| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maliyecezauzlasmasi.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 513418
expires: Sun, 06 Apr 2025 03:50:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bwj5ap62CVt%2FxMysD%2BPLWl91VRiy7EUs6X6uwAc4PS9UhTIXo0Yy3Kw3mSdut0%2F0bPfNvYzTb7xtu2cCvjbViosdMPNFRXwZZZQ1r4QWKlDzZkNNI7LoR6fvy2IJC2EeXJOhrk7L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87513687ee421bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css | 151.101.193.229 | 404 Not Found | 53 B |
URL GET HTTP/3cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css IP151.101.193.229:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hash443e9639be67e1a95cb3ce7d451d4ac9 bef1ee0280dc8432962f59987dfa9c1bb905ba56 e8d95ffd01232feceb816157cafc4af1d7f61b20238265c5ab97819c14225f40
GET /npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=30, s-maxage=30
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"33-vvHuAoDchDKWL1mYffqcG7kFulY"
content-encoding: br
accept-ranges: bytes
age: 14
date: Tue, 16 Apr 2024 03:50:45 GMT
x-served-by: cache-fra-eddf8230081-FRA, cache-hel1410034-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js | 151.101.193.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js IP151.101.193.229:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hashe2b09c06f0e714b6144a6788a28e3950 ce54f85f278fbcd5cb2292f9c186eedf63cdcf88 d2ea6c1e0cabca20d18e924b25a1cd0187c38ba7c33f60ab06e1b0402b9bcdb5
GET /npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://maliyecezauzlasmasi.com
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.1
x-jsd-version-type: version
etag: W/"13b1c-zlT4XyePvNXLIpL5wYbu32PNz4g"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:50:45 GMT
age: 8918412
x-served-by: cache-fra-etou8220068-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25082
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css | 151.101.193.229 | 404 Not Found | 53 B |
URL GET HTTP/3cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css IP151.101.193.229:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hash443e9639be67e1a95cb3ce7d451d4ac9 bef1ee0280dc8432962f59987dfa9c1bb905ba56 e8d95ffd01232feceb816157cafc4af1d7f61b20238265c5ab97819c14225f40
GET /npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
content-length: 53
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=30, s-maxage=30
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"33-vvHuAoDchDKWL1mYffqcG7kFulY"
content-encoding: br
accept-ranges: bytes
date: Tue, 16 Apr 2024 03:50:45 GMT
age: 14
x-served-by: cache-fra-eddf8230081-FRA, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://maliyecezauzlasmasi.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 513209
expires: Sun, 06 Apr 2025 03:50:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PK5juNWufjUpfoXnw0Tl3aLm1SX%2B7RIrKVEcOxgVsYEdAkXndoET9uDmMDLDrkWbK4QVPBMTao9w9N2CLlkf7Gt%2FkJWzy9KbEksGQh9Y%2Fp0QLN0oRzDoI18CNn6rbuXbuQNTea8S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 875136895e971bfe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: bfd895e541fb8c6f47234c9cd1f26c90
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: 36e495718c543783c2e117356e3320f9
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: 62d8d61b6603a8235d08b04f49236b15
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/favicon-196x196.png | 104.21.89.149 | 200 OK | 15 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/favicon-196x196.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1973), with CRLF line terminators Hashfd5973e8975ea0ee00021bee97271870 c1e2bda1337f5c6dfb3d0b4db1451675fefc7193 bdad3e72e7bb87c9132db29dd7cfe6b747ee0c1713430916ad95e472a293ac05
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/favicon-196x196.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:46 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Es5o7jNl4bYOiI71beU%2BLe6A8N7gv0ixK%2BnmuGIEZmks6dlDrlrYcZeTbG3j4n0oHQLsoNI37PuL5Qucnl9qvDU%2B4knwgnu8sMPfaQDsscapQsYQ4QTGVLZs4ecC9eAtlq1ato2auRp%2FtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8751368d88cbb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/css/login-main.css | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/css/login-main.css IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/css/login-main.css HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XgkbQMlEY33S%2FAXKljg3gx%2FqNJ6SsDTnq3vPjkWleeBwPLsa4PA3BdtaEHKUHk1FvypqmpaMpPf561%2Fdfbxgja%2F27Al5bidSZw5ua80lXW6z4EUWkcvSJ0AWcEoGUvEBwx7XeDNhYKSn9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87513687ef10b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:46 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ydpbUtKsYIE6xB1lr5F4exbH5BhcUgxeupO1J5%2FOH9UfzTwx5geFGhs1t%2FiOmBvlLeY7HxN%2Ft5AGjrPfbcBbY5%2BcoFerZ3%2BBvZurvoSaEhrRcEDESdrq3lnotvViBdEEMCiHSiB7oQWHgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8751368cb882b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: e4a3b7971a79e888fc97b9da8c0dca43
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/edk.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/edk.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/edk.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vyfgXBqUyIZ1JILk0wokVuRfVxEgIkO2LqHCNTmpoigEUtVD16rGxW7yWWGIRocQ%2Bi7bAFqojPvymIus1HwOHXgqLiX9u7j52kRAsENOQYw63YP8LS%2BlbvWGuMKbLKAeHodCUeT%2BYVQ1bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875136891f70b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/DDO-logo.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/DDO-logo.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/DDO-logo.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZT7gxrUwn3%2F2h9bSn6itkhMAg82u%2FZsJs2lfVfeElVMLkMCrmrBt9K4NAW4ZkXHKfAsbIPkdGII7Ro1CIgjJsxANLKTtJLAfEVDrkI8pwh04kEsghHksDONesmJEZjo3pUcUYB83DHTiKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87513687ef13b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/jquery.jcryption.js | 31.3.2.106 | 200 OK | 66 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/jquery.jcryption.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/izmir/js/es/jquery.jcryption.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Fri, 29 Sep 2023 12:10:47 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc6550d85e8aba9d05d225503dcfca5a125c1d99c72a8fef2c44b152de133c944409fe8db84ce51262a780c02fad88555; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: MNCDN-2137
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: e94f062d4846200f0972a21891747a8b
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/edk-giris.1.9.4.js | 31.3.2.106 | 200 OK | 7.9 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/edk-giris.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8451), with no line terminators Hash447c3094f53b0888003cd725165d7dbb 4c98fdaa2b6fc75bc38a30f513e4b75cc0c34922 47e734173976def96c20978e0533f3a1ce692fb3e65dca023c2ceff5d1484ade
GET /themes/izmir/js/es/edk-giris.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Thu, 28 Dec 2023 12:47:46 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d6edef2d761f4b9997e0a40db7ffc8524ea992bbddbd8a627d6924f3aa470e750c0ec296295836618037b4e86893f579d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: e2ffc32159cf57253e0b0ba5dff36350
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: 4333f3b10671f234b6848d31e49db74c
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/999.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/999.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/999.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QaiCYWh5bcZEFbRpv%2FB3Vj07SICp%2FmD1io259ng5tFlJslKbdXjJocfLB6TrHfC2goTfGCpk5kizDwEZ3EDLkwC4%2F1q39qdgydHrD%2BomsgQgkqRbiDaJOih1cSHGMRzcKAX7ZfqVfhy6qQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875136891f71b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/ | 104.21.89.149 | 200 OK | 18 kB |
URL User Request GET HTTP/2maliyecezauzlasmasi.com/sorgu.php/ IP104.21.89.149:443
CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /sorgu.php/ HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=onA9%2FcFefXt%2BDESeBEWSsYCg0vW%2BM7wHR1BEfLeQdw%2BjIk%2FCLHNXRRkyvZf1JuVMACsgKVyXCEiMeqZrpBfLevsTIk%2BHUVI5FYyl74Vheeyeu6XAV1Zf77D%2F6oVl5wJYAiPtntSfHK1wMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875136862cdb56cc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/edk.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/edk.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/edk.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fIlVe1UmcNzJ7Dixx6qb85fRRc5dzsqVy0O1zx2oAz%2Fcoj8CoUj7PHmG2YROIAo06u2veXSGKd9cFZgHiDBvVXdNPLFk7%2FC6zAwSp40aEObJnhG0swcM6xISO2LOlSHuYWy%2F6vMG7EaYPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87513687ef11b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/999.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/999.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/999.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MQ%2BEb51QEiK91%2BfGwuqUCG6oNctoFAsTaxIsbyP5vapJ5SF9dHS%2FWLBaFA9XUQHFyt8CKTxrYJvLHtPTak8j2xSyPOxovsHyJBlFn62iwFEVUZKAcq9Bh%2FUhcEMN7qj%2F05UYuu3ojDdx8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87513687ef12b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maliyecezauzlasmasi.com/sorgu.php/path/img/DDO-logo.png | 104.21.89.149 | 200 OK | 18 kB |
URL GET HTTP/3maliyecezauzlasmasi.com/sorgu.php/path/img/DDO-logo.png IP104.21.89.149:443
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectmaliyecezauzlasmasi.com FingerprintB0:7A:DA:AA:B2:7B:72:FE:6A:25:A3:9F:41:2D:00:FB:23:0A:20:B8 ValiditySun, 14 Apr 2024 17:45:30 GMT - Sat, 13 Jul 2024 17:45:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/DDO-logo.png HTTP/1.1
Host: maliyecezauzlasmasi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/sorgu.php/
Cookie: PHPSESSID=pfaqslr651eehp34m32jm71r67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 03:50:46 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5D6Oth%2BlRUF93u%2BYVGHn9gnFXXfz7z5hfThA9%2BMxMWbnH5LQ1N22gJ0XUjEdIlXbbiCOMRwc9Z%2B%2FsvxSTlhCB%2FauZ%2F6z6lkdDOXH32VofHglu8cdlYJeZmn9SOxULKHJsLmS7teef%2FEaTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875136893f7db51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.106 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: 2d00d810c88f56e5c38c5d7a9f34748a
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/common.js | 31.3.2.106 | 200 OK | 144 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/common.js IP31.3.2.106:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://maliyecezauzlasmasi.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
Size144 kB (144214 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/izmir/js/common.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://maliyecezauzlasmasi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 03:50:45 GMT
last-modified: Thu, 07 Mar 2024 08:58:33 GMT
expires: Mon, 15 Jul 2024 03:50:45 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6db2e77695590dd90ba48de0f7de0ad6157dd97b48de1183f08c09bda0561c72637ed36cd98f7724210387eeddae4ab2dc; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-237
x-edge-location: DE-372
x-mnrequest-id: 2daebd0fae8ca0c22f6ec211df17afbd
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|