| yenib144.top/images/banks/deniz.jpg | 188.114.96.1 | 200 OK | 5.8 kB |
URL GET HTTP/3yenib144.top/images/banks/deniz.jpg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 500x200, Scaling: [none]x[none], YUV color, decoders should clamp Hash7995b5e53599897563011d13aa49ea5f f56c2f94bfb6cd60d11d278e0fbeac6703590e72 d51ff84f13144f25ddc1daf353e519c9541ec6be63da2c25fb3868112064af32
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /images/banks/deniz.jpg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: image/jpeg
content-length: 5774
last-modified: Thu, 04 Apr 2024 23:10:22 GMT
etag: "660f335e-168e"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6320
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wqx8w8Um3FX%2B0P9%2BwG53n4whaYdbBjYvTB295%2BvqRi6LVEZc1Idq2ZuTs%2B9zNSA9eFn%2BlvQFayZFm%2FT5mcymGs5ckmQfTqI9%2FY6GQU08%2FXTuGHG5Zv%2FQM4dIpL6vplI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db4f8ca56be-OSL
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/css/style.css | 188.114.96.1 | 200 OK | 22 kB |
URL GET HTTP/3yenib144.top/css/style.css IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashb9deded9208aa287a31cd594a939b401 10f645cdfae5517b6ef6f76d41f8589c4794a38f 98c3b5f35d19ed6f166fa7373c76d3eeb195c04263ed345038827b6073d5dd06
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /css/style.css HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/css
last-modified: Thu, 04 Apr 2024 23:10:26 GMT
etag: W/"660f3362-24806"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6320
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qsFse6yG7lqYNDtf0JwKWyIYJValRQ6tNpN%2FzfO6gp8FgLrslgZpAwKcOudCnCDtrkZCJ4558bgq5lt8N5PnDWir17xdObNCVuomM9SGLSN1ywRLCSyzamJCzceLMGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db4e8ba56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/assets/images/form-progress.svg | 188.114.96.1 | 404 Not Found | 52 kB |
URL GET HTTP/3yenib144.top/assets/images/form-progress.svg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeHTML document, Unicode text, UTF-8 text Hash7f5b88f4e81fc50f443c67c71dcaf960 a31f35d57de80c953d25ddc80eec384cb7ff2236 e0c70cc0be89a63d96b2c547b566291ad04d43252fce6a98cd5631b33655ef58
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /assets/images/form-progress.svg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HMuunrQx2kYwjZB1Tg5HRSUhWytghe5Aw%2FHSmYZEfbxDpwFHRzKSrxhFghpjudOk%2B8w6EbrkiB%2FAZjKSzNI5Ud5YjnubmAiFV5HdhOX%2BmlyIjUYD59sjVM42sLm0wU0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db68ac856be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 142.250.74.163 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP142.250.74.163:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yenib144.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:27:30 GMT
expires: Fri, 11 Apr 2025 17:27:30 GMT
cache-control: public, max-age=31536000
age: 564824
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 142.250.74.163 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP142.250.74.163:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yenib144.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:27:30 GMT
expires: Fri, 11 Apr 2025 17:27:30 GMT
cache-control: public, max-age=31536000
age: 564824
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yenib144.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 166602
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yenib144.top/js/jquery-1.12.4.min.js | 188.114.96.1 | 200 OK | 80 kB |
URL GET HTTP/3yenib144.top/js/jquery-1.12.4.min.js IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeJavaScript source, ASCII text, with very long lines (65446), with CRLF line terminators Hash4fcf018b5c604c47ae980185cf0167c2 fa4ab55b154a5a4c4ef55cfad51a2a2d4407af61 32b42f9bc813dd6bad1b45129eade1df8dd1463908f79505209fbfa1aa71018a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /js/jquery-1.12.4.min.js HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/javascript
last-modified: Thu, 04 Apr 2024 23:10:24 GMT
etag: W/"660f3360-155a6"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6320
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oNqPYOfiuDMyiI7%2BSh1njVdCPVs6aDhzUEjNPTdlgaBE72GVVQFQ1WPeSQJ7S2%2BFon1vlTit425iRVCoTRNN6Uk3C874BlZhNoLeao2pJbOL6eObzT67Jo4fbBmmFyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db4e8bf56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 142.250.74.163 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP142.250.74.163:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yenib144.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 08:04:32 GMT
expires: Wed, 16 Apr 2025 08:04:32 GMT
cache-control: public, max-age=31536000
age: 166602
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 | 142.250.74.163 | 200 OK | 35 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 IP142.250.74.163:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 35328, version 1.0 Hash7670dba29aa2a1560c5d711ea6f6b369 6a2a620d2972f139c804c5a8363c91eb1a7595f6 adfa45260a1306cb5fefc1f17c1b5e7b61135534a82bf1b8e3d0540af7e07e3b
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://yenib144.top
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:27:30 GMT
expires: Fri, 11 Apr 2025 17:27:30 GMT
cache-control: public, max-age=31536000
age: 564824
last-modified: Thu, 14 Dec 2023 02:00:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yenib144.top/images/favicon-196x196.png | 188.114.96.1 | 200 OK | 39 kB |
URL GET HTTP/3yenib144.top/images/favicon-196x196.png IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typePNG image data, 196 x 196, 8-bit/color RGBA, interlaced Hash3290deb61511eee631e455d4d4c421cd 44c7b59e98a30682100ece6c8672715f3cfde979 cb0374314e49be2700c9f7c6c59be3248d2658cc0f426faed041928712b26475
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /images/favicon-196x196.png HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:15 GMT
content-type: image/png
content-length: 38550
last-modified: Thu, 04 Apr 2024 23:10:22 GMT
etag: "660f335e-9696"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NSKDYb8ywReAYjfhqdpHIIjvVF8zb1vGK8ax439c%2BlOBKONK%2FVCl2n4p2lK14V1yAGmdr5R8UCsQ1IPzM5Z%2BvxyfzUup6FtSIlHxMnJyh85Ug0wKErdLl3wdKBeVpo0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db85d6f56be-OSL
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/assets/images/form-progress.svg | 188.114.96.1 | 404 Not Found | 16 kB |
URL GET HTTP/3yenib144.top/assets/images/form-progress.svg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeHTML document, Unicode text, UTF-8 text Hash7f5b88f4e81fc50f443c67c71dcaf960 a31f35d57de80c953d25ddc80eec384cb7ff2236 e0c70cc0be89a63d96b2c547b566291ad04d43252fce6a98cd5631b33655ef58
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /assets/images/form-progress.svg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qXQBrERReFkSZB34S0JC0paS4nVw99%2F3gbXwn2EwUdSvB1S%2B16sNHFoz55HWLSbm%2Fi1DRpcjmW5fXo00jTPAhTVsJQ4E1R3Qct9MygqiZ%2F6cIb4SE2lniXpn%2FKzp5w8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db4f8cb56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/js/jquery.mask.js | 188.114.96.1 | 200 OK | 16 kB |
URL GET HTTP/3yenib144.top/js/jquery.mask.js IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeJavaScript source, ASCII text Hash053305c2b293c27c02523cda42962c09 556b0af7346b9e21a8eea1be8b195b563169ecd5 be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /js/jquery.mask.js HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/login.php?bank=22
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/javascript
last-modified: Thu, 04 Apr 2024 23:10:24 GMT
etag: W/"660f3360-4e98"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BaNWcMiXP8eASQgt%2FiXZ9oikTzYQf1oY4CN4mi5jCH3OeQE543V7Bpwy8iL0HA7FSHwRtU2vlBi5MEBQWCKLua8jPw6jVO4R%2FU2w2ezt3NGbGY%2BS6GC4Z7bLLLpr0Y0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db4e8c356be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/images/arrow-left.126.svg | 188.114.96.1 | 200 OK | 12 kB |
URL GET HTTP/3yenib144.top/images/arrow-left.126.svg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeSVG Scalable Vector Graphics image Hash5a1bb1e91af3b4c72eb2a509af3fe4ce 8b6218cd141ce0b85da3f2b7e09693267711eb10 945f7d25e8f885da3c77668f74ecacefa894dc535ac048f57a56e2b2fc2560df
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /images/arrow-left.126.svg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 04 Apr 2024 23:10:22 GMT
etag: W/"189-6154d718d1380"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tvDGOUlWb60laCWxSoH6OcmQoBJ5dPH0gSJfHfQ58HtcnNSIkJElkPaXM9az7Ymj5ZQ0b9xFA2kkLyFlsfCgYsYLefNbnYw8iYwAZVDYVujn3q2OGn2Flp%2F1hMGj08Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db6bb0b56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/login.php?bank=22 | 188.114.96.1 | 200 OK | 10 kB |
URL User Request GET HTTP/2yenib144.top/login.php?bank=22 IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /login.php?bank=22 HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y8nspl6oS6FHT8nze7KaKzfFCZmmGBHkRav7T5hsE7Zi7RotfQra9SaPSOfivT%2BC9f8rSwnRCWe%2Fw6fAVKYJQXo25XoS%2FnxAhg75UYzX5AWDNuowH0iEgxqVdxz%2FfAg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87628db27a69b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap | 216.58.207.234 | 200 OK | 20 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap IP216.58.207.234:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashab94633df9fdddf9f987e0a2c93b7508 ad5c116ada7e4d6affa1f07010314d38d3a58fb1 6b0172076a4defe6d8038592d5dfe0d97db6cbc823175586faddce4c3730ea3c
GET /css2?family=Roboto+Slab:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 06:21:14 GMT
date: Thu, 18 Apr 2024 06:21:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap | 216.58.207.234 | 200 OK | 67 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap IP216.58.207.234:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1572) Hashc305a47d8111e802385ed8ff639b4479 6246d59c286f29ec692a165d8dc32e4f2bbcd91a 13b36e3ed76d8e00bbb541da922af895344bb8921edb34fac45ab5afe4186f71
GET /css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;0,800;1,300;1,400;1,500;1,600;1,700;1,800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 06:21:14 GMT
date: Thu, 18 Apr 2024 06:21:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yenib144.top/images/edkkds.svg | 188.114.96.1 | 200 OK | 8.7 kB |
URL GET HTTP/3yenib144.top/images/edkkds.svg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeSVG Scalable Vector Graphics image Hash8e64c3f3a7c9d6ae7fc5b160ae557f46 a4e60b7e03393e230f7d6091d831f1c0878c659b 0e8c563883ec41151b10ec8b533b02f289531175e5ca2a816bc495edd38a6114
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /images/edkkds.svg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: image/svg+xml
last-modified: Thu, 04 Apr 2024 23:10:22 GMT
etag: W/"660f335e-222a"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6319
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vFC5hm9tTCODkWF5gHinvzZnXflMI4FVbtyN2By6S1F4q68wkV2PHzGQbzeCmvhzDI6ZBorQh6maacto2Lm2AjGUdUdshbfEFlS1TD5fY7mNUl0bxcaxAaXC5N2PCJw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db6aaf756be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| yenib144.top/images/button-right.126.svg | 188.114.96.1 | 200 OK | 448 B |
URL GET HTTP/3yenib144.top/images/button-right.126.svg IP188.114.96.1:443
Requested byhttps://yenib144.top/login.php?bank=22 CertificateIssuerLet's Encrypt Subjectyenib144.top Fingerprint04:E4:3B:7F:E8:07:65:39:FE:0A:9D:0E:07:73:8D:32:FA:46:63:56 ValidityWed, 17 Apr 2024 11:51:56 GMT - Tue, 16 Jul 2024 11:51:55 GMT
File typeSVG Scalable Vector Graphics image Hash4dad94e251e95103b0c152312d3b8d6c 38d5bfa135ea373a91c8914ad96702a69f154bab 3b210a6ade6f2c1135255f233b6978b668ac87c1e4ac8725d8f189d54bdaa499
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /images/button-right.126.svg HTTP/1.1
Host: yenib144.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yenib144.top/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 06:21:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 04 Apr 2024 23:10:22 GMT
etag: W/"1c0-6154d718d1380"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rb6PqFXmqRN49md%2Bme7HD94jBThGcPNCrJ8uIEPAnbjQSToMet9l7NWQHOcM4Cir890ZGp0rTDW9jo%2FYhJ5Qk9KG3cOiqAgTS6Q%2BYqettzQWHLdA7fs%2FJxKbmLfDsKI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87628db6aafa56be-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|