Report - www.prbyeniyilhedyesi.com/

Report Overview

Visited public
2023-12-11 03:41:44
Tags
URL
www.prbyeniyilhedyesi.com/
Finishing URL
www.prbyeniyilhedyesi.com/
IP / ASN
172.67.153.112
#13335 CLOUDFLARENET
Title
İnternet Bankacılığı - İş Bankası

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-10 10:24:36	463 B	2.4 kB	104.17.24.14
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-12-10 05:09:28	513 B	36 kB	151.101.129.229
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-10 05:10:09	876 B	63 kB	151.101.194.137
www.prbyeniyilhedyesi.com	unknown	2023-12-02	2023-12-10 19:32:13	2023-12-10 19:32:13	9.6 kB	917 kB	104.21.74.26

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank
2023-12-10	medium	www.prbyeniyilhedyesi.com/	Garanti Bank

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	From	Size	First Seen	Last Seen
	cdnjs.cloudflare.com/ajax/libs/jquery.mask/0.9.0/jquery.mask.min.js	ScriptElement	3.8 kB	2023-03-26	2025-05-10
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery.mask/0.9.0/jquery.mask.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 05:42 Last Seen2025-05-10 22:52 Times Seen25 Hash 82505c3840658919ab56dd3c80204919 53ac516b948804bf2ee7582c9a2ea6fc93367eaa 41193718966d1acdb3072ba605cd4e775270c903bfbbcb4d6abd81f878c23155 Loading...

	code.jquery.com/jquery-3.5.1.min.js	ScriptElement	90 kB	2023-03-07	2025-05-12
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-12 21:22 Times Seen109059 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.prbyeniyilhedyesi.com/	ScriptElement	0 B	0001-01-01	2025-05-12
Pretty URL www.prbyeniyilhedyesi.com/ IP 104.21.74.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-12 21:23 Times Seen4666668 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.prbyeniyilhedyesi.com/	ScriptElement	0 B	0001-01-01	2025-05-12
Pretty URL www.prbyeniyilhedyesi.com/ IP 104.21.74.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-12 21:23 Times Seen4666668 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (20)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery.mask/0.9.0/jquery.mask.min.js

104.17.24.14

200 OK

1.4 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery.mask/0.9.0/jquery.mask.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (547)
Size
1.4 kB (1423 bytes)
Hash
82505c3840658919ab56dd3c80204919
53ac516b948804bf2ee7582c9a2ea6fc93367eaa
41193718966d1acdb3072ba605cd4e775270c903bfbbcb4d6abd81f878c23155

HTTP Headers

GET /ajax/libs/jquery.mask/0.9.0/jquery.mask.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 1423
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-ed4"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1640463
expires: Sat, 30 Nov 2024 03:41:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hGvZLCBO%2BBSBfFR37mz1WSS3nI65jgORwOO8hnQVCIvbaOuEQMtEQZO0FxNgBXf3CTbCAdG26w4QnViwC7%2BvhnE7BLMXcSLl2b2QcCdmNKDLHm9jUxAWBRPBJHIdLjF0FkLr4nii"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 833ab613ee605685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css

151.101.129.229

200 OK

35 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65342)
Size
35 kB (34860 bytes)
Hash
fe7fdfec700d100dc745dc64d3600cb2
b231651e0fd68bbd8758189fbd3642c462d34fa6
7f1d37f0d90b6385354c2ac10e2bb91563c46bd7a266ed351222ebcac8496c2a

HTTP Headers

GET /npm/bootstrap@5.3.0/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.3.0
x-jsd-version-type: version
etag: W/"38dd2-sjFlHg/Wi72HWBifvTZCxGLTT6Y"
content-encoding: br
accept-ranges: bytes
date: Mon, 11 Dec 2023 03:41:19 GMT
age: 11389571
x-served-by: cache-fra-eddf8230088-FRA, cache-bma1654-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 34860
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 11 Dec 2023 03:41:19 GMT
age: 3811392
x-served-by: cache-lga13628-LGA, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 585252
x-timer: S1702266079.401985,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

www.prbyeniyilhedyesi.com/logosFibaBig.png

104.21.74.26

200 OK

91 kB

URL GET HTTP/3
www.prbyeniyilhedyesi.com/logosFibaBig.png
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type
PNG image data, 986 x 177, 8-bit/color RGBA, non-interlaced - data
Size
91 kB (91255 bytes)
Hash
8dc687b3349778f13e9e7613f456da93
08ec2d0c1911bbe595751eb64f23a155a00825ad
df26df57f767d53d12e58814060ee289b2536552788c05fff63ff4b9ba7d970d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

GET /logosFibaBig.png HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: image/png
content-length: 91255
last-modified: Wed, 06 Dec 2023 15:56:48 GMT
etag: "657099c0-16477"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q%2BvEqviMzlbQuzEHzgJiXP7XPZHdM58wzX08gk4i6ht%2BqUc2xE7IbSNMPr4%2FvVxCb2Cgj1u1D3rsj8%2BCM7%2FyEMyIAslRqE0vzjBqHdsvmhscPVNqM%2FmuD214wZPeXLRIYzzg3CrmQpcUg%2FAZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833ab613cc6f0b61-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-3.5.1.min.js

151.101.194.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 11 Dec 2023 03:41:19 GMT
age: 3811392
x-served-by: cache-lga13628-LGA, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 20, 585253
x-timer: S1702266080.597063,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

www.prbyeniyilhedyesi.com/SommetRoundedRegular.otf

104.21.74.26

200 OK

805 kB

URL GET HTTP/3
www.prbyeniyilhedyesi.com/SommetRoundedRegular.otf
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type
TrueType Font data, 19 tables, 1st "GDEF", 50 names, Microsoft, language 0x409 - data
Size
805 kB (804612 bytes)
Hash
32204736a4290ec41200abe91e5190d1
26752c31bd3be24b0608ee27ac8c9a9a27245268
cf3cb43b0366e2dc6df60e1132b1c9a4c15777f0cd8e5a53e0c15124003e9ed4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

GET /SommetRoundedRegular.otf HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/assets/css/ajax.css
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: application/vnd.oasis.opendocument.formula-template
content-length: 804612
last-modified: Thu, 30 Nov 2023 19:07:24 GMT
etag: "6568dd6c-c4704"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQwKx7EJz8Stnw%2FGSmwiP7EUGyhaLVxquBJIaL3ssOMpiitfUBZCNnZI1y1VOOBi2tc1C4sffL%2FW6JUxl6mle3cTOiaRUbImaOZFXqD%2FTpeD6ewSBDvGP592s8cezUKlME7BAcNzPnlV13Cg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833ab6153ce30b61-OSL
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:25 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q38QswX9mPNtbc2XVFYQ7upqCwBdWz2jiE%2Bc6g%2Fkj9AP9Hvpy6sKP0HnabToXTrhyX%2FocWvZVlW4eK%2FslXbfGSWSTP2BXxSyttkzGY8q4cwKkU6PN8nlcDXD20NLwf9ZyvItWx0yKXfPjkgT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab63b7ace0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dwh4HUVer1SZzKmrn%2FeHVJ194n3OvrfPCREJtaJNGaoArLJ%2BZwO3d9MbPZ08pp%2BKwds8UaC26YPScspdJ22dQjA%2F4cRc3hSMcMagfEOqysz9s2Oj3UI9i7Fnlyu3yQwt7vyLzH2iRbj7lWJh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab615fcfa0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:21 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEm%2F77SP5Z%2FC7LMtutF4qThTmjlhHMtKjoeWdY1kjjoMU3SRcTFX9M7jkGgyH%2FLH%2FzZPzJN4Zh7e%2BzJad8JuXGGWo2CR8eEsPFChlWtB9qjE%2FOwqUoA2gTK1F%2BWeXv2D6MSMHp4sZvA%2Fk%2Fxw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab6227e910b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:23 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHhW8Kkxwrz4oXww6k%2BGdYezqfZ1fRaZLUoBGwqI93MV0zLmAd2weHkhVHqtD20GbH9%2BlTHEqN%2BjnfKMw8Rg04B4MnvOxX7MF7z%2BgYvswDI%2FNgfDHbgWzaK2vipui%2Bpz8b5FsqWS6606285u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab62ef8ef0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:27 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UTv7GkCmKKIgplqy%2Bpx%2Bd2NJAzYzfrwPGD76%2BfbCzI%2FCEIFJa9eKAEVS%2BMzDi2ApjlCEFhe2QVLTeJ9m6D5%2F7jKSXD%2FxrP9k3kglaKGdlLLs8WmMG95tTuPoL8YQM%2BkvIiP9SBW4RCZ3OAY1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab647fd1c0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:29 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uy%2B%2B%2FguU0MzYqUIfGr0M8Eo90XjtYf5cSNwnITf3IzN%2Fs7RlfJiE9wNKqeKW22XgOsYY899zQX4UW0ItFNJv49djP4ZprF6Eq3l0FsMUgUKeDsR3RquQhy3GW3Qy0MHmrTr6LTBiNa3SLdJM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab6547f430b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:35 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CUQtdamtfBB8Bxjx3WKjCFC1O5X6WQEj44wL%2B8BT8%2BwgG3QnwhLgkvKdUjd5YHXQPaluHbAHOybOFoB31HkKnWbKa2aPpIhed8hSr73ju54%2FGwgqhX90gumLWnG5Hcqgv06JgaoIgqSGGtWk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab679fdac0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:37 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=981qnuLApyhlMVApuo6RZGT34XyQ1B0wmujLqCvamA%2B03qcsJpM3aHW3TkH83RkolAvj9RsMjyrC4zEoj4pDnDM%2FNFipNJJIPz1rwHpnvFJ0mC2p453fBTDE8z6t98D00uX8XD3jTmC%2BCOcG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab6867f510b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:39 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M6lcN8LCxgETr2kiX2sfwt6bWd%2Funb%2FZQGomK1bqzo0X%2B2OJkW5DQtfmN%2BLTF9RH7n97rdaCnt604h%2BVUjjElXJI%2BG2c2pfzFs4IPtomHwy6%2FXjBDzLa1FrTUNYLzESgFJGyYYU%2FkfQbSeLD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab692f8c40b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/favicon.ico

104.21.74.26

404 Not Found

3.1 kB

URL GET HTTP/3
www.prbyeniyilhedyesi.com/favicon.ico
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, Unicode text, UTF-8 text, with very long lines (3350), with no line terminators
Size
3.1 kB (3103 bytes)
Hash
64682300618a306158a6e45ce110ff93
f579eeac9d026802f8408501b9359ffde3b87378
ccde7418961066f8a531da8ca0077be195eabd42c0e082c462eac336b55a598d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Mon, 11 Dec 2023 03:41:20 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FlpuPWOONTNZnUvgWDfw5%2BJ7IS6zeXNe%2FvXQ7BS%2BD2s2B6KvwR1HJau8hmZzBbQMPEh9fgpEu1vnowiyC2jS%2Ba3rcep36OiLalYJhrXdRGYHV11YAddv6qAmLofZU2NKLoIWT4%2FVp106Nb6N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833ab6176d200b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:31 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z6Mq2XRY4lRmmg54yZhdrnRNE%2FcFumpl9hkEZO1Ls6pB7ljiHy5pURI0hANkrtNLONuQM8Bq5XW3tz2h06iOMIgLVI6KKCVj39nua78c95dS4abomhLxOu849x203plUdL3jYporf%2FwuQ9zK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab661094b0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/process

104.21.74.26

200 OK

0 B

URL POST HTTP/3
www.prbyeniyilhedyesi.com/process
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

POST /process HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 43
Origin: https://www.prbyeniyilhedyesi.com
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:33 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NCp1g7rwru0dvf5hsFrkO8DiK7MWV2gY%2FqSoJ4wySYFpaLMPyyBl3BpHIJUHApcTNt9ezti8T54JhdO6ycznus1EnrInYSoI9UfZ6BPW7edzuZ8IcNEmGUNGB%2FgKT2oBNF2xo1vMXNgfUjXl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab66d7b4a0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.prbyeniyilhedyesi.com/

104.21.74.26

200 OK

3.1 kB

URL User Request GET HTTP/2
www.prbyeniyilhedyesi.com/
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type
HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - HTML document text - exported SGML document, Unicode text, UTF-8 text, with very long lines (3350), with no line terminators
Size
3.1 kB (3103 bytes)
Hash
64682300618a306158a6e45ce110ff93
f579eeac9d026802f8408501b9359ffde3b87378
ccde7418961066f8a531da8ca0077be195eabd42c0e082c462eac336b55a598d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

GET / HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.30, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=olBbScTHChkKhwQqhdZC%2Bd%2BE8rTAVvWVJ1cHw6Ty7%2BPlmZcRX1UcndAOoXLM6b%2BRRhjpK6gfXiZC8a%2F3FGXMpLjs%2BZIk7puneMTFsK6deKn756r9S2BDeISrOlkoW3KMe67jGV5DTs6N43OH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 833ab60f4f965689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.prbyeniyilhedyesi.com/assets/css/ajax.css

104.21.74.26

200 OK

3.7 kB

URL GET HTTP/3
www.prbyeniyilhedyesi.com/assets/css/ajax.css
IP
104.21.74.26:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.prbyeniyilhedyesi.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectprbyeniyilhedyesi.com
Fingerprint23:91:02:D3:73:40:5D:6F:CF:C7:4D:7A:88:EA:56:0C:47:64:7A:CD
ValiditySat, 02 Dec 2023 16:11:12 GMT - Fri, 01 Mar 2024 16:11:11 GMT

File type
ASCII text, with very long lines (4055), with no line terminators
Size
3.7 kB (3661 bytes)
Hash
4716b64aa2b761347cc7d19a331ef980
a9137ccf170597a29188c47f452a5c369b58ede8
944bcf5d1d3cf239866a5138502c4691a00e623174d2c9a77b48f60a09484db8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Garanti Bank

HTTP Headers

GET /assets/css/ajax.css HTTP/1.1
Host: www.prbyeniyilhedyesi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.prbyeniyilhedyesi.com/
Cookie: PHPSESSID=aig5vdgila5qlvq5jbqqpepkj8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Mon, 11 Dec 2023 03:41:19 GMT
content-type: text/css
last-modified: Wed, 06 Dec 2023 16:00:16 GMT
etag: W/"65709a90-e4d"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gKQs4Zwgarn%2BmrT4B8V3qaGUVczo%2BmERPFt6AkQ8soJbBfzS2XKgbe8aWgOe%2FMddAsZwx1Zed0rCwTIynCVFiJV0gXb%2BBwoSuFDNBB7CkjUgjOIXsZ%2BOC1CNu7rb3%2F48EsFKmdwT47BO5noP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 833ab613cc6e0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (20)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/2