
age: 439166
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2
142.250.74.131200 OK 5.5 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 5512, version 1.0\012- data
Hash 72b3ae37567ee5efdf2254b657c36ba9
3a4cf2dc2cabd33b5b2c7cef3221131520f618a0
9c15f7b06458075c69b40e79f03e62d43017ecf4c618487add407ee47e438684
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1JlFc-K.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 06:12:41 GMT
expires: Sun, 19 May 2024 06:12:41 GMT
cache-control: public, max-age=31536000
age: 466203
last-modified: Wed, 27 Apr 2022 16:59:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.131200 OK 8.0 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:33:35 GMT
expires: Wed, 22 May 2024 21:33:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
age: 151749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash abec0b27117032d4b87c029a25e2ce98
4c80c24717da4be72fd100343c5e92c1724ccd74
bc6bffd934c5172ab19ec9a41808b5543016f109670947e16c7ba285a295f606
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
142.250.74.131200 OK 10 kB URL GET HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 10172, version 1.0\012- data
Hash 58e5c92fd1a1fc89b8ca6d74ce4793b8
337771c465778aeed6de18195e0cbe9d9098d299
6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 20:47:15 GMT
expires: Thu, 23 May 2024 20:47:15 GMT
cache-control: public, max-age=31536000
age: 68129
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZTaR.woff2
142.250.74.131200 OK 8.5 kB URL GET HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZTaR.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 8484, version 1.0\012- data
Hash f8bd683198a0c17430d5d6b9c042e8f5
31fde26e2677682ebd2082ac15849a5420274a59
f5500a0b8fe7dac5491317e13d1602c805e37a4c5c4d0ff49f73897e541df398
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUhiZTaR.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 21:00:55 GMT
expires: Sun, 19 May 2024 21:00:55 GMT
cache-control: public, max-age=31536000
age: 412909
last-modified: Mon, 18 Jul 2022 19:13:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2
142.250.74.131200 OK 5.4 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 5384, version 1.0\012- data
Hash 96b6d54684daa94742f7bfd72a981213
72c3ac29b2fcceea390d3a51c7a892efde65e4d9
4ce2c84c474fb80b33e347ae6f356796021d6fd42e88a6352fc6e9ca0b22bd63
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1JlFc-K.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5384
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 20:06:14 GMT
expires: Wed, 22 May 2024 20:06:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:11:38 GMT
content-type: font/woff2
age: 156990
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2
142.250.74.131200 OK 5.5 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 5544, version 1.0\012- data
Hash 0ed299a4bb5262e17e2145783b2c18f1
65af2a037a5ef8a8d383d518377ea1f9f6837631
cb8bdeabc838774d9808eb7c4cfcea963b57855e34f84b54797076940c8e5986
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 23:48:43 GMT
expires: Thu, 23 May 2024 23:48:43 GMT
cache-control: public, max-age=31536000
age: 57241
last-modified: Wed, 27 Apr 2022 17:03:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/white-abstract-background_23-2148807107.jpg
185.90.240.218200 OK 26 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/white-abstract-background_23-2148807107.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 626x417, components 3\012- data
Hash 7b22273994be3e3290bfcb1077d51219
3ac4e799d328ef3714d3cc1f0a1a69470ba1110a
3d7633cd4b9a6a641af2d2c01e0d8e4ce1ea2b49d82dde5bd8ea8876c6344074
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/white-abstract-background_23-2148807107.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/jpeg
last-modified: Tue, 11 May 2021 21:43:58 GMT
accept-ranges: bytes
content-length: 26160
date: Thu, 25 May 2023 15:42:43 GMT
fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
142.250.74.131200 OK 8.7 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 8668, version 1.0\012- data
Hash a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972
GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 16:00:55 GMT
expires: Wed, 22 May 2024 16:00:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:07:02 GMT
content-type: font/woff2
age: 171709
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLufntAKPY.woff2
142.250.74.131200 OK 5.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiGyp8kv8JHgFVrJJLufntAKPY.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 5872, version 1.0\012- data
Hash efd6a6a18154ed2f4807d32eb2fc63d5
79d61f8cf8377508651416ce8dded1352ebf8455
9fb5a679a3d60559edb2a998855e831ac11d3c863b25a24cd520e39302c8073a
GET /s/poppins/v20/pxiGyp8kv8JHgFVrJJLufntAKPY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 01:52:35 GMT
expires: Thu, 23 May 2024 01:52:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:07:01 GMT
content-type: font/woff2
age: 136209
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
142.250.74.131200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 7824, version 1.0\012- data
Hash af4d371a10271dafeb343f1eace762bc
6d11d743bc3cfb169d70bc86450f18351dc1a905
60bf0aba6526436f3930c58c12047687fbb6bff4dd180cce4613458ed3439ea2
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 13:53:35 GMT
expires: Sun, 19 May 2024 13:53:35 GMT
cache-control: public, max-age=31536000
age: 438549
last-modified: Wed, 27 Apr 2022 16:52:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3Aregular%2Citalic&subset=devanagari%2Clatin%2Clatin-ext&ver=6.2.2
142.250.74.106200 OK 66 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3Aregular%2Citalic&subset=devanagari%2Clatin%2Clatin-ext&ver=6.2.2
IP 142.250.74.106:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash a4e9c0dc2b9d0794233519b41ae81369
3bf5c23d010eb07df2377e96583692569f5974f4
e5d6ad75e15359528ec56f479bd40d1f655e859ac88670ca4881db70db0ef84d
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CABeeZee%3Aregular%2Citalic&subset=devanagari%2Clatin%2Clatin-ext&ver=6.2.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 May 2023 15:42:42 GMT
date: Thu, 25 May 2023 15:42:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/uploads/2016/06/image-bg-4.jpg
185.90.240.218200 OK 57 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2016/06/image-bg-4.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x999, components 3\012- data
Hash d88e6c347f7bb4b44f5faa46a794698b
f096845cc7ad59966c72dd58ff9170ee8d8fbbce
c5b70c2ed97ec582c4694ea9170910921a5fe1a22e03ae07d854ec6d5255384c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/06/image-bg-4.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/jpeg
last-modified: Mon, 10 May 2021 01:10:14 GMT
accept-ranges: bytes
content-length: 56639
date: Thu, 25 May 2023 15:42:43 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2018/08/search-bg-2.jpg
185.90.240.218200 OK 20 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2018/08/search-bg-2.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x1114, components 3\012- data
Hash e5f67bc1e924fed2433900ad12b4c3b4
0ab6740424ee007f4de4f85c52be6a901dbdfc5d
45687e8caec4ea337bf61ff18ac9d18a39af2476c1c1a0718ce8931795776994
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/08/search-bg-2.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/jpeg
last-modified: Mon, 10 May 2021 00:12:27 GMT
accept-ranges: bytes
content-length: 19924
date: Thu, 25 May 2023 15:42:43 GMT
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2
142.250.74.131200 OK 5.5 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2
IP 142.250.74.131:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 5476, version 1.0\012- data
Hash ba40202b1c1dcacbdbb7bcd2042a410f
858a2b9dc3a53a334b066eed777536ad4ca0b69f
e1a480726061f52e5290af6fa69c4a45d74243d7eb4ddcaca55a9213b39a8eae
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDD4Z1JlFc-K.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ozelmimarsinanmtal.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 13:54:28 GMT
expires: Sun, 19 May 2024 13:54:28 GMT
cache-control: public, max-age=31536000
age: 438496
last-modified: Wed, 27 Apr 2022 16:15:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/aa.png
185.90.240.218200 OK 425 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/aa.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 800 x 789, 8-bit/color RGBA, non-interlaced\012- data
Size 425 kB (424610 bytes)
Hash 54e555dcaa58cb2fb1f64e26192781cf
f5953663dc805d92a2c0bb691c8af6b08fd12bab
c620aa978ffa373710c79749f0743b12a15c3f0840ea0a71b21b0f15fcc3dad8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/aa.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 21:41:36 GMT
accept-ranges: bytes
content-length: 424610
date: Thu, 25 May 2023 15:42:43 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2018/08/shutterstock_608688050.jpg
185.90.240.218200 OK 211 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2018/08/shutterstock_608688050.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1376, components 3\012- data
Size 211 kB (210884 bytes)
Hash ce98fe2665cdfd04d4674d95b14b0047
5a82ce8c2efcb19c56808ac100578da0bb7a2f0f
3f16cdc05797776575c13923ed596904ec8c9081afa378eed31dd9eb6b28c80b
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2018/08/shutterstock_608688050.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/jpeg
last-modified: Mon, 10 May 2021 00:12:52 GMT
accept-ranges: bytes
content-length: 210884
date: Thu, 25 May 2023 15:42:43 GMT
ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/elegant/ElegantIcons.woff
185.90.240.218200 OK 64 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/elegant/ElegantIcons.woff
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type Web Open Font Format, CFF, length 63664, version 1.0\012- data
Hash fdd9e757bf61675343dcf55100422b84
f9be87fa2d1d4a95e8305afb51778db4bc759fbc
be1825e52a0dc7df04df9322f62abe2a2f2a25d98aac186de0140dfc7f6bdcae
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/goodlayers-core/plugins/elegant/ElegantIcons.woff HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/wp-content/plugins/goodlayers-core/plugins/elegant/elegant-font.css?ver=6.2.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: font/woff
last-modified: Sun, 09 May 2021 23:58:14 GMT
accept-ranges: bytes
content-length: 63664
date: Thu, 25 May 2023 15:42:43 GMT
ozelmimarsinanmtal.com/wp-content/uploads/2021/05/industries-4327631_1920-1.png
185.90.240.218200 OK 1.5 MB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021/05/industries-4327631_1920-1.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type PNG image data, 1920 x 1281, 8-bit/color RGBA, non-interlaced\012- data
Size 1.5 MB (1479495 bytes)
Hash 71aff43c90ae50a3f59db2b15bbcd890
d16a317942311e35905c33cd18a2cdcc609d9139
5638dd02e1431426587b3c57ca8a3e52223bb821dbbf1512998ae9a00c915698
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021/05/industries-4327631_1920-1.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/png
last-modified: Tue, 11 May 2021 22:50:10 GMT
accept-ranges: bytes
content-length: 1479495
date: Thu, 25 May 2023 15:42:43 GMT
isx.sx/Yyb0j5
190.115.26.9404 Not Found 0 B IP 190.115.26.9:443
ASN #262254 DDOS-GUARD CORP.
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subjectisx.sx
Fingerprint59:C9:49:53:E2:DE:83:A4:6A:A3:59:CD:9A:63:62:31:ED:E9:57:84
ValidityMon, 15 May 2023 11:43:30 GMT - Sun, 13 Aug 2023 11:43:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /Yyb0j5 HTTP/1.1
Host: isx.sx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=n1NlIF4v45edOCryFUYD; Domain=.isx.sx; HttpOnly; Path=/; Expires=Fri, 24-May-2024 15:42:44 GMT
date: Thu, 25 May 2023 15:42:44 GMT
content-length: 0
content-type: text/html; charset=UTF-8
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/uploads/2021-800x300/05/21-800x300.png
185.90.240.218200 OK 25 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2021-800x300/05/21-800x300.png
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9721), with CRLF, LF line terminators
Hash e02f8a5e16c184b5457b1ffff522b0c9
5798aff62271688028302efc83e144779d784027
07e55732b21d5051ac5432639d3c84bc3a6af83795bba1c0a44ddb31db4f60d8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2021-800x300/05/21-800x300.png HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html;charset=utf-8
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 May 2023 15:42:41 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ece678e436a0e84e708cc83cef564a4d
386d2687ff7259e118e091d44570cb22ed45b8fd
1279089948be927657846ae616a126038e553137ac42d070d9c2fc3b2b8a3252
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mejs-controls.svg
185.90.240.218200 OK 1.3 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mejs-controls.svg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597)
Hash f0849a5e79712b10e1531925e3edb879
a5fd4a315cb977532daca83c130ce8ffc57f6f3f
ad55816ac6c62f214e60a1913ff4f0215ab329034cbc7436a5514941449ca7b9
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:44 GMT
content-type: image/svg+xml
last-modified: Tue, 02 May 2023 14:14:55 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1316
date: Thu, 25 May 2023 15:42:44 GMT
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ece678e436a0e84e708cc83cef564a4d
386d2687ff7259e118e091d44570cb22ed45b8fd
1279089948be927657846ae616a126038e553137ac42d070d9c2fc3b2b8a3252
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
185.90.240.218200 OK 7.5 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:44 GMT
content-type: font/woff
last-modified: Mon, 10 May 2021 00:00:47 GMT
accept-ranges: bytes
content-length: 7536
date: Thu, 25 May 2023 15:42:44 GMT
www.youtube.com/s/player/41b8bed0/www-widgetapi.vflset/www-widgetapi.js
142.250.74.46200 OK 63 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/www-widgetapi.vflset/www-widgetapi.js
IP 142.250.74.46:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (580)
Hash c2931a4be47cf5ac51bcb84dd4579153
087440ffe9f5846d9506eb6d19092932b510e6f9
be747f0fecef3f2286043ec0d813a4bf2c817ba6723d2df86f4b4e0a814c6b2b
GET /s/player/41b8bed0/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 62760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:02:16 GMT
expires: Tue, 21 May 2024 16:02:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 258029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.131200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.131:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 20:50:04 GMT
expires: Sun, 19 May 2024 20:50:04 GMT
cache-control: public, max-age=31536000
age: 413561
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/41b8bed0/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.46200 OK 2.6 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (552)
Hash 949e94fed78d252b728cdc2aa6ddc56a
d2bfdd653bb3da592097fb4ddb6eabbdc3060562
ac8177161c3038b07597ec544de3c00f46e1a0aa6b4b4c045ff0495553cc5069
GET /s/player/41b8bed0/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2625
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:04:07 GMT
expires: Tue, 21 May 2024 16:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 257918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/41b8bed0/www-player.css
142.250.74.46200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/www-player.css
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash b8afa5d85a1bf60a05181715a1b9d405
5b3124b4a0cb3d14d9c7a69d2cecdfa24b475304
2da3463d43c823fbf9a6df6c58b0bca86f25083def66cd532f31b114b997df04
GET /s/player/41b8bed0/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48702
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:02:14 GMT
expires: Tue, 21 May 2024 16:02:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 258031
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.131:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 07:53:09 GMT
expires: Fri, 24 May 2024 07:53:09 GMT
cache-control: public, max-age=31536000
age: 28176
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/41b8bed0/www-embed-player.vflset/www-embed-player.js
142.250.74.46200 OK 94 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (660)
Hash 3bff3f379d9d61f4e14157774c6d0c06
ecac0d658c82d5f3cde38bcb08160b991e426159
2a033a7e296966308162fd5b76502c3ec9f0ce00808ce06d74fcf1dfbdfd117c
GET /s/player/41b8bed0/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 94038
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:04:07 GMT
expires: Tue, 21 May 2024 16:04:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 257918
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/41b8bed0/player_ias.vflset/en_US/base.js
142.250.74.46200 OK 760 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/player_ias.vflset/en_US/base.js
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (555)
Size 760 kB (759594 bytes)
Hash ea7042ef609b3644b5940dc1bc31ae8a
aeb9bc8e2d96e0d3dc04a41cd652b26afbfca9bc
78df93cba5d751496b2ee7a2c2b7076a842a9118319a6346715970990e793a08
GET /s/player/41b8bed0/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 759594
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 16:01:42 GMT
expires: Tue, 21 May 2024 16:01:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 258063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 May 2023 15:42:46 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 32 kB URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d6a3bdcdd366746e1988991047ef0afb
2e57eecbb7dd68ac14dfc0f8a4bc0e33422d6f35
ee4ef8d9e2e965190273d3f6b27c2315421506d7e219da5340ddc205301563d4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 May 2023 15:42:46 GMT
server: ESF
cache-control: private
content-length: 31607
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 2a2f84f23f13b9719a1ef5b836b4d9e6
a68eea2c7e85a3744074dfda347131ac04f60820
4896b8c48281cfa9ee3fbb5f3f8be5ec0233f458eece4dd7118bc03bee88148e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bc9c6249969058278c88b046ce99ba38
a34069fde827758b0c65a171904ab95afac53cc0
7091571bae8f2d9f2b0722bf6c3dd7a5abb53296aea66d05c101b3021f9de673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/FLmCQnPd5ZT-YT6JBGANbUhafxNiHRvxCleld38UZjw.js
142.250.74.164200 OK 15 kB URL GET HTTP/2 www.google.com/js/th/FLmCQnPd5ZT-YT6JBGANbUhafxNiHRvxCleld38UZjw.js
IP 142.250.74.164:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type ASCII text, with very long lines (37742)
Hash e445d187a95005505f3f72e3241b6350
e2dc605e14343d3fde311089835216752d476fa7
14b9824273dde594fe613e8904600d6d485a7f13621d1bf10a57a5777f14663c
GET /js/th/FLmCQnPd5ZT-YT6JBGANbUhafxNiHRvxCleld38UZjw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14930
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 05:05:48 GMT
expires: Thu, 23 May 2024 05:05:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 09:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 124618
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
142.250.74.46200 OK 39 kB URL GET HTTP/3 www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
IP 142.250.74.46:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58433)
Hash 1a915f09172be5fbbb77e52227b2c488
2ce68cd9d1d458c9bcbc9f1f22cf6da4e04aad31
cb3e8fd13810be9959ac5a84c692f6eefe6467302e9b65bca90af7453bbe771a
GET /embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 May 2023 15:42:45 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=NVK-zyGx2Yc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=iyAoMaWjtbo; Domain=.youtube.com; Expires=Tue, 21-Nov-2023 15:42:45 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+277; expires=Sat, 24-May-2025 15:42:45 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.ytimg.com/vi_webp/OpTzqylZHIY/default.webp
142.250.74.86200 OK 3.4 kB URL GET HTTP/2 i.ytimg.com/vi_webp/OpTzqylZHIY/default.webp
IP 142.250.74.86:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF9:E1:B3:65:3F:5D:36:FF:06:4D:60:C1:A3:AF:28:24:76:8C:35:87
ValidityMon, 24 Apr 2023 11:56:03 GMT - Mon, 17 Jul 2023 11:56:02 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 103363703417d7839a4354896f662fb3
f5d0c6b2ff27e18708d1e47bbcecaf5a61995153
e2c818f24ac2ab2dd3f8329930cf7a240183116933f1b0d47487cbe459dbf35f
GET /vi_webp/OpTzqylZHIY/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 3428
date: Thu, 25 May 2023 15:42:46 GMT
expires: Thu, 25 May 2023 17:42:46 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7ea62619d55a439ab16f57b4324eae5e
c2e6dccf88df570935b8d3152d139f2da45505cb
677d16cfa8b3af855937fa6be2fa45543af15544045663202fbf6dbb5f09ae9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash bc9c6249969058278c88b046ce99ba38
a34069fde827758b0c65a171904ab95afac53cc0
7091571bae8f2d9f2b0722bf6c3dd7a5abb53296aea66d05c101b3021f9de673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 25 May 2023 15:42:47 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.106200 OK 110 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.106:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 0b97d7f9bf0f6a6b7b1e8376de936478
f38401fcc2fa0a377061b98d8a7e97616d2cfcd1
9ab1e7fe4dc61bf62bac9aa228d8319e9d8c03691e793d6874c958101f700bf8
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1055
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 25 May 2023 15:42:47 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/generate_204?uIDPqA
142.250.74.46204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?uIDPqA
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?uIDPqA HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 25 May 2023 15:42:47 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/watch?v=OpTzqylZHIY&t=1s&_=1
142.250.74.46200 OK 279 kB URL GET HTTP/2 www.youtube.com/watch?v=OpTzqylZHIY&t=1s&_=1
IP 142.250.74.46:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56930)
Size 279 kB (279373 bytes)
Hash 980aaba0a3de1bd9da3f7d56398b73e4
70fd689fa80f224eace53a1ef3451543ad4f2899
c776524b64b129fe127af27a5b74d3b1291efb039aaeaac1513e2efb22f82620
GET /watch?v=OpTzqylZHIY&t=1s&_=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 May 2023 15:42:45 GMT
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
x-xss-protection: 0
set-cookie: YSC=yMrNtDwXcIE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Fri, 28-Aug-2020 15:42:45 GMT; Path=/; Secure; HttpOnly; SameSite=none
__Secure-YEC=CgtabThiYUJ2M2E0TSj1g76jBg%3D%3D; Domain=.youtube.com; Expires=Sun, 23-Jun-2024 15:42:44 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+137; expires=Sat, 24-May-2025 15:42:45 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7ea62619d55a439ab16f57b4324eae5e
c2e6dccf88df570935b8d3152d139f2da45505cb
677d16cfa8b3af855937fa6be2fa45543af15544045663202fbf6dbb5f09ae9c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 25 May 2023 15:42:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.46200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1685029368563
Content-Type: application/json
X-Goog-Visitor-Id: CgtpeUFvTWFXanRibyj1g76jBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230521.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1685029365793&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C270%2C152&vis=1&wgl=true&ca_type=image
Content-Length: 10457
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 25 May 2023 15:42:48 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+572; expires=Sat, 24-May-2025 15:42:48 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 25 May 2023 15:42:48 GMT
cache-control: private
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
142.250.74.46200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1685029382506
Content-Type: application/json
X-Goog-Visitor-Id: CgtpeUFvTWFXanRibyj1g76jBg%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230521.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1685029365793&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C270%2C152&vis=1&wgl=true&ca_type=image
Content-Length: 628
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 25 May 2023 15:43:02 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+909; expires=Sat, 24-May-2025 15:43:02 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Thu, 25 May 2023 15:43:02 GMT
cache-control: private
www.youtube.com/s/player/41b8bed0/player_ias.vflset/en_US/embed.js
142.250.74.46200 OK 30 kB URL GET HTTP/3 www.youtube.com/s/player/41b8bed0/player_ias.vflset/en_US/embed.js
IP 142.250.74.46:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (3391)
Hash 34c91ce461b81260baffbac42bf5cbf8
f81bf88e16f7284478e1447d61c9590ae3dd7291
a6549cd26c7718a1cd44677b74ccb2072a963eceaa0609fbb27b41aab1a7cc1b
GET /s/player/41b8bed0/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 8273
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 16:14:42 GMT
expires: Wed, 22 May 2024 16:14:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 01:46:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 170884
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Roboto:400%7COswald:700
142.250.74.106200 OK 3.8 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400%7COswald:700
IP 142.250.74.106:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (3938), with no line terminators
Hash 3e6fda9672af9c3c1d9fc47ed9be91a3
f3a0f2bcc9227eaa4444adb20200ba9574b9a8a0
b043e04aec023d88c2cefe856fdebe6bc8e9bca6bfc1da251c22b73aa9f18186
GET /css?family=Roboto:400%7COswald:700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 25 May 2023 15:42:42 GMT
date: Thu, 25 May 2023 15:42:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/favicon.ico
185.90.240.218404 Not Found 708 B URL GET HTTP/3 ozelmimarsinanmtal.com/favicon.ico
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (739), with no line terminators
Hash 9a088ded79e56cc72e737869c04f755f
1431a084bae06f9a31fc4f1f9c87887be8f64b2d
768cb8655c2f2a1c7d68551a7e858fe3f13e2101172c4898638a2240b5b25ad2
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 708
date: Thu, 25 May 2023 15:42:44 GMT
yt3.ggpht.com/7HFMCIvgC3oIy8pl4yNfIO36yE9MlNQ-qykLMwjmGRsEYngQ_ypQpz5wm0iJoB7S4BqlbqJAWQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 4.4 kB URL GET HTTP/2 yt3.ggpht.com/7HFMCIvgC3oIy8pl4yNfIO36yE9MlNQ-qykLMwjmGRsEYngQ_ypQpz5wm0iJoB7S4BqlbqJAWQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:443
Requested by https://www.youtube.com/embed/OpTzqylZHIY?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fozelmimarsinanmtal.com&widgetid=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 301d89b531ae222dc3bee1816f11b0b4
a6543d8150cb44ea2f8375a2312b55c84ec4c29b
7364faa2105cc3e0faf64742ef52066a8fcb088e75e3a15934154960485f4ea7
GET /7HFMCIvgC3oIy8pl4yNfIO36yE9MlNQ-qykLMwjmGRsEYngQ_ypQpz5wm0iJoB7S4BqlbqJAWQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 26 May 2023 15:42:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
date: Thu, 25 May 2023 15:42:47 GMT
server: fife
content-length: 4377
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ozelmimarsinanmtal.com/wp-content/uploads/2016/06/image-bg-3.jpg
185.90.240.218200 OK 65 kB URL GET HTTP/3 ozelmimarsinanmtal.com/wp-content/uploads/2016/06/image-bg-3.jpg
IP 185.90.240.218:443
ASN #200977 Sunucuyeri Internet Bilgisayar Turizm Sanayi Ve Dis Ticaret Limited Sirketi
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerLet's Encrypt
Subject*.ozelmimarsinanmtal.com
Fingerprint68:1D:14:22:4F:11:08:41:6A:5F:5F:7F:61:40:42:C2:25:48:D0:93
ValidityWed, 05 Apr 2023 01:41:15 GMT - Tue, 04 Jul 2023 01:41:14 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1800x999, components 3\012- data
Hash b54ad8fe42dea3a405eaf565bfa5e622
0d9258ebf78eebffe8e8d82294058f8c954b0cd7
7a073be983168606d566a437cb6391feca65986bffb027041c7a878c731779e3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2016/06/image-bg-3.jpg HTTP/1.1
Host: ozelmimarsinanmtal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
cache-control: public, max-age=604800
expires: Thu, 01 Jun 2023 15:42:43 GMT
content-type: image/jpeg
last-modified: Mon, 10 May 2021 01:06:43 GMT
accept-ranges: bytes
content-length: 64617
date: Thu, 25 May 2023 15:42:43 GMT
www.youtube.com/player_api
142.250.74.46200 OK 1.1 kB URL GET HTTP/2 www.youtube.com/player_api
IP 142.250.74.46:443
Requested by https://ozelmimarsinanmtal.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (1088), with no line terminators
Hash 2e8bf2499a280953563e7d5eb00d4ae6
da2c370178a63c57140e036073d552c5b8b89152
c2cf988a6a5e61305909f8cd37d8cc2f8394a4cb4b39ecd5af28a45285e6acbe
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ozelmimarsinanmtal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 25 May 2023 15:42:45 GMT
date: Thu, 25 May 2023 15:42:45 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=aHlyaIhVnE8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=P7ChwBrb37I; Domain=.youtube.com; Expires=Tue, 21-Nov-2023 15:42:45 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+477; expires=Sat, 24-May-2025 15:42:45 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2