| cdn.jsdelivr.net/npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js | 151.101.193.229 | 200 OK | 25 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js IP151.101.193.229:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65299) Hashe2b09c06f0e714b6144a6788a28e3950 ce54f85f278fbcd5cb2292f9c186eedf63cdcf88 d2ea6c1e0cabca20d18e924b25a1cd0187c38ba7c33f60ab06e1b0402b9bcdb5
GET /npm/bootstrap@5.3.1/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uzlasmamaliyedosya.com
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.3.1
x-jsd-version-type: version
etag: W/"13b1c-zlT4XyePvNXLIpL5wYbu32PNz4g"
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 04:34:44 GMT
age: 9007450
x-served-by: cache-fra-etou8220068-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25082
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.24.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.24.14:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uzlasmamaliyedosya.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1016076
expires: Mon, 07 Apr 2025 04:34:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bJ%2BMy0p9OjeO8x5yzLeQBRQsQiHYQmbIhqpHe5FjdGAroR%2FAJcQL%2FaeiMuVLIiVFH6ehanXdWTca%2FoqvqEeMrKbjOxiGEXnr1OclzjmlDLKtU9ci%2FwWXuq9DRiES%2FQrUmBUAQIEj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759b451af93be3f-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css | 151.101.193.229 | 404 Not Found | 53 B |
URL GET HTTP/2cdn.jsdelivr.net/npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css IP151.101.193.229:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with no line terminators Hash443e9639be67e1a95cb3ce7d451d4ac9 bef1ee0280dc8432962f59987dfa9c1bb905ba56 e8d95ffd01232feceb816157cafc4af1d7f61b20238265c5ab97819c14225f40
GET /npm/bootstrap-icons@1.15.0/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=30, s-maxage=30
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/plain; charset=utf-8
etag: W/"33-vvHuAoDchDKWL1mYffqcG7kFulY"
content-encoding: br
accept-ranges: bytes
date: Wed, 17 Apr 2024 04:34:44 GMT
age: 21
x-served-by: cache-fra-eddf8230081-FRA, cache-hel1410027-HEL
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.24.14 | 200 OK | 150 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.24.14:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.uzlasmamaliyedosya.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1016052
expires: Mon, 07 Apr 2025 04:34:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XRrEZHViOsKb04HUhFYohuW9JF684fvG5DFWAqgvN0hI%2Budef79UG2UgvS0HrXyPN9Pysh%2FpigjbggTj5SIPWDZBrKnE%2FzqX3Yu01mDVuhWME3G%2FbFWWX9xuPZogSRa8cYoi%2FOHZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759b452a86ebe3f-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 639b1799dcea4de17062d76dc993c961
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: ce55e54433b1635f6fc6c5aa2374ef94
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 113 B |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/login_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with no line terminators Hash99a565c318adee50e53be2320511f6c4 4fcbad23a294f66567c4ebd98b1a86b6111861f6 1f4fb231fa2e4087e368def58287b4c6fb2bb7897eb8bad2d26a527ddce31535
GET /themes/izmir/js/es/login_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-length: 113
last-modified: Fri, 29 Sep 2023 12:09:54 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d2f84b7251e780940a3f37b8d1699d59d65c0ba2138f97337f20051db6702656be19edfb58810b7c31c4b9d1acc68ca72; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 21e9a4e2c9d41a83a261218d3433ebf2
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/img/DDO-logo.png | 172.67.198.72 | 200 OK | 8.9 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/img/DDO-logo.png IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1973), with CRLF line terminators Hashfd5973e8975ea0ee00021bee97271870 c1e2bda1337f5c6dfb3d0b4db1451675fefc7193 bdad3e72e7bb87c9132db29dd7cfe6b747ee0c1713430916ad95e472a293ac05
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/DDO-logo.png HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wf1X3Lh4LOZc31mPmiW2aiFAHdW%2B%2F2EIA3qM1ZPTS%2BHDLxmKd695Swccxv2oAyN2f4w2TEuBfIkV479S7h0h2oQNebeaSBg%2FDKstV3izJh%2FSIgpysaT09kcJTM1xlRJIUoHxNvfjNJCG7o%2FoTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b4527e9b92b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 691f0b98a87265a4b4284ab00e70b7a6
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 9b46306c49a4c77bc97acbe08e67d1e5
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/CryptoServlet?generateKeyPair=true&pn=%2Fsorgu.php%2F&ajax=1&token= HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=egEZLZ41uXjKtVCBoP%2FoS1IWs9JwQFy2cDWdzjRSQIBFx0RH27wc%2F7sp%2Fy4Q3t3Dq6W2Wdhhw9KWbuIJ8Ls%2FRqRrmXKOBcFPbIsdq%2FP83lhnJShL3tK4TP4EWoJn%2B2wWf6SHieh0pJZxv3luYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759b455a92e92b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/img/favicon-196x196.png | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/img/favicon-196x196.png IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/favicon-196x196.png HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=seNu7BJzI%2BjV3IX%2BlpxE3%2BslajWtEnFX%2FK3nMnaGKCqbx5tEHcS18yk2hNM8Y2vTusj8PkEZSiAvMpQVZMecQ28Iig%2BdXLZYLyq0ezVES%2B1vWEk80qA1SRTwdXhT2bbWcd5zyrpfDJ%2FVME%2FS7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b45679bc92b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/img/edk.png | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/img/edk.png IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/edk.png HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=97qVG13YjqlVvB9HliRbXDoVkWB6NtMgPleTsL7uJc1ENZG32c0HGDJclGLI1rngjPaqmcwB79d7va%2B87X5qvdQ98K3WXSTDXEhnzMIZ%2F6QIuL%2FVvVdCznpHg1GTlWs2vhGI3A12odhTh9sdhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b4514d7392b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/common.js | 31.3.2.127 | 200 OK | 144 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/common.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
Size144 kB (144214 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/izmir/js/common.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Thu, 07 Mar 2024 08:58:33 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6db2e77695590dd90ba48de0f7de0ad6157dd97b48de1183f08c09bda0561c72637ed36cd98f7724210387eeddae4ab2dc; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: f99ace25f7c83eae9355d858063618c7
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/jquery.jcryption.js | 31.3.2.127 | 200 OK | 66 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/jquery.jcryption.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /themes/izmir/js/es/jquery.jcryption.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Fri, 29 Sep 2023 12:10:47 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc6550d85e8aba9d05d225503dcfca5a125c1d99c72a8fef2c44b152de133c944409fe8db84ce51262a780c02fad88555; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: MNCDN-2137
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 8139c9ea745802a64ea01f5f9d436dd1
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/ | 172.67.198.72 | 200 OK | 18 kB |
URL User Request GET HTTP/2www.uzlasmamaliyedosya.com/sorgu.php/ IP172.67.198.72:443
CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet | OpenPhish | phishing | Government of Turkey |
GET /sorgu.php/ HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:43 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O3XxyUjnL0Sgz7mR01AjS1b8qwHj7vJvJML0gKzrUpq%2Foph%2F8Tg8nfWqqMGn5QmHB1eXZ%2BaZUy2I7i0UZWeLGBcrgma1gO0nyapjXDR2pQoRq9yYMPdu7OANYdnpATOErjH%2Bws6a%2FFcPj1eHxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759b44fafa8be44-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/css/login-main.css | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/css/login-main.css IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/css/login-main.css HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FtrUCFykJ%2FlmPI7AksgOVuIPxvUPKekoI8wMzdD%2BGc%2Bk6xyvmrZG4EqzRAacU8Z70%2F6pNb5TEGyUWETtrLINnp1N4RF7IaiscIQiBnTfF%2FnUXB4qdjOq1isVQwfYFA%2BRzpyy6SKeKv2CKZt%2Bkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b4513d7292b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/img/999.png | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/img/999.png IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/999.png HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QwWucCW8ZlZRZbJu1IC74jshObpoAIVIWWuloB%2FdXOqNhGxJjQ1IyDQaRsklOok4fHIW%2B0NRUBSRourVpyNtRvRj8wCTBU8OvyzA7ZN2TKB6lpiLGkdtmEp7VWDDpl1uB42JXnFzvu9sIm%2FV6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b4514d7792b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/edk-giris.1.9.4.js | 31.3.2.127 | 200 OK | 7.9 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/edk-giris.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8451), with no line terminators Hash447c3094f53b0888003cd725165d7dbb 4c98fdaa2b6fc75bc38a30f513e4b75cc0c34922 47e734173976def96c20978e0533f3a1ce692fb3e65dca023c2ceff5d1484ade
GET /themes/izmir/js/es/edk-giris.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Thu, 28 Dec 2023 12:47:46 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6d6edef2d761f4b9997e0a40db7ffc8524ea992bbddbd8a627d6924f3aa470e750c0ec296295836618037b4e86893f579d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 1c8d39d738c61dd8c448cd4e56fd2bdd
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js | 31.3.2.127 | 200 OK | 1.8 kB |
URL GET HTTP/2cdn.e-devlet.gov.tr/themes/izmir/js/es/common_messages_tr.1.9.4.js IP31.3.2.127:443 ASN#21245 Medianova Internet Hizmetleri Ve Ticaret Anonim Sirketi
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerGlobalSign nv-sa Subjectcdn.e-devlet.gov.tr Fingerprint99:BC:AD:90:EC:BD:5E:47:7A:D9:3F:A0:3C:EB:18:1C:E0:7B:38:E3 ValidityThu, 22 Feb 2024 13:07:20 GMT - Tue, 25 Mar 2025 13:07:19 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1792), with no line terminators Hash890a164bf0ccd6c76c43eba5300a69d1 30dee88a93119ae60dae9cb00bb9a19331f4d2cf 0887cd200549d51fd5a1a4760a9569df69b677afff910bf60baa4ebb8e59414c
GET /themes/izmir/js/es/common_messages_tr.1.9.4.js HTTP/1.1
Host: cdn.e-devlet.gov.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:34:44 GMT
last-modified: Fri, 29 Sep 2023 12:10:52 GMT
expires: Tue, 16 Jul 2024 04:34:44 GMT
cache-control: max-age=7776000
vary: Accept-Encoding, Accept-Encoding, User-Agent
set-cookie: TS01551c83=015c1cbb6dc9d825c935b163ecf75a6e50d6d89c11f47ecf699e69d71b023bf957753c7628aa7d18857b9b21e0570e28b02687210d; Path=/; Domain=.static.turkiye.gov.tr
x-mserver: DE-372
content-encoding: gzip
server: MNCDN-2133
x-edge-location: DE-372
x-mnrequest-id: 02661236ca872d4ab0fc0f592a82dd88
access-control-allow-origin: *
content-type: application/javascript;charset=UTF-8
x-cache-status: Edge : HIT,
X-Firefox-Spdy: h2
|
|
| www.uzlasmamaliyedosya.com/sorgu.php/path/img/favicon-196x196.png | 172.67.198.72 | 200 OK | 18 kB |
URL GET HTTP/3www.uzlasmamaliyedosya.com/sorgu.php/path/img/favicon-196x196.png IP172.67.198.72:443
Requested byhttps://www.uzlasmamaliyedosya.com/sorgu.php/ CertificateIssuerLet's Encrypt Subjectuzlasmamaliyedosya.com Fingerprint4A:28:6B:94:29:5C:80:A8:AB:7B:E9:61:5E:32:16:AD:CB:87:78:D4 ValidityMon, 15 Apr 2024 15:41:21 GMT - Sun, 14 Jul 2024 15:41:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - e-Devlet |
GET /sorgu.php/path/img/favicon-196x196.png HTTP/1.1
Host: www.uzlasmamaliyedosya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uzlasmamaliyedosya.com/sorgu.php/
Cookie: PHPSESSID=bth069rm3uhg3e1l0b2pfc6vam
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:34:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h0zMDKFtiwzMD5ibpCxMYAg%2FZRUlQFTVKVJZleRl4k9vQRAXKv%2FbejWnTu9Y3VZjDsqB%2B7YcEVURIXB6%2BsZi2AyHmEyHTBFGm%2BHez9OfLAzRjQDAU7MvCub3bKoddcSJZKCcxobQgVyjFJcKHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8759b45679be92b8-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|