www.acikdenissyabankm.xyz/
172.67.160.63200 OK 14 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (416)
Hash 1c2d110d489bcac330f014edb1f20fc1
80fa316d0cc6f4ea30e617e38546933ae5535fe2
78b088e9660a8c81b994c689c5f00f19f043220409fe295b886f0c5e9e923fb8
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET / HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; expires=Wed, 25-Jan-2023 22:05:11 GMT; Max-Age=7200; path=/; HttpOnly; SameSite=Lax
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=reZfHNkDqHBiCH9dXUg4kxaS4MqAYVCUKlKrK7NnT12o7oNgNmfB6XVw3Wt42u5Ld1Ln9mnvKm6MnMYw6hlfTBhPoNHOmuFk1lD1YidP%2BqFsxt03A9KT959E9pudgiVwKqgbYBJ2I%2BGIwIoP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f481bd21c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13296
Expires: Wed, 25 Jan 2023 23:46:47 GMT
Date: Wed, 25 Jan 2023 20:05:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 04512fea22644dc0d22c3f3a665f6645
0e213646abfc6d9560ba562362fd9e9115be8354
124d9534f75506b8e8c7535ee7295ac4e6cf5a8249a0edac6940839e56043181
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "124D9534F75506B8E8C7535EE7295AC4E6CF5A8249A0EDAC6940839E56043181"
Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6102
Expires: Wed, 25 Jan 2023 21:46:53 GMT
Date: Wed, 25 Jan 2023 20:05:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9030
Expires: Wed, 25 Jan 2023 22:35:41 GMT
Date: Wed, 25 Jan 2023 20:05:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 25 Jan 2023 19:42:50 GMT
content-type: application/json
age: 1341
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LcKj4WjDVH254v/GvrVl4VejGRc+d3O0zOTrEbrDIhoprX0koj81h59IPJhzfuQk9xtLIfXJ3eo=
x-amz-request-id: AKC497YNKH6BYG4E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 25 Jan 2023 19:19:47 GMT
age: 2724
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 25 Jan 2023 20:05:11 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e9246cbcdcc6fce620092f0832ce42cb
6f028bd7d3c2f29d4fec52f5f035a0f9333478b2
127044a1eee4e9bfc588557addec77f57e54e5f4dbefcd1f069335d2ad364b29
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6496
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 25 Jan 2023 20:05:11 GMT
Last-Modified: Wed, 25 Jan 2023 18:16:56 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css
151.101.129.229200 OK 8.4 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css
IP 151.101.129.229:0
Hash 47495e8e53e0256e9a0a3203e5fba3b0
58f7968d6762f339b3e9bdf1e49b8c800516f2f2
34ad8d9101745dcf4437bfc5656992333b74827c53fe364d315722d7f4ccc3bf
GET /npm/bootstrap-icons@1.3.0/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.3.0
x-jsd-version-type: version
etag: W/"edbb-Du3MPQ7GnRobCfGvnAP4Uqb5QVI"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 25 Jan 2023 20:05:11 GMT
age: 12246939
x-served-by: cache-fra19145-FRA, cache-bma1622-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8429
X-Firefox-Spdy: h2
www.acikdenissyabankm.xyz/ruxitagentjs_ICA2NVfgjqru_10245220704125537.js.indir
172.67.160.63200 OK 82 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/ruxitagentjs_ICA2NVfgjqru_10245220704125537.js.indir
IP 172.67.160.63:0
File type ASCII text, with very long lines (1629)
Hash 3837e4dbe9ab9d434d431f66f5aefd10
d34d6cf1b9b6e93b6f2f0045cda626c0b2b3e5db
84d29fdf6ffc635f3bb668ba420c585e68dec9b5e43bb6cbc4ac191b78609ea7
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /ruxitagentjs_ICA2NVfgjqru_10245220704125537.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Irsy7hkpxbt4kQtUL77YGFxbnubOkk7kNZmvEpE5P%2By3kGCZUwTtkmoV9oeQqqjbOWGFhgofMdvwlCGU0%2FYgI4OR6UcgRSpTEnymNXW0RN3xEY9I447KzI63Q6cES31OEDG66YomQ%2BgWd8hr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4abecb1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
172.67.160.63200 OK 107 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
IP 172.67.160.63:0
File type ASCII text, with very long lines (53143), with CRLF line terminators
Size 107 kB (107038 bytes)
Hash a4f1e29089ff5d4ad44c8504ae115212
4a4cc236e3b1727ba4af408d105bd9a5d1ac7db7
0ea043495a2ac7212711a44c1d96b0b4039d5f1cf5efd1a563f1547d1a78b117
Analyzer Verdict Alert openphish Deniz Bank
GET /styles.0aceec9096af75c94b6f.css HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:43:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cAT%2F3sEJTIO7lh%2BV75KQ6G8uVCfd9f%2BtRKmRv9NYcvjGBrzLcl8mSMqXnbqzIetsu6nEW2tEOCyKBqvLb3y1rHyp44uAmcisDNH707iFA9zww3NTf5lGk%2BbEtK41JJ2%2FJVaxPV7SgLroS2zY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4abe51b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/polyfills.577241e191908993e702.js.indir
172.67.160.63200 OK 1.2 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/polyfills.577241e191908993e702.js.indir
IP 172.67.160.63:0
File type ASCII text, with very long lines (2525)
Hash 78aa6a1f5b467afed996dfb37bebd4cd
64795ebcaa569f51644b50728cbff6e270ae7fe2
efcbaff2e1fa4ef76eed990eeab11a945025da1b8c2ee41d79585dbe637a7dd2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /polyfills.577241e191908993e702.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ERDuNFoh1N%2FA9luDNq33IFL5yiRAMUHAegszTfHYk03Ta9erDofXE1Fc55%2FyV3jPA4SaXsyPO8cR6Zu55w%2Flm2Lq%2FM1YWh6E7LhxCghU6zR1tMYMJtl4pp83DydSSGEpIMlFx4toIePI8lCp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4aea050b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash 298d3bd4d078319a8ba892d7879c6836
009df9f64a4a3c42fa5b47fd0e01bdc4631e1b94
a3d8b8a1828a8e0c6385e747b5423d645da5b95241e598650084252d1acb4a67
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "DBA5E5A95EAC92740CF562C6E32C7D4C4B8CE0C1"
Expires: Thu, 26 Jan 2023 07:00:00 GMT
Last-Modified: Wed, 25 Jan 2023 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1688
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4bbccab4f9-OSL
www.acikdenissyabankm.xyz/analytics.js.indir
172.67.160.63200 OK 109 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/analytics.js.indir
IP 172.67.160.63:0
File type ASCII text, with very long lines (63632), with CRLF line terminators
Size 109 kB (109230 bytes)
Hash 1df340199189a399be1333052547bc2a
1ba56527e3bfa789795807096071637a2d3ce545
ea27e074b3472406eff002ee16e76c415eb922816f8e265699a561e06f3454ba
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /analytics.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J2E%2Bh6o%2FFE0atKu1acimLcxPrbZv%2BdYIztkYfz5nDN4M7G9%2BKniiVTuQdWc8aZXscqdU1AUK1Kr1%2FvOSnsPzCsEuchX4%2Ft7uWhOJlIhjfMorAmqLiL23G9Tg8xy5S%2F7UXtucgOvICa2sETdZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4abbe2b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/gib.js.indir
172.67.160.63200 OK 108 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/gib.js.indir
IP 172.67.160.63:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 108 kB (107850 bytes)
Hash c99654328e468e98e55b4aeeba8dfcfd
a7693825d55438e82e9973d9b903775e74623238
657a55626871b3279c43183dd322c760669693d9be4796aa66ae337495b96fae
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /gib.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FMnue7e%2FwFJ8ta5jnlc6tItsiyY%2FSD7mhcyqRK7pTY5Hjk9bYbv7CSH%2FKWk1wdo0ICvHRRlkYOZM%2FsjzlY34zhTHMHfvKlZD5fV%2B7HGk4N3ciLKD1F04cQ7EEtElNKOySpCtE2N1B6wXNKg6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4abb351c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/scripts.4be75bac532d103e7057.js.indir
172.67.160.63200 OK 343 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/scripts.4be75bac532d103e7057.js.indir
IP 172.67.160.63:0
File type Unicode text, UTF-8 text, with very long lines (65448)
Size 343 kB (342558 bytes)
Hash de146f75794d4a045a92759df8842f46
233459f7c03c8043ef2cd07651b800f344274f3c
a922e5b1e7dac1470ab311dfebea470d5a123bb300c85dabbbb080fe491dffa2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /scripts.4be75bac532d103e7057.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6d3rSqFf%2FFB4%2Fu%2FM1vaEOtUzXX18%2BGM2rCigq2dxc4nHsus7mqXvMX2AtAswOzOuLfszqa5UJBfFhLa0BSzob%2BqOds9iFdJ72WIL6tnqCdwv80G7AaysPufTRBwfhkqJByNENab7hqEKmAP4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4b6f951c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/main.e9496305d50aef6dab1a.js.indir
172.67.160.63200 OK 93 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/main.e9496305d50aef6dab1a.js.indir
IP 172.67.160.63:0
File type Unicode text, UTF-8 text, with very long lines (64945), with no line terminators
Hash 9a3ed9863c016b790d07d0c6426c9bbc
2263d109a09198212b1e5149bd229aba2ca20986
c5c6efa58ca53f0697095b63da0c2bc4a7d328eae5ba33ae74fb09aa578eed36
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /main.e9496305d50aef6dab1a.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=knnsZhJjnOBihBVvD2M5%2BJPgaT14C8NHCVcDvndT1xU%2FGtCI%2BPnsniEbzY4Ylg5sXZ550lQEZKSBvErS5RUVESo3zqWghjjI914YSqaJW92X1AoHeZMPaSmqxceAjTYRjbeOH8yYEzhuMtAf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4b9b0c0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/loading.gif
172.67.160.63200 OK 38 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/loading.gif
IP 172.67.160.63:0
File type GIF image data, version 89a, 96 x 96\012- data
Hash a5ac552d6a23421d7697f897729a2def
836cb1e7a61967b762898a3ce32e64ca7713119c
4d54a976b6fa75c73ec219bf5ca96537d46c387c138842fe3d76be0d9e111e0a
Analyzer Verdict Alert openphish Deniz Bank
GET /loading.gif HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: image/gif
Content-Length: 37840
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mLGhQ%2FlUQ%2FBsRjhGHWMw9%2F1C%2FzUVuxMrPtNzCIj3VSoNx3dmHKBm6YbRtICtn0kCE%2BxssI0HrUv8PP2%2Fu%2Bx2UP2T91cZ1%2BVfggxQlOnXzAhfy%2F9ntp9mC85stTUmgnDYhO%2BiA%2FluA2%2BinKbr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d1e5b1c06-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/enbd.png
172.67.160.63200 OK 3.8 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/enbd.png
IP 172.67.160.63:0
File type PNG image data, 186 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 58cf11a4b5f8ebdc29ec2e7b787c8d69
cd2686b1f04cfa4afb69b228fd7177d65e907d32
1b74331ad061c583ad54561f95596a8481b95d863a431fc4daf3a9ee7d151975
Analyzer Verdict Alert openphish Deniz Bank
GET /enbd.png HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: image/png
Content-Length: 3806
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8qFUjTbXap2uE2WSvllS%2BObaPnNJNKRJmuWdp6u2T5c%2Bj8m3GAtBUb9wnyGDtc027O%2Bk6OmwrTOGWOob4qLxpxPcaXosp1yAHyPoHfpZD4HBQIqEg4DlhFTDOqNm1q02bcpNfj%2FfIElNsPRk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d1d8eb4e8-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/world.svg
172.67.160.63200 OK 697 B URL HTTP/1.1 www.acikdenissyabankm.xyz/world.svg
IP 172.67.160.63:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1206), with CRLF line terminators
Hash 6aa75cfb5b8dbdee39b8a8784f9d52c6
9edd7412fe1025004b53b192c1b7e7308e66570f
cd4206d2de6320faf5c6ce3ec401f65d1c207ac0976078dc09e28a31357b82a8
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /world.svg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sfe4vvGXR%2B7FaY3DvSH865YRIWnUz88XTdwepWyuUP6ng%2BwKj7blSGNb5GAXdbGbqpxk2eH6TuLduGE0LgTnqRPizlK%2BeM%2FlQlvyOY5twHDxV5gjBrCAF5CmyMcfTbihNiITxCyfbBbUihkV"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d1fa4b509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/vendor.f80ddf104070a6119b94.js.indir
172.67.160.63200 OK 1.0 MB URL HTTP/1.1 www.acikdenissyabankm.xyz/vendor.f80ddf104070a6119b94.js.indir
IP 172.67.160.63:0
File type Unicode text, UTF-8 text, with very long lines (60084)
Size 1.0 MB (1028548 bytes)
Hash a383570474266979543b7b85437ce628
a554e79066dffee448142aba28e29ffe18208ade
ae7d5f2a47369bbd7b72df7bf76ee2178d04db779334c1f08749c2b411ba3ed5
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /vendor.f80ddf104070a6119b94.js.indir HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E8wgYrsFn6%2FzM4C84yBRVvepfUt3DBlmOO8j6RgWOKMnY3qFcY2cS%2FI5TCQyu7JghJNKYUwBs7K8wphWigpp4lI5U1JlQIt%2B7X%2F0AbrenPLahme%2FyXw3%2FAyDWEhRl2a0BHgwOd2z%2FvxYw%2BP0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4b7f84b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/Appsettings.json
172.67.160.63404 Not Found 569 B URL HTTP/1.1 www.acikdenissyabankm.xyz/Appsettings.json
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fab60fe8a0a29e816f7153a123db580
a99469761640daaa114c4470d325d1586887d889
d929740cfc254753dfeace7f06c7ac7cb1554720ac13d7e5ed511990ba799581
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /Appsettings.json HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BNcc9X%2F5LaxsTISdFmma5IPMKmReJbYzMGZ32clgq46anAOSmC%2BBbW8w5yE35efbyvJM5Jobg9WK4OApJu9cm%2FBmi1%2FQ%2FCMNFfkvHljmKGi7HvmrfGA0i0bzyEjL2TpzeLV1RqwLRnw5qBEd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4d9f1c1c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/logo-light.svg
172.67.160.63200 OK 8.7 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/logo-light.svg
IP 172.67.160.63:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1718), with CRLF line terminators
Hash 27b73a590167fad16cea00c445f560c4
93dadfe805b0e4ae7014b341bc362148ec63b63c
342edf8efa20cec3036f633058ca6df1a8bfbe5654d148f08e35701ea7e16b98
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /logo-light.svg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:11 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:04 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RbDDGm4GQ6Jc0Xldu%2FSKcj3IQgNOFkeXkThacE36Nl7ZYVUxrtezbWWgUVUq1FXt%2BEubAz8A6t8UfUG6P7F7afJnATaHvs%2BbGgyFscldvhC64uR79OKVMiRKMJx%2Fd76GmC1rIMqCzK6dQ0cW"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d9e7ab4e8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 25 Jan 2023 19:48:59 GMT
age: 973
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.acikdenissyabankm.xyz/saved_resource.html
172.67.160.63200 OK 176 B URL HTTP/1.1 www.acikdenissyabankm.xyz/saved_resource.html
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8ce61dce767521b5cfcd3d2b1247c22c
c263fe9d7ca9429a413c585363cf8345e998abbb
f320f87517182532c3f45ea64221bebf437b69d25924a2b7305b2e4e27292275
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /saved_resource.html HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eULh%2BkyW4AwbTKGNO6nQkGud88SBfDldtQ32XiXxLdIpJh1iEDyeh07Ns5l%2B6Y5yLLOz%2BYT3k7%2BmXNZcKrwsy2WYJPdAry2O45pQaUriiM7Yg40WNt2d97g7CfzHKKFwSPO45o2dIsJV0hSX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4fc9d51c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/id.html
172.67.160.63200 OK 7.2 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/id.html
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (28644)
Hash 359ed274cec477b8b92e847c01bf3fc3
e016263945c966aeb3e82834acfe6f9e2151a840
de0076f68ff66c0a8ce07cb726d1d8893cc7aecdc133c211bb25618492169cef
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /id.html HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WLlTep6wEAppgKGwOrgWMRG6Q0B3DHUr2ubXrnk0lxmS%2F6%2FEbckBnz4LA97zPtB2wTpQmKUBG24PWizy28X4kMDOjCrf%2FbUEwcC1YceF0Tio7eXv0KrUzoR0rxZhpLSVgAfOLPulwO5VMj3c"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f4fce47b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/_assets/img/login/bg/corporate.jpg
172.67.160.63200 OK 376 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/_assets/img/login/bg/corporate.jpg
IP 172.67.160.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1920, components 3\012- data
Size 376 kB (376139 bytes)
Hash 80b5267c3ea5812039017db2b33cd1ff
068edb775807da00d521f97d8472ab8967cbd9f2
50e0103be20d3cc636d1470f1735a1a3b931d0f9ae9936de04216b7dc5fd2267
Analyzer Verdict Alert openphish Deniz Bank
GET /_assets/img/login/bg/corporate.jpg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:12 GMT
Content-Type: image/jpeg
Content-Length: 376139
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 14:39:00 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S626ewSm%2Bogmq9tM7Apa5HJ2bnUb2gqlOk6%2B%2FPrCQGyoj3%2FOjRS9GwMZSP4qOG%2F0uN1t5im7zo9J3yt5DZymq57W6GE7PNTYjml16LP2DgOGkZGr%2FZhUq6laHxncx61VRii3fxnSUQCY0rOo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f501a301c06-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/denizbank-mobile.jpg
172.67.160.63200 OK 8.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/denizbank-mobile.jpg
IP 172.67.160.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 240x240, components 3\012- data
Hash 2add520df4436c32fca93b2d5bd80300
3ea1646799e51de12ff2cbd35040d7eedebc5623
54e92ad9930ef375b8f4e1a1fe7fe5c86d43d7ad00a955c5df818e26489049b8
Analyzer Verdict Alert openphish Deniz Bank
GET /denizbank-mobile.jpg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:12 GMT
Content-Type: image/jpeg
Content-Length: 8059
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcxvVffTwlp4gq6PoqsbCN4UeCZn2TB0TFodTBOHX4mzCGq8rMUphRR91vsArTULbwcb3p8svzzpFiwIQYPSsrJBZz1sdNXxB0aPBvTNhN2utfGIjBFqOoJJgfUjuj%2FF7s6WSHNMsUap%2BaOt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d1c9f0b39-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.149.213.50101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.213.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MDwa1pHPQ3BGNxtpIcFj8g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: b3RndwfH/tiwj2PnmmA6knyeDjg=
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-regular-400.woff2
172.64.169.22200 OK 25 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-regular-400.woff2
IP 172.64.169.22:0
File type Web Open Font Format (Version 2), TrueType, length 25244, version 770.768\012- data
Hash b0b42dfe405f3f5dadcc952d941a6f1d
066cc6612349ef91ff48e37c4ceddd2a69f50672
5074bf724d70c107946d158f07964ac24bb3225029bacdf8ece02fb29df8a9f1
GET /releases/v6.2.1/webfonts/free-fa-regular-400.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: font/woff2
content-length: 25244
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:22 GMT
etag: "b0b42dfe405f3f5dadcc952d941a6f1d"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 688a9b5db284546ed87785b84177fb70.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: M18kfCGk1uzXbiYy-OUmJChKHR1RVkVrrpCUyUghbZWfWQAcrPB0LA==
age: 29708
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bl3EvTHH4Aj9INXHWtaeCiNYf%2BAIDyTQgsdBIh5K0mVVKExjOgldosc47I%2FmXWIDgRc%2FBn2VVPH%2FgSwsJ3iIuYT%2Fikt2%2BVPQIDR5PA5CUrK9dTFyhzyvQk3FMCe8gHiiXcWar8oa5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f39f52ccdc770e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2
172.64.169.22200 OK 150 kB URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/webfonts/free-fa-solid-900.woff2
IP 172.64.169.22:0
File type Web Open Font Format (Version 2), TrueType, length 150500, version 770.768\012- data
Size 150 kB (150500 bytes)
Hash 69a76555beae5c43a59559396c1aeb54
7d2759002c67a66fc38a72dd0e395e2da3d41474
1494e2691e1c13a3f35cbc3e1b56c5187c10ffe220d1fdc58d99494a666244d4
GET /releases/v6.2.1/webfonts/free-fa-solid-900.woff2 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: font/woff2
content-length: 150500
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:15:23 GMT
etag: "69a76555beae5c43a59559396c1aeb54"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 9a9edb00220c3ef50c1919f84fea4888.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: BmN5XKycC5cDBx7uebUl4tsB13gPRGjdmvQkELkYH-x9m-rpZxEj-g==
age: 29708
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SnkQwQ4NCW4LqU2iH6kRWUnU68zL5J5o8JxfwwaHE7SrmzYh72QVpFs9S5A38ECdHYLC0ztgnCCID45R0Xw5cQle1xt%2BvQvHLeCSZnjNGDu94bO9UbqRfAghpSr7LOnHeSWjkiQchg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f39f52cce0770e-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.acikdenissyabankm.xyz/login-footer-logo.svg
172.67.160.63200 OK 1.2 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/login-footer-logo.svg
IP 172.67.160.63:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1863), with CRLF line terminators
Hash 7374bb584c51f152fa6c5cfc2a8f6052
0c3e21a743d035582343f2301509058e8b771c5d
28de3bf31be49d55d2000de18121c69bfefa41465633fa6e9d90517957ff3a85
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /login-footer-logo.svg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:13 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:39:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HJDKVtUeQq6mFlq0SSYRDmwAVq%2FijLJYvmUJbHiEwE9Bz3rh8hTmDaliGiVdbTvbMltiEk1VWEwEIMdeAo3zpM%2FgJNTNGARwiG%2B1KjoM%2BOA0EXsd4U3tJTvBPJSmaBzpkd164wjht9NZeTYR"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4dd8adb509-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/_assets/img/login/qrPhoto.jpg
172.67.160.63200 OK 12 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/_assets/img/login/qrPhoto.jpg
IP 172.67.160.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash ef3712705a4047857e4f67b895d75bf1
d4bd05acd8bfb7d4a44dc9c36267ff799414cf23
cf33092752054c7e93201ebd484c7e47a194635120a46cc3786b4107195edf1e
Analyzer Verdict Alert openphish Deniz Bank
GET /_assets/img/login/qrPhoto.jpg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:13 GMT
Content-Type: image/jpeg
Content-Length: 11916
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:47:42 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UVRXExwMiuK4qv4PTNZbJRCY03m8E6owP0%2ByIYnFbFkD%2F6LTrxDJ%2BLuqgw%2Bt4xbaa%2Fx0Q%2FjjnwCyP%2F%2BOmCrcmMOOF0BWQDcdYwvilUVoLtw0DtxLYYW2wdMsy6dtPsGVkrcM1E1xWIErRCG0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f4d197d1c16-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11105
Expires: Wed, 25 Jan 2023 23:10:18 GMT
Date: Wed, 25 Jan 2023 20:05:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11105
Expires: Wed, 25 Jan 2023 23:10:18 GMT
Date: Wed, 25 Jan 2023 20:05:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11105
Expires: Wed, 25 Jan 2023 23:10:18 GMT
Date: Wed, 25 Jan 2023 20:05:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 176ab888cb4eeee86431993b3ef960e2
0eb79ca64f0f6b29837d1d7dfe12d38a3d5c3822
47984ce01d5a6281b9f2841cb119d3623e0d4202602f354628469e9158a2d6fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47984CE01D5A6281B9F2841CB119D3623E0D4202602F354628469E9158A2D6FA"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11105
Expires: Wed, 25 Jan 2023 23:10:18 GMT
Date: Wed, 25 Jan 2023 20:05:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91b2e12a39dc4f63b9d52e8800cce1f2
42d5b4b4a091778d98c351f0002d8656449d0243
d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fNys5GDKoAMFdbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:59:15 GMT
age: 79558
etag: "42d5b4b4a091778d98c351f0002d8656449d0243"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13891ffe8a0cc240be63b7945e4b7688
958b50e9e7e5e02882d55612a5d6d2402e225390
1570d69731ba13051454a048ac85bde7c1de8e39dea0fd78e7e5c3f2be122cb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f7aba17-803f-412c-8ef7-0959b52f87cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9650
x-amzn-requestid: 3b968ee5-c941-4305-9f06-01e646deef15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88wEUmoAMFerw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-061f65177f36420a4685f372;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xfiiS5M5j8iYKMyopaVqwYV6KKB1VIWT_yQbEKZ9G1wuq2QUEyDBpA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 03:10:29 GMT
age: 60884
etag: "958b50e9e7e5e02882d55612a5d6d2402e225390"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:14:35 GMT
age: 53438
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d10114508bd40d76f497fc5b9c064350
c9b86b2b27063e0a58b0f237d451f9cf05b2122d
a156bd21bee2fca1d82940fb172a695044321ed432786ae100a7baf3b5e12b3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e473b9-0adb-4371-8146-b148ce85cdec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8252
x-amzn-requestid: a5a39d22-de0e-4b2e-b3e2-aad1d0090881
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtiHo7oAMFdCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-0cd78ff23e91baf668276053;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: s8JWGyQ0pTWcaGk0n2PQOpAhjKLuNlbI4wCZAidzoBR5RQreO2rh9g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 05:15:35 GMT
age: 53378
etag: "c9b86b2b27063e0a58b0f237d451f9cf05b2122d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d76c1b1126a3e1b51dcca652cb6727b
b199a381ccac4628f2bfa626b44c71954713ca98
3a34f2b7f79cb925c73d2c17197418004e4acf63a6eb69e471320069978f8282
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9192d2a7-4090-4a55-b72e-388ceb1f506d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10921
x-amzn-requestid: 7b8849e6-b52d-4165-b456-b200ddbb993b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqtkGThIAMFb7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f0-1ed4803112d97956419b299e;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FUbNMfYy8ci6d78p6LCu0Gxs3jw824ZzVp6drAbl8HCDBpghlZFP7g==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 07:57:09 GMT
age: 43684
etag: "b199a381ccac4628f2bfa626b44c71954713ca98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af3ceda828750acf5ac7c837612a6e0f
f6364de0805cf3cfe66d19293085da16a2c2f832
baa0cb6e3cec7f840477dfdcea518968f5b72a828dbd346abb09e2d3e3aa3bee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccf5342f-6184-4859-b154-9913ddd9b112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9091
x-amzn-requestid: c5849f51-8fc6-40c0-a1e3-9deb74e06c59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRE7TEzxoAMFmuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d04eae-22d80a0c3e6485dd62f420ef;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 21:33:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U8Pd9ECOLiB-ZaqU46162mJRnAYfNE3O5Zi_yaYTk_oNNm2xHNgQSQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 24 Jan 2023 21:38:40 GMT
age: 80793
etag: "f6364de0805cf3cfe66d19293085da16a2c2f832"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.acikdenissyabankm.xyz/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-semibold-webfont.1045337df148fc781940.woff2 HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQ6%2BCgaqUGttHI5Cgi%2Fe8HcEnc6enX8E5D4k%2BdfWnUUJFL6FpYyA%2BFPoJ6Dd1iWAN0KMhcqEhujWe6x0ZQyTuFUwv6ly5YPcHZgWBoL0SY34wAeSvLXVx2f6n12uN7Ffuo8%2Fa6%2FIAHex%2F%2FZa"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f509afe1c06-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/_assets/img/login/bg/winter.jpg
172.67.160.63200 OK 388 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/_assets/img/login/bg/winter.jpg
IP 172.67.160.63:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1701, components 3\012- data
Size 388 kB (387821 bytes)
Hash 90062fd1b816f53d1f7ddddf1b2d15c4
a0407ae398c54b47de374b9813c8be17ec82bb40
f7278ca494d765eab007679ace9914b237327326d7cd2840660dc8140a8b5542
Analyzer Verdict Alert openphish Deniz Bank
GET /_assets/img/login/bg/winter.jpg HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 200 OK
Date: Wed, 25 Jan 2023 20:05:14 GMT
Content-Type: image/jpeg
Content-Length: 387821
Connection: keep-alive
Last-Modified: Sat, 07 Jan 2023 12:48:26 GMT
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F5sCv3UXyx4L%2FeeyRJ4C5xbrE70wUtELogGUzv3UCsmpZuDsnfCMoVN26weU1C00JniaOr%2FUGNK2qiOClQSnP6m3yMtO7uoxIPKjsNaPAay6L2pvIJj%2B6DIQHNivxTZn%2FthtM5H363hSoh%2FZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f501ea7b512-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2 HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E3hE1ZBxuFb0MzIb0pCUx96j%2FsQwux20DkOZ%2BzvwrPXeh1Z1C2Us0UUOtNuaF1wXGgfOnScdMbPJdiC9yaL%2BQ%2BXQFthfSyjR2CGPYWJc0UCWn7X0AEYGY%2BsiAMBmQWSGb5PXI85cd2f3LsfZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f502ab0b4e8-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/icomoon.d9f7e318a4ce10e1e420.woff2?fa50ap
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/icomoon.d9f7e318a4ce10e1e420.woff2?fa50ap
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/icomoon.d9f7e318a4ce10e1e420.woff2?fa50ap HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z26b7E%2BmYnbbjpPTgK15V%2B8tON1VSrwsj9GdLVQRXr%2FNKw3WIlyoAcTyIF9KH8OOaRi97QnsWJqOLSn6mFZyKa%2F9KzWDKEH9dAoZZAHN%2FvLuFyYGy9JSX2ouZbcXRdCGHtWfDv%2FUdlI0zZUC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f5159f30b39-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-bold-webfont.7b013a3110831768093f.woff2 HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UiYBi5fHI2zJu5dsW25bWe9Z%2FuzTfzsmelCDHy4KIPl7AxEKGVxP8YeLKAF%2BJoTdX0qga5L9%2FrtyUExmYCJkFl6hpk54apZvSImCBqSMXtl63vMA1QkFLaNNYzInaKoYDQeFWeNRGlswEx79"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f579fc7b509-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/tum-islemler-bg.776505492273e7689796.png
172.67.160.63404 Not Found 562 B URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/tum-islemler-bg.776505492273e7689796.png
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e2e852f29b82c770eb7864b0649d7d3b
81201bccf389fd50662f138ab7972a93a7bd0283
30f3010ae16da4efbed7900209de99130cf8714f99b2441e73a982b6f8e05735
Analyzer Verdict Alert openphish Deniz Bank
GET /assets/tum-islemler-bg.776505492273e7689796.png HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678909938|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PeE9ZzdPDGkgAMIMOPnzaqvQ%2FlwyviOlm%2BlsfV9y6tGWxW7IZdy52IUX1DexXP9ykgNEWFH508uD4pIt6sGQTZ7iVohQGASVVHFeqiC3D%2Bi12nQZe6o9%2F6%2F3uGVn4ks2xQe6MZSGdyZnlOKf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f579e841c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678911055|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qRzq4hdSi%2B6%2F%2FAbC3jnxeJ2tiri8C0j00I1xyIyLk8%2FA8oW6OYgBkjWFg%2BAvUX8zeqo3ftefxc1nC%2B5%2F3qzZHWMQDh7A78lvHlIvgb4y%2Be8z0IoxyKLYrFy31ZZHubiIKucZo9F28c2AQXSQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f5e0da31c06-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/icomoon.f265cfcc4afb98d658b0.ttf?fa50ap
172.67.160.63404 Not Found 562 B URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/icomoon.f265cfcc4afb98d658b0.ttf?fa50ap
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e2e852f29b82c770eb7864b0649d7d3b
81201bccf389fd50662f138ab7972a93a7bd0283
30f3010ae16da4efbed7900209de99130cf8714f99b2441e73a982b6f8e05735
GET /assets/icomoon.f265cfcc4afb98d658b0.ttf?fa50ap HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678911055|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=akQ4HPwkyMigEKD0byngrqxcf4S3cULd%2BXEcxdTHJGasBokOS3VZzQkOovq9HsJCjqyhtMiBQua8gZZFRQ9ENSLuwVn3oZohfFCA0ikXzEoV74k%2BZu7bisGrpV%2FktUL41pWBR%2F%2FcwXhIN6AG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f5e19ea0b39-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678911055|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VJ6R9D5n0AO%2FTRiDYr%2B%2BnBHhLFoDkSvaB%2BHYoDaFOrDIDUUsXlg%2BN%2FdfV4s%2B2pvZ25YJZtS9DqRWEJq9cctYTKDAAHmG%2BghQYBoe%2B5%2BIM2QoSpmcGS2OMbkkqGMuPCs8zhJlPo3STlnC8pri"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f5e1b85b512-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678911055|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ho0HFVbu42N4m7x7ZeRjGycTI03gnfsmZguQqugxr4uDxTdfqcxKtW%2F1PKcn84s5ZzoZIAkmfXF%2FT3M3q20XCsqeoqC%2BPLBvX7QBugD6PgeDLgd7z6J4pj3YlLoItstRlL%2B%2FRSaS6I9R75D5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f643d841c06-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/assets/icomoon.9b0643fa3e3f0030e1d4.woff?fa50ap
172.67.160.63404 Not Found 1.1 kB URL HTTP/1.1 www.acikdenissyabankm.xyz/assets/icomoon.9b0643fa3e3f0030e1d4.woff?fa50ap
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fc10f358967a59750ef6fd9a698e2d60
3fc472d167c41a4193625aff84ee6e599b302002
16ce845440c38f491f80553aee7a8144dcc0a82c46258deaffdd10a0fa3d2db2
Analyzer Verdict Alert openphish Deniz Bank
fortinet Phishing
GET /assets/icomoon.9b0643fa3e3f0030e1d4.woff?fa50ap HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/styles.0aceec9096af75c94b6f.css
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h1vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678911055|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v0JIq8N4qES%2FcMbI%2BwoukDlwu%2F%2BaWhISKD3I9e8SSoYPzZTkAPDIqvvHbCleelTKr5xzJgVURe0k81mdJti7Tex3ldC1FTdukMKkb4NXAMjqCs6abxG7aI69onwWuaAO%2BjQHJoPdui%2BNL5B4"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f39f645d98b512-OSL
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=3413003835&en=w2s3jly9&end=1
172.67.160.63404 Not Found 569 B URL HTTP/1.1 www.acikdenissyabankm.xyz/rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=3413003835&en=w2s3jly9&end=1
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fab60fe8a0a29e816f7153a123db580
a99469761640daaa114c4470d325d1586887d889
d929740cfc254753dfeace7f06c7ac7cb1554720ac13d7e5ed511990ba799581
POST /rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=3413003835&en=w2s3jly9&end=1 HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 3209
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h-vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678913683|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cLWRzaTMWSGUksXlpvym2s87QcQZnPXpQP2bzLw4xhxzTbsKeJs3%2FvNSZKDjY95q9kgHDBtr2EVAnIxkETbprJ8%2BeZJ2RHhZNzc1VF%2FIV1R5imGHJzPPrPcTQ4bHL3fIh1IBGfuxx3w5HyLc"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f6c096fb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.acikdenissyabankm.xyz/rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=2902330332&en=w2s3jly9&end=1
172.67.160.63404 Not Found 569 B URL HTTP/1.1 www.acikdenissyabankm.xyz/rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=2902330332&en=w2s3jly9&end=1
IP 172.67.160.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fab60fe8a0a29e816f7153a123db580
a99469761640daaa114c4470d325d1586887d889
d929740cfc254753dfeace7f06c7ac7cb1554720ac13d7e5ed511990ba799581
POST /rb_d0ac9e6b-b11a-4747-9900-8db5d8d1e8c3?type=js3&sn=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ&svrid=-36&flavor=post&vi=HGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0&modifiedSince=1673100569768&rf=http%3A%2F%2Fwww.acikdenissyabankm.xyz%2F&bp=3&app=88bb022151283e43&crc=2902330332&en=w2s3jly9&end=1 HTTP/1.1
Host: www.acikdenissyabankm.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 5495
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Referer: http://www.acikdenissyabankm.xyz/
Cookie: ci_session=efb4b8176bd1f428c8070127a5892ce70e5dbc18; dtCookie=v_4_srv_-2D36_sn_D9UD36FUL4GEB13B9JBLT74APUSV2MTQ; rxVisitor=1674677109921FH29KJC4BRJFIQLJ6KQ2SEUUG5LA1I65; dtPC=-36$77109910_815h-vHGOVRRAEAMMHHCCDEUFFTQPFRFFMFRUR-0e0; rxvt=1674678913683|1674677109927; dtLatC=33; dtSa=-
HTTP/1.1 404 Not Found
Date: Wed, 25 Jan 2023 20:05:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PorOOfRYw3EK%2B8pT24M0jlFd6Z74SVTalNExz%2Bor4kFV2GcMIRMX2RpAOOhMCQ%2BIkOGfjGn2Pf38tIeJSG9Fcyh3IXj1mD6sURHDNK7TUgMvjk%2FNbOVARgKId9BcfyETwZX5xV4HSWzvTf3Y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f39f78bfe7b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=6c93e12d1a
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v5-font-face.min.css?token=6c93e12d1a
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free-v5-font-face.min.css?token=6c93e12d1a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.acikdenissyabankm.xyz/
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"15e2713dff942747406520edde3fd0bf"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
x-cache: Hit from cloudfront
via: 1.1 0bd4d5448b19873aafd864e434b36f0e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: 6V9hAwm47mAv29_kXDGAev9CoCjffBNtAC9AtFoqYb_ullvDbSBlEw==
age: 29717
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RrQAaez1d1YolTYULCD9kSWhdCi3a8ogkaPxlCit4q2kUGIyYXg%2FCjLYHnSuCKUzExbk9qVO34005KzKZUZjmjGuWAA3bPzs%2B8A20pm7MeRkEdvSd4Uc99rNChdmKYT5PYaNmPPqtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78f39f4e3d22770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=6c93e12d1a
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-font-face.min.css?token=6c93e12d1a
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free-v4-font-face.min.css?token=6c93e12d1a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.acikdenissyabankm.xyz/
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
etag: W/"075b2106ba08d32bc88fff3724503b1e"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ffe68b4a5d64737b8a3ccde75553a7ac.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: TNWt1aDihFIgz9Pp_DF8_7CR-lrJ32rdTQ-5E9eKeE1SX8qnd3B2-Q==
age: 29717
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ySvw0uNYPxsqkePevgBlBQDL2vnOWmC1p%2FGu5ppHt4acQozYFERiuwAYuro6HGgdCE6YIVh0t%2FpKrBCAIgKb3x4AOvsGj4%2Fz4SN4nmcadUXnTE3xwc8HUCtQ4yE9YVrKkpch9WxuNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f39f4e3d24770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=6c93e12d1a
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free.min.css?token=6c93e12d1a
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free.min.css?token=6c93e12d1a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.acikdenissyabankm.xyz/
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"2dbe34367e935e2684b01124b0860d71"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7146be3ff59752909814bfd78c2fbf38.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P1
x-amz-cf-id: uc-mpplwrUbtTDAvyrozDKFZUggMrUGRUD-Y7HXUzZjzQRummKq39w==
age: 54344
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jEXbYB6LgICJ7dW5fKoIHso8%2Fe%2BNEIGVJqTH%2BHmpqF8LDxRaSAOJPt7m1FOCXk9aWiQVhpBxKDX0vckzNfqqSqdKhHSHMjbOoQ0zswjR%2FKLWHSIUt4pgo0cQ1uWRrrzt19ljAA6p%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f39f4e3d1c770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=6c93e12d1a
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v6.2.1/css/free-v4-shims.min.css?token=6c93e12d1a
IP 172.64.169.22:0
GET /releases/v6.2.1/css/free-v4-shims.min.css?token=6c93e12d1a HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.acikdenissyabankm.xyz/
Origin: http://www.acikdenissyabankm.xyz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 25 Jan 2023 20:05:12 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
etag: W/"0d00741459c51dd7330d97cd19326a7b"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3581c46f65a0770e1977ff05d5b7ad80.cloudfront.net (CloudFront)
x-amz-cf-pop: DUB56-P1
x-amz-cf-id: HaPRGg80m6CE24YJTTxflMRtvB7OHBdpuO5jYP05IX8P8ykcUj-Bsg==
age: 29717
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WpujO1RgpdfMK21DwXh91D3pMZlA0fe1rLU9MoW%2B%2FVl9YcF50lxnHAhgJpZ28URwPzatlNYu%2BLJp3O69fAf2fWUWg1ByFSiykUPxmnw3rl%2BgE0qeFjyGI4u7r3d%2B8R%2FEpxrumqo1DA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78f39f4e3d25770e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2