Report - bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/

Report Overview

Visited public
2023-12-05 08:39:33
Tags
phishing
URL
bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Finishing URL
bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
IP / ASN
209.94.90.1
#40680 PROTOCOL
Title
DHL Express | Track Shipment
Phishing - Generic phishing

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link	unknown	2017-02-24	2023-12-04 11:40:36	2023-12-04 11:40:36	1.1 kB	143 kB	209.94.90.1
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-12-05 05:18:59	1.2 kB	196 kB	104.18.11.207
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-12-05 05:09:20	1.6 kB	136 kB	151.101.194.137
firebasestorage.googleapis.com	9937	2005-01-25	2017-01-30 03:42:50	2023-12-04 08:49:10	1.2 kB	6.0 kB	142.250.74.106
cdn.phenompeople.com	52128	2015-02-09	2022-12-03 13:05:14	2023-11-29 12:39:52	593 B	573 kB	143.204.55.120
stackpath.bootstrapcdn.com	2467	2012-05-25	2018-06-15 22:36:43	2023-12-04 09:06:46	509 B	52 kB	104.18.11.207
www.parcelandpostaltechnologyinternational.com	unknown	2019-01-10	2019-02-26 15:51:26	2023-11-11 12:16:29	578 B	206 kB	51.140.140.220
kit.fontawesome.com	1868	2012-10-18	2019-12-16 20:51:31	2023-12-04 05:23:47	569 B	12 kB	104.18.40.68
www.joc.com	305239	1994-09-19	2012-11-27 16:43:36	2023-11-26 01:33:41	541 B	1.6 MB	143.204.55.23
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17 22:46:33	2023-12-05 05:09:58	599 B	7.2 kB	104.17.25.14
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-12-05 08:15:49	1.0 kB	62 kB	216.58.211.10
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17 07:36:13	2023-12-04 05:28:09	1.2 kB	1.6 MB	172.64.205.20
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-05 07:37:50	518 B	1.6 kB	142.250.74.106
logisticsbid.com	unknown	2018-10-02	2015-10-21 18:20:09	2023-11-13 00:57:33	588 B	93 kB	52.76.195.211

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-12-05 08:39:19	low	Client IP	Internal IP	ET HUNTING IPFS Gateway Domain in DNS Lookup (ipfs .dweb .link)
2023-12-05 08:39:19	low	Client IP	Internal IP	ET HUNTING IPFS Gateway Domain in DNS Lookup (ipfs .dweb .link)
2023-12-05 08:39:19	low	Client IP	209.94.90.1	ET HUNTING Observed IPFS Gateway Domain (ipfs .dweb .link) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-04	medium	bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/	DHL Airways, Inc.
2023-12-04	medium	bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/	DHL Airways, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	From	Size	First Seen	Last Seen
	stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js	ScriptElement	51 kB	2023-03-07	2025-05-09
Pretty URL stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:21 Times Seen98870 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	unknown	ScriptElement	5.4 kB	2023-12-04	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 13:17 Last Seen2024-08-20 16:49 Times Seen3 Hash a445a1281025190548be6892b3023e20 3a4d6a64e0b851a07db0c4f1d2692d7ed465ff7a 9c107f6e792b2bf35ea6efac43f73be3d1b26405e5be2583e649995d8dcaf6ea Loading...

	code.jquery.com/jquery-3.3.1.js	ScriptElement	272 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.3.1.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:18 Times Seen37786 Hash 6a07da9fae934baf3f749e876bbfdd96 46a436eba01c79acdb225757ed80bf54bad6416b d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js	ScriptElement	19 kB	2023-03-07	2025-05-09
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:21 Times Seen72182 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js	ScriptElement	86 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 09:37 Times Seen173905 Hash 2f6b11a7e914718e0290410e85366fe9 69bb69e25ca7d5ef0935317584e6153f3fd9a88c 05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e Loading...

	kit.fontawesome.com/585b051251.js	ScriptElement	12 kB	2023-11-29	2025-01-29
Pretty URL kit.fontawesome.com/585b051251.js IP 104.18.40.68 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 01:32 Last Seen2025-01-29 11:48 Times Seen7509 Hash 55d343a40c7166a79fd314f13cbb2e93 96904a849c32ca220e0aaa2ae3e81cf2b5cdf764 a1f75d6278713a84a8f28a392c77ca8a6a7c32bf14314d4a34a6ce2f06cfdf7a Loading...

	code.jquery.com/jquery-3.2.1.slim.min.js	ScriptElement	70 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.2.1.slim.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:21 Times Seen57115 Hash 5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398 Loading...

	maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js	ScriptElement	49 kB	2023-03-07	2025-05-09
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 09:26 Times Seen74819 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/	ScriptElement	141 kB	2023-12-04	2024-08-20
Pretty URL bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/ IP 209.94.90.1 ASN #40680 PROTOCOL Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-04 13:17 Last Seen2024-08-20 16:49 Times Seen3 Hash dce9352dea8f7bd5dd5503bb48e0bef1 135efb89b94b9ad8fb78cf20e238e74b8456ce44 09a4d078d57de0d4f9b93532a4bf4296d035f35b8784508032eb88228d3df28d Loading...

	code.jquery.com/jquery-3.1.1.min.js	ScriptElement	87 kB	2023-03-07	2025-05-09
Pretty URL code.jquery.com/jquery-3.1.1.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 08:31 Times Seen112198 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

		Size	First Seen	Last Seen
	#1 Write - 2622a9795719dae3a22dffd00b1c309d	21 kB	2023-12-04 13:17	2024-08-20 16:49
Pretty Observations First Seen2023-12-04 13:17 Last Seen2024-08-20 16:49 Times Seen3 Hash 2622a9795719dae3a22dffd00b1c309d a6e551a2cfbc7b8f8c38a305d14fec1af77b29f3 075d8496c97afb3d62de17015b71502fc1a2903c4b8d6bd8921d1dfa2a60c7cb Loading...

HTTP Transactions (21)

URL IP Response Size

code.jquery.com/jquery-3.1.1.min.js

151.101.194.137

200 OK

30 kB

URL GET HTTP/2
code.jquery.com/jquery-3.1.1.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32030)
Size
30 kB (30070 bytes)
Hash
e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf

HTTP Headers

GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-152b5"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 08:39:14 GMT
age: 6964953
x-served-by: cache-lga21947-LGA, cache-bma1654-BMA
x-cache: HIT, HIT
x-cache-hits: 119, 99962
x-timer: S1701765555.534360,VS0,VE0
vary: Accept-Encoding
content-length: 30070
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.3.1.js

151.101.194.137

200 OK

80 kB

URL GET HTTP/2
code.jquery.com/jquery-3.3.1.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text
Size
80 kB (80268 bytes)
Hash
6a07da9fae934baf3f749e876bbfdd96
46a436eba01c79acdb225757ed80bf54bad6416b
d8aa24ecc6cecb1a60515bc093f1c9da38a0392612d9ab8ae0f7f36e6eee1fad

HTTP Headers

GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-42587"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 08:39:14 GMT
age: 6964904
x-served-by: cache-lga21980-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 73, 31690
x-timer: S1701765555.534218,VS0,VE0
vary: Accept-Encoding
content-length: 80268
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.2.1.slim.min.js

151.101.194.137

200 OK

24 kB

URL GET HTTP/2
code.jquery.com/jquery-3.2.1.slim.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32012)
Size
24 kB (23856 bytes)
Hash
5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398

HTTP Headers

GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 05 Dec 2023 08:39:14 GMT
age: 6861755
x-served-by: cache-lga21963-LGA, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 22, 66213
x-timer: S1701765555.590522,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js

104.17.25.14

200 OK

6.2 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (19015)
Size
6.2 kB (6157 bytes)
Hash
70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 867571
expires: Sun, 24 Nov 2024 08:39:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cUo2P62CYAl%2FgbncjhrSYpC6DNFIHDIlpxAh26es0JmdSAAvKhhxXULU2SDuogqaKKXsc5WSfVLrC%2FmcaeXvhuj0usPGO1ivdmvvs2N884%2FkoRvcbtFMxWj6lgA1HWG4Wat7JB0C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 830afa3c28c5b529-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

216.58.211.10

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:47:45 GMT
expires: Thu, 28 Nov 2024 17:47:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 485489
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js

216.58.211.10

200 OK

30 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (32065)
Size
30 kB (30028 bytes)
Hash
2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e

HTTP Headers

GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 17:47:45 GMT
expires: Thu, 28 Nov 2024 17:47:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 485490
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/photos/favicon.jpg

209.94.90.1

404 Not Found

193 B

URL GET HTTP/2
bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/photos/favicon.jpg
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint8B:0B:A0:28:A6:81:DF:E9:49:F0:E9:A3:20:69:C6:07:BE:D6:16:2C
ValidityMon, 20 Nov 2023 14:59:23 GMT - Sun, 18 Feb 2024 14:59:22 GMT

File type
ASCII text
Size
193 B (193 bytes)
Hash
776637a3f41e5d8b56c2ac35d481c1a6
806653872f7fd8d6554e5a43ed95955601de477d
c430ec3933ffacf5d914faad90205d53c41fea0ccf1596b546b479fb10ae54a6

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /photos/favicon.jpg HTTP/1.1
Host: bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: openresty
date: Tue, 05 Dec 2023 08:39:15 GMT
content-type: text/plain; charset=utf-8
content-length: 193
access-control-allow-methods: GET, HEAD, OPTIONS, GET, POST, OPTIONS
x-content-type-options: nosniff
x-ipfs-gateway-host: ipfs-bank6-fr2
x-ipfs-path: /ipfs/bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq/photos/favicon.jpg
x-ipfs-pop: ipfs-bank6-fr2
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251

172.64.205.20

200 OK

1.6 MB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
IP
172.64.205.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (60130)
Size
1.6 MB (1575618 bytes)
Hash
a12ec7ebe75a4d59a5dd6b79e2ba2e16
28f5dcc595ee6d4163481ef64170180502c8629b
fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda

HTTP Headers

GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:15 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c40a0775e2798dc9f20a237d0225e44.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: McEmkRaG0oGlxAdPC2x0FZrVhk56ZEmG5vCx-Vrs5PtPv4rs7pjWww==
age: 73092
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZuHd5uH2OfBtvnuZ5IJWWrPMk5c1%2F%2Bl%2FkndZRt5Ew%2BRU9Cp7WbrdEHCpFystp%2FGgSugWk%2BrGYRIs9NKkS9vrF98RBKy2kW6LrqQ55DYPtvw1ErQH88aWAPgW191Uy%2BnQNon5n%2FS9wQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830afa3f28ef6383-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

firebasestorage.googleapis.com/v0/b/files-a8d0e.appspot.com/o/nze%2Flogo.jpg?alt=media&token=ab8ba530-5e71-445e-bc2d-e0ba415d5b43

142.250.74.106

200 OK

3.9 kB

URL GET HTTP/3
firebasestorage.googleapis.com/v0/b/files-a8d0e.appspot.com/o/nze%2Flogo.jpg?alt=media&token=ab8ba530-5e71-445e-bc2d-e0ba415d5b43
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
PNG image data, 425 x 125, 8-bit colormap, non-interlaced\012- data
Size
3.9 kB (3902 bytes)
Hash
d8b38bb6321bd45ff42ed6931a870bb5
483fa5870b17eae93e8251dd50e694da5b0297a0
26933abb67839e269d8fc9d49b5ff722a1f48646776a8bdfb25e572d10996b41

HTTP Headers

GET /v0/b/files-a8d0e.appspot.com/o/nze%2Flogo.jpg?alt=media&token=ab8ba530-5e71-445e-bc2d-e0ba415d5b43 HTTP/1.1
Host: firebasestorage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-guploader-uploadid: ABPtcPojXgOp6CFxO1LhGxthKx_MqiIP8d8H1FBBrVSE5fUqbcrUxWhKu7XTkCNgQE6rEXFGou8
expires: Tue, 05 Dec 2023 08:39:15 GMT
date: Tue, 05 Dec 2023 08:39:15 GMT
cache-control: private, max-age=0
last-modified: Wed, 09 Nov 2022 19:11:24 GMT
etag: "d8b38bb6321bd45ff42ed6931a870bb5"
x-goog-generation: 1668021083995857
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3902
x-goog-meta-firebasestoragedownloadtokens: ab8ba530-5e71-445e-bc2d-e0ba415d5b43
content-type: image/jpeg
content-disposition: inline; filename*=utf-8''logo.jpg
x-goog-hash: crc32c=/YVEOQ==, md5=2LOLtjIb1F/0LtaTGocLtQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3902
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

firebasestorage.googleapis.com/v0/b/files-a8d0e.appspot.com/o/nze%2Flogo-fill.jpg?alt=media&token=1f36307d-1604-4d8d-adb0-20eb22e67296

142.250.74.106

200 OK

443 B

URL GET HTTP/3
firebasestorage.googleapis.com/v0/b/files-a8d0e.appspot.com/o/nze%2Flogo-fill.jpg?alt=media&token=1f36307d-1604-4d8d-adb0-20eb22e67296
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
GIF image data, version 89a, 134 x 42\012- data
Size
443 B (443 bytes)
Hash
749b06c85447bd7bc889ecbaaa0980ee
de5706a7d3a50bc3eb3b082439a8b990688e0e87
2f680b51b19fc3c5befd02bd9d0d4e88c2722a5210157e4ef68933c5ba352109

HTTP Headers

GET /v0/b/files-a8d0e.appspot.com/o/nze%2Flogo-fill.jpg?alt=media&token=1f36307d-1604-4d8d-adb0-20eb22e67296 HTTP/1.1
Host: firebasestorage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
x-guploader-uploadid: ABPtcPode1OTnypXjOwo9nJTc9oNxfkBzjELpzV33fIXLulElmA71Jq2lshIfADR76waTdLrREI
expires: Tue, 05 Dec 2023 08:39:15 GMT
date: Tue, 05 Dec 2023 08:39:15 GMT
cache-control: private, max-age=0
last-modified: Wed, 09 Nov 2022 19:11:24 GMT
etag: "749b06c85447bd7bc889ecbaaa0980ee"
x-goog-generation: 1668021084000210
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 443
x-goog-meta-firebasestoragedownloadtokens: 1f36307d-1604-4d8d-adb0-20eb22e67296
content-type: image/jpeg
content-disposition: inline; filename*=utf-8''logo-fill.jpg
x-goog-hash: crc32c=IXogVQ==, md5=dJsGyFRHvXvIiey6qgmA7g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 443
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.googleapis.com/css?family=Archivo+Narrow&display=swap

142.250.74.106

200 OK

937 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Archivo+Narrow&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
gzip compressed data, max compression\012- data
Size
937 B (937 bytes)
Hash
f9629d2de24a3896375da2e2922b36b2
73a3c5000f7b66d887851bd29ab263d6a7ecb009
5f9646487cd0a534e68f5b2167f197af749a12069e0b2067e49daa005ab3bb14

HTTP Headers

GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 08:39:14 GMT
date: Tue, 05 Dec 2023 08:39:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

logisticsbid.com/ph/wp-content/uploads/sites/6/2020/11/dhl-courier-service-and-international-express-delivery-1024x538.jpg

52.76.195.211

200 OK

92 kB

URL GET HTTP/2
logisticsbid.com/ph/wp-content/uploads/sites/6/2020/11/dhl-courier-service-and-international-express-delivery-1024x538.jpg
IP
52.76.195.211:443
ASN
#16509 AMAZON-02

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerAmazon
Subjectlogisticsbid.com
Fingerprint81:23:1B:3E:4D:C0:65:11:AB:27:40:2D:C4:04:45:10:D9:D9:F6:24
ValidityWed, 22 Feb 2023 00:00:00 GMT - Fri, 22 Mar 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1024x538, components 3\012- data
Size
92 kB (92488 bytes)
Hash
efa5fc5f9b9e4216603aa024ea4e99f6
dde858e406970ec26818139ce9a39a16aa3a32f9
f27add66f8945a972ea0b973a2ce93bd10033ea1eb61c932864d73d7d8f5e682

HTTP Headers

GET /ph/wp-content/uploads/sites/6/2020/11/dhl-courier-service-and-international-express-delivery-1024x538.jpg HTTP/1.1
Host: logisticsbid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:23 GMT
content-type: image/jpeg
content-length: 92488
server: nginx/1.14.0 (Ubuntu)
last-modified: Wed, 17 May 2023 08:26:42 GMT
etag: "64648fc2-16948"
expires: Tue, 12 Dec 2023 08:39:23 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.phenompeople.com/CareerConnectResources/DPDHGLOBAL/images/dpdhl_8422388283117750_home_delivery_0090_large-1668424402718.jpg

143.204.55.120

200 OK

572 kB

URL GET HTTP/2
cdn.phenompeople.com/CareerConnectResources/DPDHGLOBAL/images/dpdhl_8422388283117750_home_delivery_0090_large-1668424402718.jpg
IP
143.204.55.120:443
ASN
#16509 AMAZON-02

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.phenompeople.com
Fingerprint52:7D:89:09:DF:18:C2:9B:6A:48:45:CB:CD:CD:C0:69:41:70:95:61
ValiditySun, 08 Oct 2023 07:06:26 GMT - Fri, 08 Nov 2024 07:06:26 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 3600x2400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
572 kB (572172 bytes)
Hash
82bf4adb0dbf98f2eda1e554e2c23fcf
a03b33485e9e5b8121afa1c6e74e53c2f081af6c
40d308e39126cc1036458a9ddc5dd772fac371c7817096e766a3e555bd2f0365

HTTP Headers

GET /CareerConnectResources/DPDHGLOBAL/images/dpdhl_8422388283117750_home_delivery_0090_large-1668424402718.jpg HTTP/1.1
Host: cdn.phenompeople.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/webp
content-length: 572172
date: Sat, 02 Dec 2023 02:19:58 GMT
last-modified: Fri, 06 Jan 2023 11:50:41 GMT
etag: "82bf4adb0dbf98f2eda1e554e2c23fcf"
x-amz-server-side-encryption: AES256
cache-control: max-age=604800
x-amz-version-id: _5kXt6e0CtN988tBX_FuESuh4N1NR6i8
accept-ranges: bytes
server: PhenomPeople
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tEqxvhhqgErjCM-sP2-MTmEyrktVkPmdBEpOspusWGadHLKiC8Vkig==
age: 281968
X-Firefox-Spdy: h2

www.parcelandpostaltechnologyinternational.com/wp-content/uploads/2021/06/POM-Web-JUne-28-DHL-e1624895210364.jpg

51.140.140.220

206 kB

URL
www.parcelandpostaltechnologyinternational.com/wp-content/uploads/2021/06/POM-Web-JUne-28-DHL-e1624895210364.jpg
IP
51.140.140.220:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1588x760, components 3\012- data
Size
206 kB (206154 bytes)
Hash
9c3f3058105a616afa0da1097b6b4b91
02272d11208d084d4fd6f53acf85ca4c662956e6
5eb1b0f7ac75b081d0cdaabef210c154cad5c872bd438ed964155c9dbc4f95d7

HTTP Headers

GET /wp-content/uploads/2021/06/POM-Web-JUne-28-DHL-e1624895210364.jpg HTTP/1.1
Host: www.parcelandpostaltechnologyinternational.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 08:39:29 GMT
Server: Apache
Last-Modified: Mon, 11 Sep 2023 16:05:16 GMT
Accept-Ranges: bytes
Content-Length: 206154
Cache-Control: max-age=10368000
Expires: max-age=A10368000, public
X-Powered-By: PleskLin
Connection: keep-alive, Keep-Alive
Keep-Alive: timeout=5, max=100
Content-Type: image/jpeg

stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js

104.18.11.207

200 OK

51 kB

URL GET HTTP/2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (50758)
Size
51 kB (51039 bytes)
Hash
67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4

HTTP Headers

GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"67176c242e1bdc20603c878dee836df3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 10/31/2023 18:58:40
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f4f838df79fc133911a060d7c6bb0f5c
cdn-cache: HIT
cf-cache-status: HIT
age: 445317
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830afa3bfe78b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/

209.94.90.1

200 OK

141 kB

URL User Request GET HTTP/2
bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
IP
209.94.90.1:443
ASN
#40680 PROTOCOL

Certificate
IssuerLet's Encrypt
Subjectdweb.link
Fingerprint8B:0B:A0:28:A6:81:DF:E9:49:F0:E9:A3:20:69:C6:07:BE:D6:16:2C
ValidityMon, 20 Nov 2023 14:59:23 GMT - Sun, 18 Feb 2024 14:59:22 GMT

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (65423), with CRLF line terminators
Size
141 kB (141170 bytes)
Hash
849cf0d08e60f9606f4c944f08b2f342
2c1419ffee2e9cf7383a916e380d2c876fabb1c9
485bde942e173cd1dddb48e3e37ac0614192441693df26ef7bb8aa5acb453401

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET / HTTP/1.1
Host: bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: openresty
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: text/html
vary: Accept-Encoding
access-control-allow-methods: GET, HEAD, OPTIONS, GET, POST, OPTIONS
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq"
x-ipfs-gateway-host: ipfs-bank6-fr2
x-ipfs-path: /ipfs/bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq/
x-ipfs-roots: bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq
x-ipfs-pop: ipfs-bank6-fr2
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Range, Content-Range, X-Chunked-Output, X-Stream-Output
access-control-expose-headers: Content-Range, X-Chunked-Output, X-Stream-Output
x-ipfs-lb-pop: gateway-bank3-fr2
x-proxy-cache: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2

kit.fontawesome.com/585b051251.js

104.18.40.68

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/585b051251.js
IP
104.18.40.68:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
ASCII text, with very long lines (11461)
Size
12 kB (11893 bytes)
Hash
55d343a40c7166a79fd314f13cbb2e93
96904a849c32ca220e0aaa2ae3e81cf2b5cdf764
a1f75d6278713a84a8f28a392c77ca8a6a7c32bf14314d4a34a6ce2f06cfdf7a

HTTP Headers

GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F52gEywbbUzVzE6ntMzB
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 830afa3bfaaf56b5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.joc.com/sites/default/files/field_feature_image/dhl-boeing-777-03.jpg

143.204.55.23

200 OK

1.6 MB

URL GET HTTP/2
www.joc.com/sites/default/files/field_feature_image/dhl-boeing-777-03.jpg
IP
143.204.55.23:443
ASN
#16509 AMAZON-02

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerAmazon
Subjectprod.int.joc.com
FingerprintD3:97:44:9C:9C:67:C6:C6:80:B4:52:10:7E:2E:8B:7F:C7:AE:8A:0E
ValidityFri, 10 Mar 2023 00:00:00 GMT - Sun, 07 Apr 2024 23:59:59 GMT

File type

Size
1.6 MB (1562725 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sites/default/files/field_feature_image/dhl-boeing-777-03.jpg HTTP/1.1
Host: www.joc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
content-length: 1562725
last-modified: Tue, 13 Dec 2022 11:39:28 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 15tUtNc2O4d3nBHGrfaezzTS8NtJojqY
accept-ranges: bytes
server: AmazonS3
date: Tue, 05 Dec 2023 08:39:15 GMT
etag: "a15e75a8ba022fdec90f5c5fc9c3efcf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: nT4Sook3wvGgOjbchTpQTZdw544Trk-r5wfOYPhhPJdZ29uiRDxVrQ==
age: 2634
cache-control: max-age=31536000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js

104.18.11.207

200 OK

49 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (48664)
Size
49 kB (48944 bytes)
Hash
14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b

HTTP Headers

GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 10/31/2023 18:55:57
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 55f2a90aebdb3d746c96fdff15b03fba
cdn-cache: HIT
cf-cache-status: HIT
age: 73316
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830afa3bfbf9b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251

172.64.205.20

200 OK

27 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
IP
172.64.205.20:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
FingerprintBC:9B:12:21:8D:67:FE:B5:D3:76:65:FC:D3:F7:91:AE:B4:65:CA:81
ValidityWed, 08 Nov 2023 07:11:36 GMT - Tue, 06 Feb 2024 07:11:35 GMT

File type
ASCII text, with very long lines (26500)
Size
27 kB (26682 bytes)
Hash
76f34b71fc9fb641507ff6a822cc07f5
73ed2f8f21cd40fb496e61306acbb5849d4dbff4
6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8

HTTP Headers

GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:15 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee8862e43d7837ef5478becfe2eb7116.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: DIG9I_K4abk2YnLRdbn6CLfaFZ5gkR7xXpAjy7tn2Zk8VQsOoWZ47w==
age: 73092
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bgi%2Fe90xmpsx2yXw2hgf5m4mb1u1z4w88so31lK8nkhaXoz23Awrp00zf4wNBJ7F9H7DGYLIPZGamsnab8WdbOkUmwEt2kkd7pZEk%2F3GutiuAehY40IlJWtkOGw92I7SKWbc0rHVXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830afa3f28ea6383-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css

104.18.11.207

200 OK

145 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT

File type
ASCII text, with very long lines (65325)
Size
145 kB (144877 bytes)
Hash
450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

HTTP Headers

GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link
DNT: 1
Connection: keep-alive
Referer: https://bafybeidxcyu5htexda73vg3oz6ovloqreq32odbjhxnc6d7yjha37gu2zq.ipfs.dweb.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 08:39:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 10/31/2023 18:48:44
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e63a1af98ee95c7421c12c1ba73695ad
cdn-cache: HIT
cf-cache-status: HIT
age: 73316
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830afa3bdbdab511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash