GET cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
200 OK 28 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1931017
expires: Wed, 02 Oct 2024 01:18:33 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OORj%2BUazuEIOUjkJgWFdfKV%2BZWyc9mZXd28svOqOtZSFXX2HjFhRMzdiYxDwRF%2BhKkUz8x8pM%2BGEyQuvPagBBWOI2UsQt2sGfkRBh0LXZoqJ601Y20sX8UucMVKRQjmM2J2O%2Fat0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8153bfd05fff569c-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET headerscekilisburadacamp.net/assets/loading.gif
200 OK 38 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/loading.gif
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type GIF image data, version 89a, 96 x 96\012- data
Hash a5ac552d6a23421d7697f897729a2def
836cb1e7a61967b762898a3ce32e64ca7713119c
4d54a976b6fa75c73ec219bf5ca96537d46c387c138842fe3d76be0d9e111e0a
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/loading.gif HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/gif
content-length: 37840
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: "6399f28e-93d0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YC5bAbMiCsquBMyqdM1hPS%2F288K20jkqPvNB7L8SjBdz99DtoZWaJxDHkcvi%2BGSAyDVMd3tyw2Jvt3ly7JHgNVOxSaJgV0%2BuihrN2AiGrxsfUSYYs%2F1Hkgan4a5JVfIrChWvydUsM%2Fjd5FSqoGe4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e50569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/sifre.png
200 OK 2.5 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/sifre.png
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 36x34, components 3\012- data
Hash 116f84727996ddda2d71b3c85cf358ac
a90ef391e339ddafbe5ae9f1f3d7d8d5cbf4a4e8
7ef622314ab427c8beae5b61a48b8e16710531e05406b135c0c5b4e8f1b22e17
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/sifre.png HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/png
content-length: 2496
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: "6399f28e-9c0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NLuskWmrlc1dB%2BhWZrip002VAgliHfPLx2Z8HbM3JWCRJeSAu3twl1JgsxnNxDnfG3audWsEWklqJrMU3uqAAjniSqUOBDe3ckmCPqDWdNL3yExJS%2FPzbuL0y08ZUiCAWfqszGyDUKEo%2F6SjtB1b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e56569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/enbd.png
200 OK 3.8 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/enbd.png
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type PNG image data, 186 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 58cf11a4b5f8ebdc29ec2e7b787c8d69
cd2686b1f04cfa4afb69b228fd7177d65e907d32
1b74331ad061c583ad54561f95596a8481b95d863a431fc4daf3a9ee7d151975
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/enbd.png HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/png
content-length: 3806
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: "6399f28e-ede"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m4CfLtqKBZyUg%2FqhfdL4%2BG%2BpHKyhPAMGgYVegwfFN6JsSgwppb8z%2BvfFj9El5ATCvYKDnOkpdklYGlw2HznKQgCAbxfkwDcYfhUAdJ6vSpf3nWi6CekH5l44yKDd%2BsoVvGxeRt1YZ58OxQKiLr4y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e59569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/user.png
200 OK 2.3 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/user.png
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 27x34, components 3\012- data
Hash cc0a5532279fefa0f24e6c6a91442acc
1a16230291c3c234087a39fa0314a71591f171fb
97090cea6a2bbb16d13fa490185bc7e25d41935e376d4edfee651c474f466309
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/user.png HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/png
content-length: 2255
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: "6399f28e-8cf"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tWi9W9vO87h%2FuZ0zPNDZmnbJWrEYAjogB%2FFFgkHoEF5bWfJSme0CEmYncxgUX0kJLbCOKRTrjHielEYBfLcH2TbkdDSeH2ft5eLZOqGD6eU1pI03XW%2BkY41xYKB3EM3DsL9pZtJvjcxaENRI%2F3UF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e54569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/logo-light.svg
200 OK 395 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/logo-light.svg
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1718), with CRLF line terminators
Size 395 kB (395067 bytes)
Hash 3140e053e7a3dde67e7b2c81b23771d2
5d0558f8da94ace88a622c70b8857bde38d7ba12
3da913d79fff46cfe4d58d56e141cfcb31865606284507f7a530db69394330fb
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/logo-light.svg HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/svg+xml
last-modified: Wed, 14 Dec 2022 13:12:36 GMT
etag: W/"6399cbc4-2c141"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=udKHdDRRFTaoxFZ3Km2LZRktsjEWPlsw%2F%2Fps8sN9caNup4%2BJbD9vsZ%2BiuTB5mHdXbRGOUEivWoFLEas%2B5QxE9adsmRcAaIL73te%2F%2BxVCJCIBwHDqnwq9au9EbZHMgbyGbxCuERSadWZBNSK5ry%2Bo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e52569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
200 OK 9 B URL POST HTTP/3 headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type ASCII text, with no line terminators
Hash 4fdb23ccf58c32e1923471b27ee8ad88
cb735d01b1e32ed2a7273e1963bf4efa3268e5ca
5a3bb7a7d99512b9beda1613775905f13bf40eebab500bf48146c9c65f61a437
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /inc/online.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:36 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q4DLgftKKwZfsOFm5goW0sm5wL7bo7mids01EBR7%2FxAbmoRE5Z8jaSLTNA2MbUBQMH0%2Bly8RQjscQCvKwuT19DLNLIeSNBLSeeohtY17L3DmfSpiD75iPbwtdf%2By8k87oIVSq6tgTf6bKnNP5jCC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bfe4cc19569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/appicon.png
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/appicon.png
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/appicon.png HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J7CEef0QyPTwvR25t2kuQj0lXHysCDrvkniNEh0R4UhHOAlp5xMrQwjTnZo%2F0mOi%2Fq51tAic1%2FApcX31UknMEohqqajMF5vQ%2F3BOkzUFeWGzToIp8whXBboQX1VT%2FQ35iZsSN8whPAGhJ%2FZUKCdK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd47f76569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
200 OK 0 B URL POST HTTP/3 headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /kontrol.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O28lSOh1qG9dm8extDkRoEt9hDIOskBZ3yQdU2dc4CofnEpToRigws0PH4JS5stJE4OVQRRrLBQ6fLbxRMfJYxRIn8PeNwNq%2BZK6Snl9%2B4De0%2B%2B8qIcbeHcgvR4dMYxNUGs4EecQ0oAr%2B0Acj%2FsJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153c01d1abd569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
200 OK 590 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Size 590 kB (590413 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/styles.14f38c16c3244b5492af.css HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/css
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: W/"6399f28e-9024d"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GA9Nh89m%2BBQ9au7gvO9c%2FbN4pFbIhP523g3lAAojrM52jP2o1pmDZQHHXkXOx9DeZT4Ke8tD2w0pxSds3nmK%2FUH9u5ahVtZibY8acZDQ1uzZ6YtMa0StsXE1R2OhWf01lMcrD7yp0Yb2i1mEO%2FQB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e4e569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-semibold-webfont.1045337df148fc781940.woff2
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-semibold-webfont.1045337df148fc781940.woff2 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fRDDCm8KxXRN47taS5Pz91f7BlYsWHPCN5RGMhj%2B8rNUkv3uKrdTtkwy87BIsZmrnA9n9gKerfWPOSUh9oWwE2T9YyAChlSkK2F7sW%2BETSiyRclfmLFiXV8ESm0vBywIun63FPh9iJVfAvlpek9P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd1bebd569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
GET /assets/assets/icomoon.6ff42eccb86b1fcbfe3f.woff2?bezj20 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CIEBKfxjJxcIRuIXJ%2BXchXn8VTgNcNX4m8T2zUANF5dQb2w8MFL2vL%2FPxyqyWO7C64klhgWfK8880OIVwtPXK2HKFVN1SxIOtU57AcGUnJTBLqi7S1oquhpK6bMUHu2rkSRoUWinp9jSC1b7kgiL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd1bebf569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-semibold-webfont.ba28aba0329c0fc0e825.woff HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zs%2Bp4XxqWsjRFCpj3iXBdbH9%2BagXfSShZVh2gkOw%2FPMU74LSn5A7Zwinp7iLL2PPSY%2BJ4IvISQF1ZBy88z0jO6MT8iwRCo2kBZ%2FMlJtOWWp9tb8ZkYa1KiXiHyB0ilvOs8LeUqqsyqmOvvTjOMHC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd2cf08569a-OSL
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
200 OK 0 B URL POST HTTP/3 headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /kontrol.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:39 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igoHSkSwP8%2BsB2%2BWen3LS%2BRlt7O11ig6BGyHFfMjtZ9WQZ%2FLgvzpbCtPJcIQ9w%2FKdkbVlGZOiXxSnPTEfsnm7aQWVVq6hrgylIZkXyN1RIIymwGaAjuJADYXRcRlJty%2FdnzuTRm3O5xYPSGiXDn2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bff79941569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-bold-webfont.c04f02eb3292e49d2d4e.woff HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gW3G1NF1w4n6JRlQydb%2FWNfj9p%2FGDdqlgPNhL%2F5e27kaH7l0oVXqab3QJhr3NOJzS%2B2sGtVTLwnoequcJfCEcjLJHYuRMppKMht9HDYbay3P6ZrT27pZLDbBTgWICJ4CMC0j2xr5FhYRyqajnnza"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd2cf0a569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-regular-webfont.d389759376bc2ac55ee9.woff HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J38llSnTz7uMfjoFJHmGkYDSAYdEJHR7sXsuXHJWt1hRggitzXzcjOqkeV5W9zvmZn%2FhK%2FJF7fnuDfyMOa5qR9fK%2BGTxz6UBS6%2FeosTnfDoxF%2BBBn82S6I7SVCnRLdLXEDdR98zSJS1v6QxP%2BkFU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd31f2b569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/
200 OK 274 kB URL User Request GET HTTP/2 headerscekilisburadacamp.net/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Size 274 kB (273852 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET / HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 13 Oct 2023 01:18:32 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k; path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PwNxL8CwQU2Qapq6jO2brFwuSBg2dpL7dveH%2FCvz92bWnZ9NUSt6Yqx99s2KAyU3d7JuY1fVYgAre%2FbiW%2BvvDzymoFz0Lv1Wu3IEBpXxsdJcGI2S8JrDV0lO8BuTkctMcV5S35pfo3aHrXXWGGpI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bfcda984b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET headerscekilisburadacamp.net/assets/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-regular-webfont.a66a53e7f788b1ab7e41.woff2 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=77Q%2F6Mxhe68kkbbFUsF1Bquo3xK2TlCL0dV1BMLgYc0Rc57rI664FxuyVwfKAEYy26WDh7H5lv19HmlesOTD9R%2Biff%2FygBZX2A7MD9Gwvo4eBeu9snLdNi6QQgJVAvtHLrNzu1GIaZTcGfQ8DoGw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd1aebb569a-OSL
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/autumn.jpg
200 OK 388 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/autumn.jpg
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x1701, components 3\012- data
Size 388 kB (387821 bytes)
Hash 90062fd1b816f53d1f7ddddf1b2d15c4
a0407ae398c54b47de374b9813c8be17ec82bb40
f7278ca494d765eab007679ace9914b237327326d7cd2840660dc8140a8b5542
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/autumn.jpg HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/jpeg
content-length: 387821
last-modified: Wed, 14 Dec 2022 13:11:28 GMT
etag: "6399cb80-5eaed"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SxP46r5ts5vee5TOvUndBWmoi51Y%2BVzHjAx5%2FlWkLBilH%2FYwKzLtM2l2yv2ZfufSFcCiijN3dvqRG4KDNL%2FMEjC%2F3sklT87Iv3e0Wo7ZJw3PfZbNtq3vWwNPg%2Fwi%2Btuqte39M3Y3fUKOCfGa0aSW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd1aeba569a-OSL
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
200 OK 9 B URL POST HTTP/3 headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type ASCII text, with no line terminators
Hash 4fdb23ccf58c32e1923471b27ee8ad88
cb735d01b1e32ed2a7273e1963bf4efa3268e5ca
5a3bb7a7d99512b9beda1613775905f13bf40eebab500bf48146c9c65f61a437
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /inc/online.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G7VSimOIG4W%2BXjNVTsQJIf4h0Qymr5DNrlpSYKzoSKQKjWHnHWj4EE37Xk4rOSemrynOU6Y2L4uexACUc7rilaUuwntzkihj%2FCS%2Bnho%2Bx4x6ybC5EjhMyh7C8D2K995NE%2Fs7KHPjVhrsgdMTBvn9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153c01d0aba569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
200 OK 9 B URL POST HTTP/3 headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type ASCII text, with no line terminators
Hash 4fdb23ccf58c32e1923471b27ee8ad88
cb735d01b1e32ed2a7273e1963bf4efa3268e5ca
5a3bb7a7d99512b9beda1613775905f13bf40eebab500bf48146c9c65f61a437
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /inc/online.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:39 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FE9POZ60ZbqHTsX0sPONm%2BwJXCqwZK7iQAMBezy4P%2FfT62uSvAdbwMynIJFLMwNApl7WsPvcx5L0QWakKhgp%2FemKvUjesaby0Qqu6wq1aEgfxs2Iiaue0ZnKZYhRPVg3%2ByMaG6Buzn7DMM6zCg6b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bff7893f569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
200 OK 9 B URL POST HTTP/3 headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type ASCII text, with no line terminators
Hash 4fdb23ccf58c32e1923471b27ee8ad88
cb735d01b1e32ed2a7273e1963bf4efa3268e5ca
5a3bb7a7d99512b9beda1613775905f13bf40eebab500bf48146c9c65f61a437
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /inc/online.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3NsrErgYZHsEizSA%2BP7xOoejG6xO96wcTNt2mArwgkWl0PGfhJDGeNLOSiC9SJ5UGvTUaKa8kn9%2FqbuJ8GCOSZh9IY5vu6yjrvKpfVVw9ClWYeyQ9yDraj791JK7Z42AHS8OMy8F4Y3fg6V3RPl8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153c00a4e0d569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/icomoon.a16e09ed69c51903026e.ttf?bezj20
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/icomoon.a16e09ed69c51903026e.ttf?bezj20
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/icomoon.a16e09ed69c51903026e.ttf?bezj20 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZgdmB3fM4gx3AogKj82iXYNYoteBr%2FbarWLjNxzZmH0roIMIgsNgU0BwD3pBIZyBk5T7u1zsSop7B%2BIZXzwyPIIJyvzullQC3eBOr1Rr3Sf%2FJzPmSCNTDEM0F5OXl1GcBVqyw6wuVJMURjMJxwqL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd2cf09569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/favicon.ico
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/favicon.ico
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /favicon.ico HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=519rOFPAYSXfa0iNlw84pwJE%2F2KnTpKO5NoaGbIlmPAM3Nr%2BjOw51A4Min1B7V78pZDbJT1dp6vvfw4s53%2Fk1NKBb8vPm3BlL18JWD%2FvzMYrL5MTjt8HgUKZs%2F3%2FNmMJ13745qs9iHbRaMRHH%2FQQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd47f77569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/icomoon.0014b4e7989bbfeaaef5.woff?bezj20 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZC8sr%2BNCxP2mUZAWQfKWnhyXMAw5CZafjXZkf8eDLQv6sHIgz03rE8fGm%2BtHCuxwYN6PlNgVv1gqcxZfW1Thx0%2F5zMJv6JzC8zxkBO7zZeMKh14eRCt6Pdfnbw%2Bys91RAH4cYxpPjSUzDCMD86s%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd32f2e569a-OSL
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
200 OK 0 B URL POST HTTP/3 headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /kontrol.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:36 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rlYoVKyF9WQw%2FNhHuYTxp08LkBXnL4DpElPRPiIJF4A2bN4weJ%2FUjHJi3McNpfGGbCQi5k3cexfK7U%2Fr4Sg2WAGp5IhUolVeBny62crY2iabA4RBvFrqUOlKBbRextOBf%2FqfRvE%2B%2BvNYaQlUC466"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bfe4cc1a569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
200 OK 0 B URL POST HTTP/3 headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /kontrol.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:42 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vrm9m%2FKFRM3i7yZH9YN7G7vD0My2U1CzssUiPo79PXJM%2FVA6LcD1tN4okqtEX6hTXMbCfRIY0sIZ0PZnCTN7Q%2BfQTjh%2BkEpjvGaVZ3fkXM5r4Pwq1pMJbb%2B%2F%2BYMJLe6JwC01dV%2B9lMxtGBZSDYzK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153c00a5e11569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/login-footer-logo.svg
200 OK 2.2 kB URL GET HTTP/3 headerscekilisburadacamp.net/assets/login-footer-logo.svg
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2293), with no line terminators
Hash 4707e74ceb36992d2457b8afae140b84
3f4a5fd1724def5002387ff39f59bd18f6966e38
50e04e7b578faac1d97ebbedc2390fac08adb5bcc0515ff63a607f3e473ef73a
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/login-footer-logo.svg HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: image/svg+xml
last-modified: Wed, 14 Dec 2022 15:58:06 GMT
etag: W/"6399f28e-8bf"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hF9fqZ0U6ThjY%2Fqq5KDvwA%2BV5AUUSAG0bm4Y3KeBR6pa1FKZ4mni5GDLUEcahOZnQ1dB9wIxbwe16heufdv2l2%2FRy93%2FqWKJorjkQTn8A24Ru5WNoGExYblPbGtwW06VkSxo%2FvTBjhenqlFmdYi8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd03e58569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
200 OK 9 B URL POST HTTP/3 headerscekilisburadacamp.net/inc/online.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type ASCII text, with no line terminators
Hash 4fdb23ccf58c32e1923471b27ee8ad88
cb735d01b1e32ed2a7273e1963bf4efa3268e5ca
5a3bb7a7d99512b9beda1613775905f13bf40eebab500bf48146c9c65f61a437
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /inc/online.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5JJt1V49bQiMLabX9rvcFX%2B36uCNlJVJQ5TXdieXC9dvVqx12%2BLPjRHDI4kSTChHqMHA5gF2UNVVvsNCWWC0koEmf98k7Bh9Al2ZZ2%2B%2Be9aDB1SZ550u5F43uuQSIbdjjOoYTbZYnKp85iVTjUlF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bfd25eee569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
200 OK 0 B URL POST HTTP/3 headerscekilisburadacamp.net/kontrol.php?ip=91.90.42.154
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
POST /kontrol.php?ip=91.90.42.154 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://headerscekilisburadacamp.net
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33, PleskLin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eY50qHcJ8BLpCcpj6S2D89Y3tvVt9UpnhKSvGoYE6xipC0eL5fk%2By7bHTT%2BED7sFMl1%2F7N5Mg4Roz2yp%2FzU9qN%2FJpWJ%2BzebyQIzB0HvP3Q34egxSzvYA37AJbdgavfW3rXJr7CIWBXqZ1VQUp1Hp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8153bfd25eef569a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET headerscekilisburadacamp.net/assets/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
404 Not Found 808 B URL GET HTTP/3 headerscekilisburadacamp.net/assets/assets/opensans-bold-webfont.7b013a3110831768093f.woff2
IP
Requested by https://headerscekilisburadacamp.net/
Certificate IssuerGoogle Trust Services LLC
Subjectheaderscekilisburadacamp.net
FingerprintB0:FD:5F:7F:6D:13:BB:61:05:27:E5:4C:A9:2D:3D:FB:93:DC:67:4B
ValiditySat, 07 Oct 2023 16:51:50 GMT - Fri, 05 Jan 2024 16:51:49 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (866), with no line terminators
Hash b45bdabc5c2538b0c4e5f352bcdfb585
5a97ce87ce8d3d86a043c1a5e68e968e20a1e146
c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer Verdict Alert OpenPhish phishing Deniz Bank
GET /assets/assets/opensans-bold-webfont.7b013a3110831768093f.woff2 HTTP/1.1
Host: headerscekilisburadacamp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://headerscekilisburadacamp.net/assets/styles.14f38c16c3244b5492af.css
Cookie: PHPSESSID=7tso2mh20vlu2ilg0hqdnruf0k
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 13 Oct 2023 01:18:33 GMT
content-type: text/html
last-modified: Sat, 07 Oct 2023 17:45:12 GMT
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9L%2BKZPKPI0GLnkP44dzpbt9BUusZBvX4dqVPtnwJrrpBWl%2FENXLsRZCfw2h58XKrLlgVwT7MKpoMFWZvVaurMuUK3yehiaFI4bpld48bU5MY62n1W4MWrFkKmLtV1ojiGqn%2B%2BzckBOZVU0rTfedU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8153bfd1cec8569a-OSL
alt-svc: h3=":443"; ma=86400
172.67.205.246
104.17.24.14