| dhl-tracking-au.blogspot.com/ | 216.58.207.193 | 200 OK | 15 kB |
URL User Request GET HTTP/2dhl-tracking-au.blogspot.com/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18 ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (5475) Hashc0cb74eeb1b061d5b84e79f47665ebf8 064cfb2a1d39e01548568872d7514ef93231f74a 733dc728622542b22b21b9a60fd7d1f7c4e908e099676ea6a34cb003aafa45c4
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET / HTTP/1.1
Host: dhl-tracking-au.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 29 Mar 2024 05:09:02 GMT
date: Fri, 29 Mar 2024 05:09:02 GMT
cache-control: private, max-age=0
last-modified: Thu, 16 Nov 2023 11:20:08 GMT
etag: W/"5261809e6fb9ceb8754ecbc387e8cf8fbe73ce385f6c65bba74692ea31a34a81"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 14923
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dhl-tracking-au.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/3dhl-tracking-au.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18 ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /js/cookienotice.js HTTP/1.1
Host: dhl-tracking-au.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 29 Mar 2024 05:09:03 GMT
expires: Fri, 05 Apr 2024 05:09:03 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 21:55:35 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| dhl-tracking-au.blogspot.com/responsive/sprite_v1_6.css.svg | 216.58.207.193 | 200 OK | 2.2 kB |
URL GET HTTP/3dhl-tracking-au.blogspot.com/responsive/sprite_v1_6.css.svg IP216.58.207.193:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18 ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT
File typeSVG Scalable Vector Graphics image Hashd4dcfc8144f556815c7a1d84ed4e959e 22088bd6cdf970dcf7bfab9a74a4768548ca8890 73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: dhl-tracking-au.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
date: Fri, 29 Mar 2024 05:09:03 GMT
expires: Fri, 05 Apr 2024 05:09:03 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 21:55:35 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js | 142.250.74.67 | 200 OK | 3.5 kB |
URL GET HTTP/2www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js IP142.250.74.67:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (10473) Hash158013acb7e269a3dbe18de855656c97 08fa355584fc849539b3f04589ae6f61eb4a7d98 92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 29 Mar 2024 05:09:03 GMT
expires: Fri, 29 Mar 2024 05:09:03 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhl-tracking-au.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:50 GMT
expires: Fri, 28 Mar 2025 17:37:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 41473
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| resources.blogblog.com/blogblog/data/res/2142559947-indie_compiled.js | 142.250.74.73 | 200 OK | 47 kB |
URL GET HTTP/2resources.blogblog.com/blogblog/data/res/2142559947-indie_compiled.js IP142.250.74.73:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT
File typeJavaScript source, ASCII text, with very long lines (2303) Hashbe483be2ec35ca06090272f70633660a 03f880619ef1c6e1a384ee5c4751f012f76392da 1adc9357001b25032767a009129718df5ec6b17ece26b14206d8f9f1baae2779
GET /blogblog/data/res/2142559947-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47386
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:40:52 GMT
expires: Thu, 04 Apr 2024 17:40:52 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 15:57:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41291
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/1380559502-widgets.js | 216.58.207.233 | 200 OK | 52 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/1380559502-widgets.js IP216.58.207.233:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hashbaadbe005a81e05b72ff9f13b41ca2db e0a0da83e1907d1b174397729cb8b743e83d41ba 0016acef19c1c4fed5f13ac338c5f3b2738b6873bceb66bc824c821623fa7bac
GET /static/v1/widgets/1380559502-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51645
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:29:47 GMT
expires: Fri, 28 Mar 2025 17:29:47 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Mar 2024 23:23:21 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dhl-tracking-au.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:29:44 GMT
expires: Fri, 28 Mar 2025 17:29:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 41959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/img/blogger_logo_round_35.png | 216.58.207.233 | 200 OK | 2.5 kB |
URL GET HTTP/2www.blogger.com/img/blogger_logo_round_35.png IP216.58.207.233:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT
File typePNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced Hash838622483cbfed35380b4705f19d7cca 7de684136affc969a24d61927afc18905cf2fc36 183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:21 GMT
expires: Thu, 04 Apr 2024 17:37:21 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 11:54:58 GMT
content-type: image/png
age: 41502
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 | 142.250.74.97 | 200 OK | 228 kB |
URL GET HTTP/2themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 IP142.250.74.97:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint45:D1:C0:2D:E8:A2:E4:6C:89:C5:B6:FE:AE:99:83:B1:CA:66:17:CF ValidityMon, 26 Feb 2024 08:17:52 GMT - Mon, 20 May 2024 08:17:51 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Sunset afterglow and twlight dunes in White Sands National Monument, software=Picasa], baseline, precision 8, 1600x1067, components 3 Size228 kB (228521 bytes) Hashe66ef1f4c654be20558150214aa2b85a ad1dfbefad9a21e48aeeac1bae9f8a5b8ea1ef3c 6a5482e0dc4e77a6be20281b13d7ef4d8b67521e73b66bc633ea4e4242934be9
GET /image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sat, 30 Mar 2024 05:09:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Fri, 29 Mar 2024 05:09:03 GMT
server: fife
content-length: 228521
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| dhl-tracking-au.blogspot.com/favicon.ico | 216.58.207.193 | 200 OK | 412 B |
URL GET HTTP/3dhl-tracking-au.blogspot.com/favicon.ico IP216.58.207.193:443
Requested byhttps://dhl-tracking-au.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18 ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel Hash59a0c7b6e4848ccdabcea0636efda02b 30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340 a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /favicon.ico HTTP/1.1
Host: dhl-tracking-au.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://dhl-tracking-au.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 29 Mar 2024 05:09:03 GMT
date: Fri, 29 Mar 2024 05:09:03 GMT
cache-control: private, max-age=86400
last-modified: Thu, 16 Nov 2023 11:20:08 GMT
etag: W/"5261809e6fb9ceb8754ecbc387e8cf8fbe73ce385f6c65bba74692ea31a34a81"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|