Report - pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html

Report Overview

Submitted URL
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
IP
104.18.3.35
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-16 16:17:12
Access
public
Website Title
DHL
Final URL
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Tags
dhl logistics phishing suspicious
urlquery detections
Phishing - DHL
Suspicious - Suspicious Javascript code

Detections

urlquery
41
Network Intrusion Detection
0
Threat Detection Systems
78

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-04-16	458 B	31 kB	216.58.207.202
ocsp2.globalsign.com	1544	1999-04-19	2012-05-23	2024-04-16	1.8 kB	10 kB	151.101.194.133
www.ax4.com	unknown	2000-03-17	2013-09-02	2024-03-25	4.6 kB	256 kB	194.153.114.214
aus5.mozilla.org	2548	1998-01-24	2015-10-27	2024-04-16	512 B	1.2 kB	35.244.181.201
pub-867982fc061e46f293e0759a4cd22332.r2.dev	unknown	2022-08-23	2024-03-23	2024-03-23	20 kB	5.8 MB	104.18.3.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	DHL Airways, Inc.

PhishTank

Scan Date	Severity	Indicator	Alert
2024-04-01	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed
2024-04-16	medium	pub-867982fc061e46f293e0759a4cd22332.r2.dev	Sinkholed

ThreatFox

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	1.8 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash dcf26447eb10b3e0774127892d5ae68f eb123557b8a60762fb2ee52db776bfbf6d2f2a49 7ad840d3a568ee1b1517a4b72fe8292d062bbdb9543a04d816f8252a1b4d80a6 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	302 B	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 786dc783895e7a34284f155136367b0e 5cbf3e2ba1f8f05def2d68875f55e5f64b0dc306 cc4bb52c575b48c6bae24b042dc7f3db25e199022de4b322033b481e269f1a76 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	3.8 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 0a445d5a07542d4de420d8e4ea0fc3eb 83ec544696cb73f8cd749736f3e749487a172e17 13e00d8cd8e7a010139a8a9b28af97a441c4aa7747b1edba9d4b46ec6626083e Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	3.9 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 25249243056bf132bf4097dc6271ac61 824bed3f3d0d7beb0c6ff547ce737bac482c430f 129b653d5e7756fb78f3d4e3bf10aa1c9ad7d48f37e489ee9a56a03984672daf Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	372 B	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 880214aa7ce2a83e142201566ae56078 4df7bea5c4afa1168f3f7dcd16e9fb323c184612 4d4ee116c8838fe69f02ea2feebedd55f17efd4bec01b460be7c3defc963fb2a Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	86 kB	2023-03-07	2024-04-29
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-29 21:24:21 Times Seen386224 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	1.8 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 0b753e82c9fa24e68c2715ae1a01f793 dd8b967eec1756d55a5c75f7d50f655b9adb9709 41a56697b1d8c16428b94edd9456a6d441d325bc26956ed26aeec82f5349bae6 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery.cookie-1.3.1.js	2.1 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery.cookie-1.3.1.js IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:59:34 Last Seen2024-04-28 19:09:04 Times Seen97 Hash 86bfb3ae149e79524eafbcd1cd0a613a 4c7b840648637688378d746f24037cfdc7a5d2d0 5f8d4cdb53aa201c8dd93712d1342157480d75d03859ea50656ab9ab3d298d30 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	2.5 kB	2024-03-21	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-21 06:47:34 Last Seen2024-04-28 19:09:04 Times Seen7 Hash d7cfc44e7da4da49992c2a9eb241eca8 6562a33165c77215d76213601701ef9214b5bc23 6d48c5af8ed735db8a16a911aa1d8173c9f5c475bf6e19e0535d8153d540807e Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	752 B	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 4054633d8f648ddfff136ce0837dc257 d713923ee2acaf010b1ee2396d1c98ee83400a81 eefc9a9074e044d07786af82605ea6aeabf4bf7830247df9c2eef6137feddefd Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	1.4 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash ddd801514d0ae414c0e3036313e6d567 130e2caafb3bc9b9254a3cee2babde8b45eb4726 e7e29684005e586533e23ed90159e6c03f4cb64b9c40b155bbb5a56860e98cef Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/meBubbleControl.js	1.6 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/meBubbleControl.js IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen25 Hash 754f18c0dbc71806645cb708917369a3 85aa4fe203745bb20e253c6c85ca80754a5185c5 ded9fbf851413bb4d26edd4a3cb590c9410642aa74e089076061bd55a18fa458 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery-1.10.2a.min.js	95 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery-1.10.2a.min.js IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen27 Hash 469f25f773dff2b4a1e56aaca7051d2c e78d76dd14baa99e68e225195de4338fe7614244 810e8974906038711fc2830b5e9f70b22f75e345c3e92a402186c3f245b2885d Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	713 kB	2023-03-07	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash eda738411688674d65b6795d09f40d33 7b9527f44d28ada37324ce1360b342bc38d2bc61 28326b3ce3539e989d2af39eb6eaaec01ac6b357392b6c94d19c21c6b90d2311 Loading...

	pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html	230 B	2024-03-21	2024-04-28
Pretty URL pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html IP 104.18.3.35 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-21 06:47:35 Last Seen2024-04-28 19:09:04 Times Seen7 Hash 6bbaf050f898102f34440d739ccdc891 e2935634757e3966a0b30b374c1549e0b766fb9f 45ecd29653ee63bee41f93d85c5e15f341af4e9e28260e2d7aad48a1af0ccba0 Loading...

		Size	First Seen	Last Seen
	#1 Write - bba43a1fef5d0cbf78e5720ebaec871d	238 kB	2023-03-07	2024-04-23
Pretty Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-23 18:53:32 Times Seen11 Hash bba43a1fef5d0cbf78e5720ebaec871d ef177c31e4d4beeda8782a66d783de1035b5c0d6 be024854c986b1b2d2d89da32e3167d2334c72ae1bcbaf93a2e6ac8730b59949 Loading...

	#2 Write - 5532c8304e773d441a31d44d405d4c62	572 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 5532c8304e773d441a31d44d405d4c62 4b2c78d04adeddb151fe28f43c7a3ae4a79d35fe a05ecdf3599bb8b7d7a846a38232048bc9753a712ab4fedf40203aa322cc90cf Loading...

	#3 Write - 31199b4a12f8407768fbee47706a3487	1.2 kB	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 31199b4a12f8407768fbee47706a3487 c3321471f3dfc63f3c8516317d979f1344cf719f 4d83664118bfd9e600112d82752f207af71265032c66df86fc19bdf46a871f15 Loading...

	#4 Write - 2ea59f0dfca9c6427e51d1b8a4e0ca82	1.3 kB	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 2ea59f0dfca9c6427e51d1b8a4e0ca82 acd3cc36afdbd50c57173d664f4e889561837839 097dc861bb964fc47961a79fc0acdb1c1f6bb67537f48876bd56181c43de17c8 Loading...

	#5 Write - 63e0a4083c3feee58b9bfb0e4c947c40	110 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:37 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 63e0a4083c3feee58b9bfb0e4c947c40 8c9d1e0e3817780b36862d898c09ec05f3c5c162 5f95e5468552e19b1eeed5d6e93f0393642450549adb1e40e7724becf5dcdff1 Loading...

	#6 Write - 84f667deb00523fda61f7f5374486908	578 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:38 Last Seen2024-04-28 19:09:04 Times Seen12 Hash 84f667deb00523fda61f7f5374486908 868df5ce4cfa9c5a7f86fda9ed3b6fc71432a998 66ba0d1e1858aaf18dbce29acf880100b8c1e2108f7e5a3c5f59b908a27e4d2e Loading...

	#7 Write - d01a0a42c380f3ce8f454c7c4dd8f9e9	834 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:38 Last Seen2024-04-28 19:09:04 Times Seen15 Hash d01a0a42c380f3ce8f454c7c4dd8f9e9 b125d603f8627823052657734e70052be065399b 76a3fbbcb14197609e76d22849a43b8bd0cce76bb75f97da6fa5281292bd0c7c Loading...

	#8 Write - 719af045d348e29978c9282f7ed59685	463 B	2023-03-07	2024-04-28
Pretty Observations First Seen2023-03-07 14:51:38 Last Seen2024-04-28 19:09:04 Times Seen15 Hash 719af045d348e29978c9282f7ed59685 a14073df31ebfc33d3ef2f385005de831adc46be 58e72f16f29e086c0008d5f29b0c0ccdf7b717c8b990b17c79229a5a549d22d7 Loading...

HTTP Transactions (54)

URL IP Response Size

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html

104.18.3.35

200 OK

731 kB

URL User Request GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (47745), with CRLF line terminators
Size
731 kB (730746 bytes)
Hash
64a9ec6e22d87dd8dcd6cfa0113b02cb
cc01a862c8da5c5649c1731e670d3b813509f3f9
fa3872f428a362f5e08246a2df3ac2c8e0d59e83345ad6d938642ecefdb08ca4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	DHL Airways, Inc.
PhishTank	phishing	Other
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/index.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:44 GMT
Content-Type: text/html
Content-Length: 730746
Connection: keep-alive
Accept-Ranges: bytes
ETag: "64a9ec6e22d87dd8dcd6cfa0113b02cb"
Last-Modified: Fri, 08 Mar 2024 23:08:16 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b465c41712e-OSL

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

216.58.207.202

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
JavaScript source, ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:38:23 GMT
expires: Fri, 11 Apr 2025 17:38:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 427102
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/meBubbleControl.js

104.18.3.35

200 OK

1.6 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/meBubbleControl.js
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text
Size
1.6 kB (1591 bytes)
Hash
754f18c0dbc71806645cb708917369a3
85aa4fe203745bb20e253c6c85ca80754a5185c5
ded9fbf851413bb4d26edd4a3cb590c9410642aa74e089076061bd55a18fa458

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/js/meBubbleControl.js HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/javascript
Content-Length: 1591
Connection: keep-alive
Accept-Ranges: bytes
ETag: "754f18c0dbc71806645cb708917369a3"
Last-Modified: Fri, 08 Mar 2024 23:08:17 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b495aad712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery-ui.structure.css

104.18.3.35

200 OK

16 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery-ui.structure.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (2467)
Size
16 kB (16398 bytes)
Hash
8e0e59ed1ad5d878f5cc9227022bdc15
65b0f95dd4189ab1bbb1e873ceef4e5f5e621b98
9580877bd87bfb498917f865f1468881e4ac0bae356cc19738e2df78aa38d781

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/jquery-ui.structure.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 16398
Connection: keep-alive
Accept-Ranges: bytes
ETag: "8e0e59ed1ad5d878f5cc9227022bdc15"
Last-Modified: Fri, 08 Mar 2024 23:08:17 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b49a987568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery-1.10.2a.min.js

104.18.3.35

200 OK

95 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery-1.10.2a.min.js
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text, with very long lines (32072)
Size
95 kB (94966 bytes)
Hash
469f25f773dff2b4a1e56aaca7051d2c
e78d76dd14baa99e68e225195de4338fe7614244
810e8974906038711fc2830b5e9f70b22f75e345c3e92a402186c3f245b2885d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/js/jquery-1.10.2a.min.js HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/javascript
Content-Length: 94966
Connection: keep-alive
Accept-Ranges: bytes
ETag: "469f25f773dff2b4a1e56aaca7051d2c"
Last-Modified: Fri, 08 Mar 2024 23:08:16 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4999e956ca-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery.cookie-1.3.1.js

104.18.3.35

200 OK

2.1 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/js/jquery.cookie-1.3.1.js
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JavaScript source, ASCII text
Size
2.1 kB (2142 bytes)
Hash
86bfb3ae149e79524eafbcd1cd0a613a
4c7b840648637688378d746f24037cfdc7a5d2d0
5f8d4cdb53aa201c8dd93712d1342157480d75d03859ea50656ab9ab3d298d30

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/js/jquery.cookie-1.3.1.js HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/javascript
Content-Length: 2142
Connection: keep-alive
Accept-Ranges: bytes
ETag: "86bfb3ae149e79524eafbcd1cd0a613a"
Last-Modified: Fri, 08 Mar 2024 23:08:16 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b49a971568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.dialog.css

104.18.3.35

200 OK

1.2 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.dialog.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
1.2 kB (1202 bytes)
Hash
c19abc6be81fd9a1683bd742a124a0bb
54693d2686e8f7d7828eeb0c9379d58faf60a38f
943c2e14a47d48f719dd2fb24a00e94c4d01da4eb8bda16e1af2cf7835668b91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/axit-jquery.dialog.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 1202
Connection: keep-alive
Accept-Ranges: bytes
ETag: "c19abc6be81fd9a1683bd742a124a0bb"
Last-Modified: Fri, 08 Mar 2024 23:08:18 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b49bfbbb4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery-ui.theme.css

104.18.3.35

200 OK

15 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery-ui.theme.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (315)
Size
15 kB (14886 bytes)
Hash
4d2ddda51e204777f348321f3b783d7d
0dff8a05e7c814557545caf3c991b667065b3d34
dda945184be467c81daf5f61a0a4b5d496ad2efac64a3bb653709ab0968ca478

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/jquery-ui.theme.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 14886
Connection: keep-alive
Accept-Ranges: bytes
ETag: "4d2ddda51e204777f348321f3b783d7d"
Last-Modified: Fri, 08 Mar 2024 23:08:18 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b49bbe756c5-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.datepicker.css

104.18.3.35

200 OK

735 B

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.datepicker.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
735 B (735 bytes)
Hash
9fce8a16f48b4236437b505133b030fb
78c04588784e08bf12bbb284c755b16b23111101
4759cfcc0130c30242599d2c6f0654c6afaa912c0d344045560be5d4d4a71cc2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/axit-jquery.datepicker.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 735
Connection: keep-alive
Accept-Ranges: bytes
ETag: "9fce8a16f48b4236437b505133b030fb"
Last-Modified: Fri, 08 Mar 2024 23:08:17 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4a9d13712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery.menu.css

104.18.3.35

200 OK

2.6 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/jquery.menu.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (350)
Size
2.6 kB (2618 bytes)
Hash
db9ca0e04d16aabad525fdcdc1433b2f
2445fef08ba947925cc04f5d0d1fb5395446129c
7bd37a4ac76d4b18e613839edc48fdb42ab614c9cfb033db9c0dcd771baa8539

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/jquery.menu.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 2618
Connection: keep-alive
Accept-Ranges: bytes
ETag: "db9ca0e04d16aabad525fdcdc1433b2f"
Last-Modified: Fri, 08 Mar 2024 23:08:18 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4afc8c56ca-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.autocomplete.css

104.18.3.35

200 OK

1.5 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/axit-jquery.autocomplete.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
1.5 kB (1520 bytes)
Hash
5a9540a3b2e9212725807d7db2892535
3d73351e65790c5c3466c1fea433931c36c8ed5e
3784a28b844690c4e7d766cc992ac2be98e73d9972313661a658c7838801e59f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/axit-jquery.autocomplete.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 1520
Connection: keep-alive
Accept-Ranges: bytes
ETag: "5a9540a3b2e9212725807d7db2892535"
Last-Modified: Fri, 08 Mar 2024 23:08:17 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4a9b2f568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/login.css

104.18.3.35

200 OK

2.7 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/login.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
2.7 kB (2656 bytes)
Hash
913a0313d48d224b01040841cfd53aa5
e5672e0fc065bc942e56df31392ab1f82a52d812
da6ec44082399c5f7d71ed961c9b37de8429328f090b75ba9f81369b838f4a73

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/login.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 2656
Connection: keep-alive
Accept-Ranges: bytes
ETag: "913a0313d48d224b01040841cfd53aa5"
Last-Modified: Fri, 08 Mar 2024 23:08:19 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c2e5a568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/mePanel.css

104.18.3.35

200 OK

588 B

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/mePanel.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
588 B (588 bytes)
Hash
395b3cadf5941d54fc0723202d846159
3bf2616bc1c2432f5916cc9445ccda45981354c1
01eaf304ae5bbd3a8e0c091a1b8d901576fad118b41de9554fe2a30359862a7e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/mePanel.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 588
Connection: keep-alive
Accept-Ranges: bytes
ETag: "395b3cadf5941d54fc0723202d846159"
Last-Modified: Fri, 08 Mar 2024 23:08:19 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c2e9e56ca-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/_.css

104.18.3.35

200 OK

8.2 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/_.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (365)
Size
8.2 kB (8224 bytes)
Hash
fc408df3a663c0de762aa3440f0575a9
517bfeaba127862c31bd3ee0ffeea06877eb2251
3f7f7b568293e8202064649286e1021598dc2ddc38a85ba022f86fd908e379d3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/_.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 8224
Connection: keep-alive
Accept-Ranges: bytes
ETag: "fc408df3a663c0de762aa3440f0575a9"
Last-Modified: Fri, 08 Mar 2024 23:08:20 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c28e656c5-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css

104.18.3.35

200 OK

143 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (315)
Size
143 kB (143436 bytes)
Hash
f3405ec52036c934223df7b36fe75bfd
76cfa7c162272ba349b4193d815c22d3394cdd22
1d2d6f8bf6486cb61cc906237c5126b17f3ee631494cc942a5532e3a3160ad4b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/stdweborder.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 143436
Connection: keep-alive
Accept-Ranges: bytes
ETag: "f3405ec52036c934223df7b36fe75bfd"
Last-Modified: Fri, 08 Mar 2024 23:08:20 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c1fdb712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/meBubble.css

104.18.3.35

200 OK

1.6 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/meBubble.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text, with very long lines (370)
Size
1.6 kB (1562 bytes)
Hash
3d640f2646f3ce1b649e0fd34f082240
1773ec824fdc72dff88ce82f1791f3306bd4be85
59581a826c9fd63693bd2b7db4ccd981f109e787a3c48219aba3757150ef3f23

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/meBubble.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 1562
Connection: keep-alive
Accept-Ranges: bytes
ETag: "3d640f2646f3ce1b649e0fd34f082240"
Last-Modified: Fri, 08 Mar 2024 23:08:19 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c2e4b568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/loginPage18.css

104.18.3.35

200 OK

4.0 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/loginPage18.css
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
ASCII text
Size
4.0 kB (4030 bytes)
Hash
e2e8409d9c6a2828feeb2254e1156cc2
d2cb12587b40ea1dbc060baa2b1d24fbbeefb961
f012b38922265ef3f9a3bc333046182287f222eaf2e74341f265f6d194489c91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/loginPage18.css HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/css
Content-Length: 4030
Connection: keep-alive
Accept-Ranges: bytes
ETag: "e2e8409d9c6a2828feeb2254e1156cc2"
Last-Modified: Fri, 08 Mar 2024 23:08:19 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4c2c41b4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_checked_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_checked_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_checked_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4dec8d56c5-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischecked_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischecked_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_sthischecked_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4de9f1568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_checked.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_checked.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_checked.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4de9e3568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischecked.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischecked.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_sthischecked.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4def4fb4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_all_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4e8895b4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/image.png

104.18.3.35

200 OK

8.9 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/image.png
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
PNG image data, 320 x 71, 8-bit/color RGBA, non-interlaced
Size
8.9 kB (8875 bytes)
Hash
d4b562bc44ccc2318277f0a87756f50b
ffb0faf6284cddcda7502e6f149e0eb5ecb6420c
cab0b2e85bf0659046b38af7f4ee2b46dc330e61c43b55690445531e6b804d13

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/image.png HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: image/png
Content-Length: 8875
Connection: keep-alive
Accept-Ranges: bytes
ETag: "d4b562bc44ccc2318277f0a87756f50b"
Last-Modified: Fri, 08 Mar 2024 23:08:13 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4d8b25712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_not_checked_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4e7b09568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_all.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4e7b29568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_not_checked.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4e6d7656c5-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/bg.jpg

104.18.3.35

200 OK

4.3 MB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/bg.jpg
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=19, height=5771, bps=242, compression=LZW, PhotometricInterpretation=RGB, description=(c) Christoph Papsch - www.christoph-papsch.com | Jegliche Verwendung nur mit Urhebervermerk nach Parag. 13 UrhG. Die IPTC-Date, manufacturer=Canon, model=Canon EOS 5DS R, orientation=upper-left, width=8656], baseline, precision 8, 4252x2835, components 3
Size
4.3 MB (4253111 bytes)
Hash
d66f0d4ce49f047c84f03d9d081ae89b
e0b64b9bb8832074cae3463be6eb2af7124ddd91
2091e0a8671f854ea0889ea395acd26b99938f7d202cbcd0d9e4ac16fa9accbf

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/bg.jpg HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:45 GMT
Content-Type: image/jpeg
Content-Length: 4253111
Connection: keep-alive
Accept-Ranges: bytes
ETag: "d66f0d4ce49f047c84f03d9d081ae89b"
Last-Modified: Fri, 08 Mar 2024 23:08:23 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4de9e456ca-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischeckedall_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_sthischeckedall_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_sthischeckedall_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4f5f12712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_emptyall.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_emptyall.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_emptyall.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4f5cff568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_emptyall_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_emptyall_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_emptyall_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4f5d02568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all_sthischecked.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_all_sthischecked.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_all_sthischecked.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4f5a9eb4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_checked_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_checked_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_radio_checked_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4fed9256ca-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_checked.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_checked.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_radio_checked.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b4f9fd056c5-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_empty.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_empty.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_radio_empty.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b5418e1712e-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_required.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_required.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_not_checked_required.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b541e3b568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_empty_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_radio_empty_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_radio_empty_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b541e39568d-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_required_focused.html

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/icon_check_not_checked_required_focused.html
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /afcom/dahl2/css/icon_check_not_checked_required_focused.html HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/css/stdweborder.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b543d3fb4fd-OSL

pub-867982fc061e46f293e0759a4cd22332.r2.dev/favicon.ico

104.18.3.35

404 Not Found

27 kB

URL GET HTTP/1.1
pub-867982fc061e46f293e0759a4cd22332.r2.dev/favicon.ico
IP
104.18.3.35:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerLet's Encrypt
Subject*.r2.dev
Fingerprint48:74:F0:98:E0:A1:57:3E:86:18:BF:B3:DC:C9:7A:5B:53:50:FE:E0
ValidityFri, 05 Apr 2024 15:25:24 GMT - Thu, 04 Jul 2024 15:25:23 GMT

File type
HTML document, ASCII text, with very long lines (611)
Size
27 kB (27242 bytes)
Hash
df3d48946e8d3f5a83608308edbb4b86
47b9c40c97abf2658df96b1c06109324e15e1a00
570a6631252b8a52df4de0e953ae77dbdf524dfc3637cda2840494a0d2b49499

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: pub-867982fc061e46f293e0759a4cd22332.r2.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Date: Tue, 16 Apr 2024 16:16:46 GMT
Content-Type: text/html
Content-Length: 27242
Connection: keep-alive
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87557b54ef9356ca-OSL

ocsp2.globalsign.com/gsextendvalsha2g3r3

151.101.194.133

1.4 kB

URL
ocsp2.globalsign.com/gsextendvalsha2g3r3
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1444 bytes)
Hash
999041cf3c348bdfe63c1a26347f8aa7
6da2eac028612bf84970465965654db446e2bf4f
7db6519f3549304c1882f15cb4de6ba8b08e9d6dd3ca67e89fe1dc14e1d89e67

HTTP Headers

POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1444
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 20 Apr 2024 15:51:15 GMT
ETag: "6da2eac028612bf84970465965654db446e2bf4f"
Last-Modified: Tue, 16 Apr 2024 15:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 16 Apr 2024 16:16:47 GMT
Age: 1531
X-Served-By: cache-qpg1243-QPG, cache-hel1410032-HEL
X-Cache: HIT, HIT
X-Cache-Hits: 4, 3
X-Timer: S1713284207.012133,VS0,VE336

ocsp2.globalsign.com/gsextendvalsha2g3r3

151.101.194.133

1.4 kB

URL
ocsp2.globalsign.com/gsextendvalsha2g3r3
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1444 bytes)
Hash
999041cf3c348bdfe63c1a26347f8aa7
6da2eac028612bf84970465965654db446e2bf4f
7db6519f3549304c1882f15cb4de6ba8b08e9d6dd3ca67e89fe1dc14e1d89e67

HTTP Headers

POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1444
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 20 Apr 2024 15:51:15 GMT
ETag: "6da2eac028612bf84970465965654db446e2bf4f"
Last-Modified: Tue, 16 Apr 2024 15:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Age: 1531
Date: Tue, 16 Apr 2024 16:16:47 GMT
X-Served-By: cache-qpg1243-QPG, cache-hel1410025-HEL
X-Cache: HIT, MISS
X-Cache-Hits: 4, 0
X-Timer: S1713284207.009479,VS0,VE339

ocsp2.globalsign.com/gsextendvalsha2g3r3

151.101.194.133

1.4 kB

URL
ocsp2.globalsign.com/gsextendvalsha2g3r3
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1444 bytes)
Hash
999041cf3c348bdfe63c1a26347f8aa7
6da2eac028612bf84970465965654db446e2bf4f
7db6519f3549304c1882f15cb4de6ba8b08e9d6dd3ca67e89fe1dc14e1d89e67

HTTP Headers

POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1444
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 20 Apr 2024 15:51:15 GMT
ETag: "6da2eac028612bf84970465965654db446e2bf4f"
Last-Modified: Tue, 16 Apr 2024 15:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 16 Apr 2024 16:16:47 GMT
Age: 1531
X-Served-By: cache-qpg1243-QPG, cache-hel1410020-HEL
X-Cache: HIT, HIT
X-Cache-Hits: 4, 1
X-Timer: S1713284207.043485,VS0,VE305

ocsp2.globalsign.com/gsextendvalsha2g3r3

151.101.194.133

1.4 kB

URL
ocsp2.globalsign.com/gsextendvalsha2g3r3
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1444 bytes)
Hash
999041cf3c348bdfe63c1a26347f8aa7
6da2eac028612bf84970465965654db446e2bf4f
7db6519f3549304c1882f15cb4de6ba8b08e9d6dd3ca67e89fe1dc14e1d89e67

HTTP Headers

POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1444
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 20 Apr 2024 15:51:15 GMT
ETag: "6da2eac028612bf84970465965654db446e2bf4f"
Last-Modified: Tue, 16 Apr 2024 15:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 16 Apr 2024 16:16:47 GMT
Age: 1531
X-Served-By: cache-qpg1243-QPG, cache-hel1410029-HEL
X-Cache: HIT, HIT
X-Cache-Hits: 4, 1
X-Timer: S1713284207.042300,VS0,VE306

ocsp2.globalsign.com/gsextendvalsha2g3r3

151.101.194.133

1.4 kB

URL
ocsp2.globalsign.com/gsextendvalsha2g3r3
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1444 bytes)
Hash
999041cf3c348bdfe63c1a26347f8aa7
6da2eac028612bf84970465965654db446e2bf4f
7db6519f3549304c1882f15cb4de6ba8b08e9d6dd3ca67e89fe1dc14e1d89e67

HTTP Headers

POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1444
Server: nginx
Content-Type: application/ocsp-response
Expires: Sat, 20 Apr 2024 15:51:15 GMT
ETag: "6da2eac028612bf84970465965654db446e2bf4f"
Last-Modified: Tue, 16 Apr 2024 15:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 16 Apr 2024 16:16:47 GMT
Age: 1531
X-Served-By: cache-qpg1243-QPG, cache-hel1410025-HEL
X-Cache: HIT, HIT
X-Cache-Hits: 4, 1
X-Timer: S1713284207.050917,VS0,VE298

www.ax4.com/ax4/icons/money.svg?20.3.3

194.153.114.214

200 OK

6.6 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/money.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
6.6 kB (6553 bytes)
Hash
f24ece25bbbbfe7db6d433cf52da7557
13bf7749793763b06df77ed2372e171ff102076b
face00bc1e0f8a2efe2a707d6b2fef8d78f1d4838ebc0a98f35e2c63b64c4a7b

HTTP Headers

GET /ax4/icons/money.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "1999-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 6553
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/computer.svg?20.3.3

194.153.114.214

200 OK

5.8 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/computer.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
5.8 kB (5784 bytes)
Hash
99e95f47f899c845cbd8861fff5442a3
3f35d31d13b7feb1ad5d0ef7aacc94a0dc9c3cef
5feb28a1e391cd327cca0b40c0b739fd580af9eb650c48db6b3df47d4d3e3db3

HTTP Headers

GET /ax4/icons/computer.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "1698-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 5784
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/numbers.svg?20.3.3

194.153.114.214

200 OK

12 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/numbers.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
12 kB (11502 bytes)
Hash
9db31baab0d1067f20f4d01625753a4d
704be3269f851d2450ad075a38a03b72f10ed992
0140cc8da2379505eeb9ac0643e72878cb3105f6aa46bca0988ca58c49ffdaa6

HTTP Headers

GET /ax4/icons/numbers.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "2cee-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 11502
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/document.svg?20.3.3

194.153.114.214

200 OK

32 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/document.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
32 kB (32386 bytes)
Hash
8e51745f91391dc93febaf7c5e68a6f0
3a8472584134c21edb3081e04a90f44da6b7129c
ee7164bcf1ebcf4d1f518a69163a8701896373b3f9c54605aa7caa18627e43ea

HTTP Headers

GET /ax4/icons/document.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "7e82-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 32386
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/people.svg?20.3.3

194.153.114.214

200 OK

14 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/people.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
14 kB (13576 bytes)
Hash
2ee92ad049f6b37e721a8aef0df89b0f
b2e693dddf9d9e394115a96729c5a92eb9fc5458
9b868202166c1f989acb26582db391e63117a90e25fe6958a2d5ea93ed457173

HTTP Headers

GET /ax4/icons/people.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "3508-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 13576
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/action.svg?20.3.3

194.153.114.214

200 OK

57 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/action.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
57 kB (56690 bytes)
Hash
289258e0878592605fbfc1621f328ae8
540b0938d49e3a56b7c85fd1b9288fa47edee6e4
cec09709b93f3f334db56e8500404012200591797ac847dad7943de004132dfc

HTTP Headers

GET /ax4/icons/action.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "dd72-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 56690
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=10000
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/state.svg?20.3.3

194.153.114.214

200 OK

19 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/state.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
19 kB (18745 bytes)
Hash
b5f7942180682ca51335c30a365d3bb3
9d9f3d0e798f70ee4c9e272d6372184eb96c07ec
4e0a0f3da2dee5d32e7beeecd6e512024593f9e73926e288b63011f0369c8370

HTTP Headers

GET /ax4/icons/state.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "4939-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 18745
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=9999
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/time.svg?20.3.3

194.153.114.214

200 OK

4.9 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/time.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
4.9 kB (4890 bytes)
Hash
383d08f6a19c5e7150c2fa9df36d1460
c23838b1c9ea7187e3f9f02124b7f89d9bc68463
1061bf616fb3a407bab51b5fc7769e23c2f46030f6ad6732d420fe4a84e7b967

HTTP Headers

GET /ax4/icons/time.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "131a-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 4890
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=9999
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/tracking.svg?20.3.3

194.153.114.214

200 OK

8.0 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/tracking.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
8.0 kB (8019 bytes)
Hash
a286ec6b8e79b7b608f04f0774d460d3
c4fd34674f5332185a964fc62ab15871af97ac7a
d08bf8f78cfbac049a032849a6be8aeb83528992d8fba982cc22bbb790592541

HTTP Headers

GET /ax4/icons/tracking.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "1f53-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 8019
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=9999
Connection: Keep-Alive
Content-Type: image/svg+xml

www.ax4.com/ax4/icons/transport.svg?20.3.3

194.153.114.214

200 OK

93 kB

URL GET HTTP/1.1
www.ax4.com/ax4/icons/transport.svg?20.3.3
IP
194.153.114.214:443
ASN
#41961 Siemens Digital Logistics GmbH

Requested by
https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/afcom/dahl2/index.html
Certificate
IssuerGlobalSign nv-sa
Subjectwww.ax4.com
Fingerprint5E:4C:37:84:E5:81:76:79:13:0A:1E:C8:15:A7:69:9C:CD:0B:13:25
ValidityTue, 23 May 2023 14:40:02 GMT - Sun, 23 Jun 2024 14:40:01 GMT

File type
SVG Scalable Vector Graphics image
Size
93 kB (93063 bytes)
Hash
bbf792e766092928aefe796b8d1a028d
b911cb4547fe702594d0a19d1d9b3c1472f4d3f0
0fc87a31aa18fc4101ae4d39dc0a3fd604ba885e33f71c603e011d2ef79fa73b

HTTP Headers

GET /ax4/icons/transport.svg?20.3.3 HTTP/1.1
Host: www.ax4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://pub-867982fc061e46f293e0759a4cd22332.r2.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 16:16:47 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self';
Last-Modified: Thu, 04 Apr 2024 12:33:54 GMT
ETag: "16b87-615448d5e7080"
Accept-Ranges: bytes
Content-Length: 93063
Cache-Control: max-age=31536000
Expires: Wed, 16 Apr 2025 16:16:47 GMT
Keep-Alive: timeout=5, max=9999
Connection: Keep-Alive
Content-Type: image/svg+xml

aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml

35.244.181.201

444 B

URL
aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml
IP
35.244.181.201:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
XML 1.0 document, ASCII text, with very long lines (332)
Size
444 B (444 bytes)
Hash
3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463

HTTP Headers

GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=PyamJF5vkko-rcQU3-QKG5QMM3FL6KJ_X53fEaT3mnzoxtVonC6zF6rpJl-VKGxEKJnh9cb937NiWgoJ_FjILNBtf7WWsmF3B5nnOmdx3pJpng4QnEhc9lJ0mE8Vcl8h
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Tue, 16 Apr 2024 16:16:23 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 40
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML