r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6ed951622549ed76959631f8a1bf497b
682b2dd2a72190510e3fa7bdb0c0c6f25a322dfb
86f5e5ae2da408a899d16c83b7ca441033ac0c30062cd29f2db1b1b5be666746
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "86F5E5AE2DA408A899D16C83B7CA441033AC0C30062CD29F2DB1B1B5BE666746"
Last-Modified: Sat, 19 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5070
Expires: Mon, 21 Nov 2022 18:18:31 GMT
Date: Mon, 21 Nov 2022 16:54:01 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4642
Cache-Control: max-age=154478
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:48:39 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 21 Nov 2022 16:09:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2685
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8a6c553d89cb6fd1de4787fee2a0e0dc
b974e022ea8675c0a09f58864cc99df05b5b1241
a62ecedcb0953814f982237818a3d902fdca501f82b675629d28b5d476e0fbfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A62ECEDCB0953814F982237818A3D902FDCA501F82B675629D28B5D476E0FBFA"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3742
Expires: Mon, 21 Nov 2022 17:56:23 GMT
Date: Mon, 21 Nov 2022 16:54:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yWeA7kCUJLYP62rIgRyi38p9aW191QvFtnZTweXQwb5/H2BtyimBjNIRSvUG6u7ZecpsE1ujA6M=
x-amz-request-id: DH6F92EWVQS66VR1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 21 Nov 2022 16:39:13 GMT
age: 888
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 21 Nov 2022 16:54:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 662c6190c63609f87a23660fc808a650
a4178dd92d6f8a4f7c4da846a08d4104575f3636
93a8fd2af027f09640a8f5c3e2f10603d8b7aff4c74bc274cdbea7deeb396f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.6.4/jquery.min.js
142.250.74.170200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.4/jquery.min.js
IP 142.250.74.170:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash beb03c9ee6d13748648309584590d515
a491b316cdd4df32dabb7a3a1d85919681911dda
acec62a91cdd6d2b03731fcc7e988094b3c38c9269276f09f9a842e6433ee008
GET /ajax/libs/jquery/1.6.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32222
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 19:26:53 GMT
expires: Sun, 19 Nov 2023 19:26:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 163628
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 21 Nov 2022 16:08:47 GMT
cache-control: public,max-age=3600
age: 2714
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-JV07ZMRWNH
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-JV07ZMRWNH
IP 142.250.74.168:0
File type ASCII text, with very long lines (19102)
Hash 9e7483e49c76cd2219dde44331f894c7
4b93c3c40786bc500fc3f3f37505f2bfdc7d552a
4cdc5f8c871985b7eb47194e4ebe102a3d83f7eafce255ecad5707bbb4e8fdfd
GET /gtag/js?id=G-JV07ZMRWNH HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 21 Nov 2022 16:54:01 GMT
expires: Mon, 21 Nov 2022 16:54:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75992
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
acikmobilldenizsube.tk/blackwine/jquery-3.4.1.min.js
190.14.39.165200 OK 0 B URL HTTP/1.1 acikmobilldenizsube.tk/blackwine/jquery-3.4.1.min.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /blackwine/jquery-3.4.1.min.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 662c6190c63609f87a23660fc808a650
a4178dd92d6f8a4f7c4da846a08d4104575f3636
93a8fd2af027f09640a8f5c3e2f10603d8b7aff4c74bc274cdbea7deeb396f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2975
Cache-Control: max-age=147748
Content-Type: application/ocsp-response
Date: Mon, 21 Nov 2022 16:54:01 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 09:56:29 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
acikmobilldenizsube.tk/_assets/js/analytics.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/_assets/js/analytics.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /_assets/js/analytics.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/ruxitagentjs_ICA27SVfqrux_10221210805073954.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/ruxitagentjs_ICA27SVfqrux_10221210805073954.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /ruxitagentjs_ICA27SVfqrux_10221210805073954.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/_assets/js/analytics.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/_assets/js/analytics.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /_assets/js/analytics.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s/3BMxHNIcvGLUu1GDq0+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tH7p4rome8+U1VpKLLtrgjs0vHs=
acikmobilldenizsube.tk/
190.14.39.165200 OK 267 kB IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (53571)
Size 267 kB (267326 bytes)
Hash 84da495be71230c4a9118ae27e86803e
8672a2da10dd6d14a2e557938a671847dddcc916
e9431da6c4a9cf4f58d76cfeedc8a8bf5ccda548fb82048e29bb2a6d60932d56
GET / HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
acikmobilldenizsube.tk/polyfills.e7c27bf15bf48a72de71.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/polyfills.e7c27bf15bf48a72de71.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /polyfills.e7c27bf15bf48a72de71.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/runtime.c298608e9647c69cc550.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/runtime.c298608e9647c69cc550.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /runtime.c298608e9647c69cc550.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/vendor.67eb8a7592425af0ba81.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/vendor.67eb8a7592425af0ba81.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /vendor.67eb8a7592425af0ba81.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/scripts.e8b3c78207fa4f6d6f74.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/scripts.e8b3c78207fa4f6d6f74.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /scripts.e8b3c78207fa4f6d6f74.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/main.c01c0c9a76089d1c0f34.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/main.c01c0c9a76089d1c0f34.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /main.c01c0c9a76089d1c0f34.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
region1.google-analytics.com/g/collect?v=2&tid=G-JV07ZMRWNH>m=2oeb90&_p=1465156341&cid=1084970816.1669049642&ul=en-us&sr=1280x1024&_s=1&sid=1669049641&sct=1&seg=0&dl=http%3A%2F%2Facikmobilldenizsube.tk%2F&dt=DNZ%20%C4%B0nternet%20Bnk&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-JV07ZMRWNH>m=2oeb90&_p=1465156341&cid=1084970816.1669049642&ul=en-us&sr=1280x1024&_s=1&sid=1669049641&sct=1&seg=0&dl=http%3A%2F%2Facikmobilldenizsube.tk%2F&dt=DNZ%20%C4%B0nternet%20Bnk&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JV07ZMRWNH>m=2oeb90&_p=1465156341&cid=1084970816.1669049642&ul=en-us&sr=1280x1024&_s=1&sid=1669049641&sct=1&seg=0&dl=http%3A%2F%2Facikmobilldenizsube.tk%2F&dt=DNZ%20%C4%B0nternet%20Bnk&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://acikmobilldenizsube.tk
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://acikmobilldenizsube.tk
date: Mon, 21 Nov 2022 16:54:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
190.14.39.165200 OK 590 kB URL HTTP/1.1 acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type ASCII text, with very long lines (53193), with CRLF line terminators
Size 590 kB (590413 bytes)
Hash e15084a5fa844a4667363a77dbba388a
c2fc998a4874ca1ed1f87bc32562270b3a4711d2
0ab27addfe127020ce7b9a6a5e3b57a133915e23edbe0852cff7b511507e56ea
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /styles.14f38c16c3244b5492af.css HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:01 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 590413
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: text/css
acikmobilldenizsube.tk/user.png
190.14.39.165200 OK 2.3 kB URL HTTP/1.1 acikmobilldenizsube.tk/user.png
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 27x34, components 3\012- data
Hash cc0a5532279fefa0f24e6c6a91442acc
1a16230291c3c234087a39fa0314a71591f171fb
97090cea6a2bbb16d13fa490185bc7e25d41935e376d4edfee651c474f466309
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /user.png HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 2255
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: image/png
acikmobilldenizsube.tk/_assets/img/enbd.png
190.14.39.165200 OK 3.8 kB URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/enbd.png
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type PNG image data, 186 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 58cf11a4b5f8ebdc29ec2e7b787c8d69
cd2686b1f04cfa4afb69b228fd7177d65e907d32
1b74331ad061c583ad54561f95596a8481b95d863a431fc4daf3a9ee7d151975
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /_assets/img/enbd.png HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 3806
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: image/png
acikmobilldenizsube.tk/_assets/img/login/login-footer-logo.svg
190.14.39.165200 OK 2.2 kB URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/login/login-footer-logo.svg
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1863), with CRLF line terminators
Hash c0ddebba4f15d5e966e993727605c03d
df6ba82ac9022f0309037baa9dbf6fbcfaaca543
59c1a112d5d610c1399aa46d5b549c5aad1e4b283aaf785545e818d053f25378
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /_assets/img/login/login-footer-logo.svg HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 2239
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml
acikmobilldenizsube.tk/sifre.png
190.14.39.165200 OK 2.5 kB URL HTTP/1.1 acikmobilldenizsube.tk/sifre.png
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 36x34, components 3\012- data
Hash 116f84727996ddda2d71b3c85cf358ac
a90ef391e339ddafbe5ae9f1f3d7d8d5cbf4a4e8
7ef622314ab427c8beae5b61a48b8e16710531e05406b135c0c5b4e8f1b22e17
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /sifre.png HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 2496
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: image/png
acikmobilldenizsube.tk/polyfills.e7c27bf15bf48a72de71.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/polyfills.e7c27bf15bf48a72de71.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /polyfills.e7c27bf15bf48a72de71.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/runtime.c298608e9647c69cc550.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/runtime.c298608e9647c69cc550.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /runtime.c298608e9647c69cc550.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/_assets/img/loading.gif
190.14.39.165200 OK 38 kB URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/loading.gif
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type GIF image data, version 89a, 96 x 96\012- data
Hash a5ac552d6a23421d7697f897729a2def
836cb1e7a61967b762898a3ce32e64ca7713119c
4d54a976b6fa75c73ec219bf5ca96537d46c387c138842fe3d76be0d9e111e0a
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /_assets/img/loading.gif HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 37840
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Content-Type: image/gif
acikmobilldenizsube.tk/scripts.e8b3c78207fa4f6d6f74.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/scripts.e8b3c78207fa4f6d6f74.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /scripts.e8b3c78207fa4f6d6f74.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/vendor.67eb8a7592425af0ba81.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/vendor.67eb8a7592425af0ba81.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /vendor.67eb8a7592425af0ba81.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/main.c01c0c9a76089d1c0f34.js
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/main.c01c0c9a76089d1c0f34.js
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /main.c01c0c9a76089d1c0f34.js HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /assets/opensans-semibold-webfont.1045337df148fc781940.woff2 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/opensans-bold-webfont.7b013a3110831768093f.woff2 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7572
Expires: Mon, 21 Nov 2022 19:00:15 GMT
Date: Mon, 21 Nov 2022 16:54:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7572
Expires: Mon, 21 Nov 2022 19:00:15 GMT
Date: Mon, 21 Nov 2022 16:54:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7572
Expires: Mon, 21 Nov 2022 19:00:15 GMT
Date: Mon, 21 Nov 2022 16:54:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 798ef0955be535268547903e74dacfcd
782823486f9ded693609cade264d1950e816f7d0
75df3810e787be95774282d4851ce350bba5c326843f1bd02348746355866e95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75DF3810E787BE95774282D4851CE350BBA5C326843F1BD02348746355866E95"
Last-Modified: Sat, 19 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7572
Expires: Mon, 21 Nov 2022 19:00:15 GMT
Date: Mon, 21 Nov 2022 16:54:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:36:36 GMT
age: 69447
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a8070a1aa0d48b75c639fa24eec3d96
14a81b4e2bdcdcdd951aa6660dc640c0292a2109
70b29ce3872a0c46d8d0e61f2801df1a98c8ea6e516adb1c2fe1bdad35f654f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff64f225f-d92d-42e1-a0cd-0b9c89e36291.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9042
x-amzn-requestid: 02203d7e-e15a-40d8-a09e-c40299c6f332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bu2bSH6xoAMF1FA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375d114-79f15fbc1c64941e54c6d5e3;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 06:13:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YHoIX9fgjqNaOq_84IdURDMNigg62C8616_qky56Xx7ok4LJvvqEfw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 12:54:30 GMT
age: 14373
etag: "14a81b4e2bdcdcdd951aa6660dc640c0292a2109"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131cae0245e456c2497833b48cc1be0e
01b7bf2cfcdac73911dbd0a570d262978a43daf1
539cc2fdefb049df026b18d450c56d85b7821b8723ea0070efa460096669576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F308504cf-ed6b-4fb8-bc67-4165549bba4e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7996
x-amzn-requestid: af3a6545-f0ad-40de-b1f6-56b9607242f4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1BvREKZoAMFzDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63784994-2659c8ec5fc04c510ea0e643;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 03:12:20 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: UU9m-kzHM4oKCHNiK2q4NWftsCueXeiBpJkk0cDv3et4v3MpF6eCtQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 04:04:43 GMT
age: 46160
etag: "01b7bf2cfcdac73911dbd0a570d262978a43daf1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9e0f5c07511d0f6ad0f2441db92797d
2dcc6187d7173ce741975ad4ec24435c9dcb0880
3c57bf58bab9d54dd152eb0260a203b1cb201a9e2d960f25a0cea685b539ea04
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5342
x-amzn-requestid: e396cea4-ddae-4b88-a73a-ceafb1e11620
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0b91EMLoAMFYYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63780d25-7f1187713f288a0c158508ea;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 22:54:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: PkFAourr7ixQ5NYcdMugerMxFTdCLgIAaBz6erANuppgzE2Tm4yVpA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 22:34:27 GMT
age: 65976
etag: "2dcc6187d7173ce741975ad4ec24435c9dcb0880"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 79ccaf63b8e37223509518f540b26f54
fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71
950ae082472515d39c9e3440cee399376e99840651ff04c4d2581951e44163de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032a7640-4af2-49ea-b184-de5b0ed996a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9653
x-amzn-requestid: 43209d37-210a-4339-a6ba-9fb26349e6fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3jZkHXqoAMFZog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63794c3d-66898b374a984c1b409c28ad;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 21:35:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eswxmUa59R-4pum8RNXKrKJg6g6tn17CnOpe4LZUPgEbvxfp9MzeDg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 21:41:31 GMT
age: 69152
etag: "fd48bd3737d35bc53a0ec4593c8769ea9fe1cc71"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96135f96986369533c0362367c1e6fd8
bc8b0612b79cb30817880fac9728318f837854b4
f4eab133baf21daae8b809966e8ffbe64a2414fd334538a226a2a39ab39c3d46
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F645dc32f-cd66-4021-92e9-77c4eff2fa1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5045
x-amzn-requestid: 93295168-385b-4b26-92e0-65858db59541
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0PgfGfVoAMFjWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377f936-7d3d9e44191051f454bd53ca;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:29:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hYkfj6mcRyzHioX7RAjvhpITDBX_CXLhum92tHz6ilGAY2C0fNi48g==
via: 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 a9e73292d0b92053c3e38dcec15fd0e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 08:37:09 GMT
age: 29814
etag: "bc8b0612b79cb30817880fac9728318f837854b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
acikmobilldenizsube.tk/_assets/img/logo-light.svg
190.14.39.165200 OK 180 kB URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/logo-light.svg
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1718), with CRLF line terminators
Size 180 kB (180545 bytes)
Hash 3140e053e7a3dde67e7b2c81b23771d2
5d0558f8da94ace88a622c70b8857bde38d7ba12
3da913d79fff46cfe4d58d56e141cfcb31865606284507f7a530db69394330fb
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /_assets/img/logo-light.svg HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:02 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 180545
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: image/svg+xml
acikmobilldenizsube.tk/_assets/img/login/bg/autumn.jpg
190.14.39.165200 OK 388 kB URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/login/bg/autumn.jpg
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1701, components 3\012- data
Size 388 kB (387821 bytes)
Hash 90062fd1b816f53d1f7ddddf1b2d15c4
a0407ae398c54b47de374b9813c8be17ec82bb40
f7278ca494d765eab007679ace9914b237327326d7cd2840660dc8140a8b5542
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /_assets/img/login/bg/autumn.jpg HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Last-Modified: Mon, 21 Nov 2022 07:54:56 GMT
Accept-Ranges: bytes
Content-Length: 387821
Keep-Alive: timeout=3, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
acikmobilldenizsube.tk/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/icomoon.a16e09ed69c51903026e.ttf?bezj20
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/icomoon.a16e09ed69c51903026e.ttf?bezj20
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/icomoon.a16e09ed69c51903026e.ttf?bezj20 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
GET /assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/styles.14f38c16c3244b5492af.css
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/_assets/img/appicon.png
190.14.39.165404 Not Found 315 B URL HTTP/1.1 acikmobilldenizsube.tk/_assets/img/appicon.png
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - Deniz Bank
openphish Deniz Bank
GET /_assets/img/appicon.png HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
HTTP/1.1 404 Not Found
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=3, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
190.14.39.165200 OK 0 B URL HTTP/1.1 acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish Deniz Bank
POST /islem1.php?ip=91.90.42.154 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://acikmobilldenizsube.tk
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
Content-Length: 0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:03 GMT
Server: Apache
Keep-Alive: timeout=3, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
190.14.39.165200 OK 0 B URL HTTP/1.1 acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /islem1.php?ip=91.90.42.154 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://acikmobilldenizsube.tk
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
Content-Length: 0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:05 GMT
Server: Apache
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
190.14.39.165200 OK 0 B URL HTTP/1.1 acikmobilldenizsube.tk/islem1.php?ip=91.90.42.154
IP 190.14.39.165:0
ASN #52469 Offshore Racks S.A
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /islem1.php?ip=91.90.42.154 HTTP/1.1
Host: acikmobilldenizsube.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://acikmobilldenizsube.tk
Connection: keep-alive
Referer: http://acikmobilldenizsube.tk/
Cookie: _ga_JV07ZMRWNH=GS1.1.1669049641.1.0.1669049641.0.0.0; _ga=GA1.1.1084970816.1669049642
Content-Length: 0
HTTP/1.1 200 OK
Date: Mon, 21 Nov 2022 16:54:09 GMT
Server: Apache
Keep-Alive: timeout=3, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc808a76a-e93b-4c6e-9163-b69ab5e7076e.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc808a76a-e93b-4c6e-9163-b69ab5e7076e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 994eefbfbd0e842814d889c8d279d375
34bc1857b5e78b3a059f9a1b3eed33bd8d3fe920
c5c510dcf074dbb2d180f3d3e5013aef84016a095c154ee091b88d68cf528e42
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc808a76a-e93b-4c6e-9163-b69ab5e7076e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7013
x-amzn-requestid: 2ca74e56-be57-4f3d-85d0-f937bc3ace9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: buJZcHKnIAMF6Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63758909-6d753cac1d6d55255aecb08a;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 01:06:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: u6cuVA2ZBv1RuSv2A2x5jM9mrsKoJ9o4M8tCuhi_yp4rR09AAV0jsA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 20 Nov 2022 22:17:25 GMT
age: 67005
etag: "34bc1857b5e78b3a059f9a1b3eed33bd8d3fe920"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2