| cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js | 104.17.24.14 | 200 OK | 4.5 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery.mask/1.14.10/jquery.mask.js IP104.17.24.14:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text Hash053305c2b293c27c02523cda42962c09 556b0af7346b9e21a8eea1be8b195b563169ecd5 be483938eb34538b970684f72e312f62652e84b42b7ad86953962d1ce2217c44
GET /ajax/libs/jquery.mask/1.14.10/jquery.mask.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 4517
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-4e98"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 765682
expires: Wed, 30 Apr 2025 17:48:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7%2BQRVSd0Y50TiUhzplU8gDJY8xszAKakCqG8qfa6dPsIbF6hHgG8gWksRmQVcZcGkQgTTpvDKUPsQMKKQa60mU%2Bogdlh8YGUPH0%2BQgEZw5TCW2aWtjKZFt%2Fu0OvarnFVWqMVHf8y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881bc24feb6556bd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/css.css | 188.114.96.1 | 200 OK | 938 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/css.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
Hash109ea4f94a8e5400c07e18fb3c9e6a74 1dc3685358dd73ff638678bd0edb867510988d68 be7a3620aed16001114ce273dbc335f61834f92aa58152b2cb7d56a1577d4d47
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/css.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-c51"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pZdNRAt%2Bxf42%2FdoUVj8%2FNNFbjdGZrwH043VxW%2FC74wG8d%2FyERiKIWOk952TToMWwnl%2BblZkO2b0uvpFcYic%2FahVbSW5WBGNReWy9UyLDTEfXXCtMHqGLevt4J7McMcsvRSamrmNF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f882eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/icon-message.svg | 188.114.96.1 | 200 OK | 2.1 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/icon-message.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashbedd5972d22c5b85fdc832c38388b485 63537baf530e01394c646e02acb4018a8e3ac2c4 ae0b6f3c2a5ca59f54578f851cec41b51ed0e6b71b4a65d500e55158d98a6f67
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/icon-message.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-113c"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JCr5sVGbqLbj9Gt4VCWFsVqU9o22WxmwX2zk9ALq2sK3mlZz7c1tKq1Zcnq3rq6voQGqlPPmWFrnLjE6c62Gc2Sq3OKyJ7wBf3UXwYVGyrMVbf4t%2Fkp9ewgFX0kTrlC66sSM09L2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa861b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 | 216.58.207.227 | 200 OK | 7.9 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 IP216.58.207.227:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7884, version 1.0 Hash9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anpost-fees.biz
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 17:55:04 GMT
expires: Fri, 09 May 2025 17:55:04 GMT
cache-control: public, max-age=31536000
age: 85991
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 | 216.58.207.227 | 200 OK | 7.8 kB |
URL GET HTTP/2fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 IP216.58.207.227:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7816, version 1.0 Hash25b0e113ca7cce3770d542736db26368 cb726212d5d525021752a1d8470a0fb593e0c49e 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.anpost-fees.biz
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 13:49:54 GMT
expires: Fri, 09 May 2025 13:49:54 GMT
cache-control: public, max-age=31536000
age: 100701
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 201 kB |
URL User Request GET HTTP/2www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size201 kB (200607 bytes) Hash7f3468ec916bf84ec2c288c45a06459a 9ab660be539b89efe87e0d9065f5a2fca1b1ec68 da6dc33431ce7ee79690c47a11437b8c7f4087ddfd0dffb7b6a43c1f4c09b098
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQIOvXVpbYgHbBFXDYCUs0z5%2BzaMPXJJcwlE5sZUrgGy0mhmKc3nTKJw1gYVnNo%2B7640i2P459WqKrD47k1E6%2FEoTyFrXcmUiNc1h9uEVB9THsOm0PKPx0jTmcQ4O8tdfFA%2Bt8TU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc2523c37b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/arrow-left-white.svg | 188.114.96.1 | 200 OK | 811 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/arrow-left-white.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash9f05e0532caeea9e8ae299c9f67b6a17 193253f7b885e4edf6fe90ad9a1c3b4127d51ffa 93aff74ba57535ceeae7f3ebc57fcfbac1ff63b7ff194608be00befb1422ec08
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/arrow-left-white.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"239-603aba4984f00"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=13pTwM3oDh5HFx5ToGD3Js7rcyIE3oMVLZZHYGOOxjLLvSz9qxPrq15ZERasS0BOhfJpUmplA5tBDu%2BmOKWiK7MYtuu6CKiZRijTg2BqxIakTx3eB1ywV2%2FBo8%2BGb0kvkAkMpLYE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa85eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Bold.woff | 188.114.96.1 | 404 Not Found | 40 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Bold.woff IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
Hashabcda00252f10729387d077610fb3867 a4ee8eece5446ec89de84a8a431cbbbbce3ceeab 4095dc9f0cae1268bc39020b5ba6620982d408fbcb44524fe617ac999fd2b950
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/webfonts/AnPostSans-Bold.woff HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 10:50:56 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9tdjIJocjhQjwEExijm2bW9mzHySjgmMIk5hwPY3b29ARwxPHtG3T2hhs5AES9a2M1uZ082C%2F91fuFeZKMepH6PFpSroSyhGoFp%2Fu%2FfPgekPEA7OSjMXshcsv7g3Bt22MVg6Da3M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc253ae47b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Regular.woff | 188.114.96.1 | 404 Not Found | 6.4 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Regular.woff IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
Hash8e6b4afc0948dba863ac98481d5fa066 994cb6f0dff61f4321c8aa5abb0aa81a4f9a8039 8142bebf0fae4588bcafc472520b8bda53a628057c45bea1981a6e623f3a2d2e
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/webfonts/AnPostSans-Regular.woff HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 10:50:56 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZSNL%2FhBYyEwExwr%2BEEHUuxHJS5txhfy8aU4qEMch1fQFw%2B1zSEWo1MWi0e9grqLiDr%2B%2Fnw99nLD2GmkhIUtNwjOVbHgUX8L2irWIT6L2PE%2B8LgUyzKReWLv2j8bvfKAtYNvzz0w3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc25639f9b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/instagram.svg | 188.114.96.1 | 200 OK | 6.7 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/instagram.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashf87461f18f88abe2512ab8785e35bb8b 03f52e2383b24298e222bb9806daee9ee09921ef 9fd317d9a4a1a22498074ea1380f3faa4828aa188409a15d9f6a46c06e730c12
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/instagram.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-5e0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6SIfwUeAX9gRC28GNRJi7%2BxsvdiA8VoEp%2B4kNd1QoigAMR6WMduk2Uul6f9hPvH4H1K%2F25tzD0XjpQGxVkG6ZZNVyZlcGHqx6vpef%2FfVIYK9tJUjn6cyo2MgCnVLrIUh3fzc48NK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb873b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/sources/html2canvas.min.js?_=1715363295139 | 188.114.96.1 | 404 Not Found | 7.9 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/sources/html2canvas.min.js?_=1715363295139 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text Hasha943672a32297727bab01c3e76977550 3a667c4b7a457ef6c586cc581d533c128737bf53 b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/sources/html2canvas.min.js?_=1715363295139 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 10:50:56 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pAGZmaKQpeplcAMvdg4NdW5S%2BLMAlhQoGQF6jjzcuAnLXrJ8IrlmXB09vSVZgPkAfFK63s4fG%2FReg6uWwWFfsAEl6e%2BcbhYpYuFVKHZdIlGBB3NW5Xs%2BmrZeGvjoSbHqsa4xKoH0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc252bcd6b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 211 kB |
URL User Request GET HTTP/2www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size211 kB (210891 bytes) Hashd5966b03fffa97762d2625a6ce9010b5 76cb8423157e68190274d0508b9c861ef89bcb15 9f1568f9888612a24616931b8b42f28ad1f4b236f95b0673ffec2dc6188f98e8
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R9flzSQn3dNVm%2Fo36nm956x6AY8Z5Y6KByOOkN0VH28HKLnanhUvjTdYlH%2BAoS2z4U8Pp%2FTUcQJLcjk1JAkseAuJdhAl%2FEnkKofI6XMHQV7g6IjGV3XtkPLH5lZR95cOfDu4H%2Fmc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc2524c57b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css | 188.114.96.1 | 200 OK | 714 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
Size714 kB (713974 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/core.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-ae4f6"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TbMsgHJKo1313ezryIDOkKnq5w5rNfGq%2FXTtq%2FmWj%2B8JXsebpt6Sp9CmXGzhhJxmc9mQXoeb5H%2BSWzKgmbQ5AH6NENMno4H2CFFUhNr1vn%2FmmkjUCjivbu%2B32hyO7y5IyYnTH%2Fms"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f883ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 200 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size200 kB (200104 bytes) Hash2da5351b6b650ac49b8b452299b5f83b 20b487c0faef2fc03bcdc7d55922c8cb812696db eec9bf44d677eef3d3b5c64fd94433f0c3f6d9468da57a40ffd4a2c344d9cefd
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQIOvXVpbYgHbBFXDYCUs0z5%2BzaMPXJJcwlE5sZUrgGy0mhmKc3nTKJw1gYVnNo%2B7640i2P459WqKrD47k1E6%2FEoTyFrXcmUiNc1h9uEVB9THsOm0PKPx0jTmcQ4O8tdfFA%2Bt8TU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc2523c37b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Bold.woff2 | 188.114.96.1 | 404 Not Found | 808 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Bold.woff2 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashb45bdabc5c2538b0c4e5f352bcdfb585 5a97ce87ce8d3d86a043c1a5e68e968e20a1e146 c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/webfonts/AnPostSans-Bold.woff2 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 10:50:56 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R15dVP85hJO1Oxpd705YrRGSiIN9XVl0r36RrBim%2BsDiK%2BhHeTS%2FgrE8DliTJmP3spfK4NfNkXMuoqp8ds6Jd8D8n3yXxPonJshehb4GiCZ7C1LAJ6Dz0LRjKH1lk8Bw8dgoTbpz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc2525c62b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 201 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size201 kB (200876 bytes) Hash680468b3343e59def881a0cb4432ca72 9d74d776a16e1d56ec86ece5546b377470ae4ad8 8fa55615d1624452ac9d17c9965b198d143cc431b38d5c0b94dd31b28e4558f3
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oADWhsJIhn4Mb%2BLPjMs%2FcpJYGaJqvio5wU9ygHSzDNkawT8UZyJqAqyvODmD505MBMGrs4PkV67ptlXM7VFKQH4VdfkZ0BPayXXHWBT6osT%2BlaNEwoATZemc88LObZwvQuxrWYhZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc2542f11b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/announcement.svg | 188.114.96.1 | 200 OK | 3.2 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/announcement.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash929b4522cf3e20678e581540568736cc 976ae09c227be261e857d7a08dbd3dd5ba152703 4356cf4e65c6a15a1c7617c31b6c97dccef89642e183286ea3e5eaec78068234
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/announcement.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-ca2"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ck0f1fcy%2Fl9UubpkD6bA%2BaVEYmiyUwlIybyQvYFyx7iSo6Uo5khQC24%2FgRn6XJQrIUumwTn0hNOqtBFwfl42HtbzCwFmATGNq%2ByKMLaV1CvXBdJ7WVS6Jtplnf8kBcuwYgFCdJak"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa862b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/facebook.svg | 188.114.96.1 | 200 OK | 811 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/facebook.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashf2e989f0dafb842cebf229532c958089 f2e886fc62e8f0da151c64836654a74f4d408839 77625dbcd0f3bf99cd187ea489d73c890789469f4e75e1240a323c6f5610bbc8
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/facebook.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"32b-603aba4984f00"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WlZny61HHjZM4tQohbDifXOe2iHjMxaRqe2l6PRwkkOmRYo%2FsVljTgic8uzipSqpvmXy8KsD0zwQlFtAQp2IgSfwxTXw9VIAVIuDZbV3lr9tSRfzC3k%2Fjc%2F0rnG6x8CG80nUsee5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb868b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/sources/jquery.mask.js | 188.114.96.1 | 200 OK | 18 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/sources/jquery.mask.js IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeJavaScript source, ASCII text Hash219d169a80568884a3d6baab3e5e7def 61d00104de8c972c820cd9b527d8e2edb30e5c4a cf1f0d954cbbbcb32d170b1ff68c5b082a1086f34f2bbee825ca88b7c9fb213a
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/sources/jquery.mask.js HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/javascript
last-modified: Sun, 04 Oct 2020 04:33:02 GMT
etag: W/"5f79507e-47fe"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uAMjkPptV%2BPi%2F0K0ixcGcZajflM8c9FMfhx4xekhtnsav3o4bQR9AOCt5Nt01wZUOSkq0aKiJuMIduWtvRJPTxOxdyATJW5PFhG6LGSIoUL6NIJtGDXrAIjy7UnCKmckj7bvwing"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb879b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 200 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size200 kB (200242 bytes) Hashd69f7e38703fe57bdb41f669fd3a5556 2de9be45f9e9bc55eef2350a388a0d15b7133c02 9b499065f8570f8029aee8d3f649407310eee0dce6c460002dd4202824943764
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R9flzSQn3dNVm%2Fo36nm956x6AY8Z5Y6KByOOkN0VH28HKLnanhUvjTdYlH%2BAoS2z4U8Pp%2FTUcQJLcjk1JAkseAuJdhAl%2FEnkKofI6XMHQV7g6IjGV3XtkPLH5lZR95cOfDu4H%2Fmc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc2524c57b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/f17.min.css | 188.114.96.1 | 200 OK | 3.7 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/f17.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (3667), with no line terminators Hash0cb17f41cb8cd0c31661e4b5c5090889 88d642d93abff9a4463e4aef531058bb66838bec 77334bdbc4a9162a18be69f0d1414fa4755142ea735c3f7c531288d44d420419
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/f17.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-e4f"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k34WTAEDOm1siSate66AXiJRSWvsdTw1O0mUGRxsTure12URJETZq84o41oTKhj5lSPYJ6Bsd2KKHnFVJDk51szFHVdyv3cQ%2BRZRL5kDnDpZ1EsLne0LCQq27gdHFBvCnPR3Pb%2BI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f9841b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/magnify.svg | 188.114.96.1 | 200 OK | 598 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/magnify.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashe794704b87a6dd80a82cdd3b2d59fd40 dfa04d384814f27039bed6514cd22280cc469607 a1754a704b3c6041c1ec2c7d676c48c58747eac18a33404855afc1e0bd2ceb25
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/magnify.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"256-603aba4984f00"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wv1IMkQF3ff%2B1M6vyNSJkNLUxbkY49xNERB49Tny1j49TRXchfV6mFE4q0uJ4qZAZJDKZ4jaVE47LAjKDDHVq1N%2FCCllRnHU0wausft4iPvhU80sSHE3%2FH2lGpgPJaCtH2MHnuce"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f984bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/twitter.svg | 188.114.96.1 | 200 OK | 1.1 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/twitter.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash35c9ea058a36ab5ab540a4da7820f8ea e0b926fc1074d328693af260982b8b4c98581ab5 2d78342e6818b9cb90e374118130756cc56287d718193a2a58387840168a77bc
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/twitter.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-451"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jijbuhFMa9IAykYwHpcckSkLsDh3fYyAJ954Vt1MvCyFoHeTZ%2Bjt2prgQQkl6CC%2Fd9QDOaf5klAM6Ve61M1SjCn3V6kqDfH3xHfAIbAZaCKNMaruS93izeWiHij7O%2FYJOrYkAZCb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb86cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/youtube.svg | 188.114.96.1 | 200 OK | 902 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/youtube.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash6bd43c4c034f0c2541c89a1caf2bdf28 ae5bd15ec86ab7de1c418f0683d7d65fb14796b1 9f1559651f7497e74ac87e3babb5cd7d6ffe977be3bc19bdaee08cc505b17cfa
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/youtube.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"386-603aba4984f00"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TL2HRUYQtNa1743%2BNWmmUhe2LcmKlzs3t5MqrU1yKppCTHq9p1wAEC5tBVipVtx8tZ2%2BLPKO7l3AmgXpOt%2BzvE0rD3UAXcgqWAGfavyBha4OC5nUUrA8fdQc0uijAtecKKlVHcKd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb86eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/f15.min.css | 188.114.96.1 | 200 OK | 1.9 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/f15.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (1945), with no line terminators Hashb9fa72a10180253d626c597f1343b993 80f223b10a0f5b37fcfbf88a0e7bbb459268cec7 b07456bec3bfd9facfdcf172509ac2d1ea1934c4ae0c422d7a8ff1bf3c284832
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/f15.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-799"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GQh%2Fh0M96inv5mA96V5Gmq5Z9rWyKgFcYh3TYfD6Ot%2F1W9vCxGmuPtlnatgmE6IPCu00n%2FR23JS9wQzc67%2Fr6LOMrpT8egiq2rBqz7xsFNn1i3WyPtohJbvQC337UtKr0d1NO1Ly"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f983db512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/sources/custom.js | 188.114.96.1 | 200 OK | 1.1 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/sources/custom.js IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeJavaScript source, ASCII text, with very long lines (1178), with no line terminators Hash45298805be6f4f03f1db11e226321e80 9f8e2606d5a64cefd15b967bcedd62b80c0dcc10 d4d8a978b94b1163e13b8440718dbf9d4263c48892e8b3130945e2ed9d831e64
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/sources/custom.js HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/javascript
last-modified: Thu, 26 Jan 2023 20:01:50 GMT
etag: W/"63d2dc2e-42e"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BsvszgiiquNBalmcey55Bl7t5hg9fmWYUP%2FXr4DJJPwTRX6%2FJc3ErKfy6tNaMb22F1DHNeVh5KVsjRBYlz75ZAzqcIpiJrp%2FozwBzYkK45mOOa3oaGVSWK7Pq%2Bk0JhmglBrvB%2B36"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fc883b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/m18.min.css | 188.114.96.1 | 200 OK | 28 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/m18.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (28384), with no line terminators Hash30e1b1d1fe0797804e76a42eb02c8fb8 74afc2b6290850dd2107bc8d0dc2fd2825effc8a 013db3f74bfcace16da0bea1211c0e240d85f746c10d9e7a2826cb4a100c684c
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/m18.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-6ee0"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=en0yQrFm00upyUfTnRrzdx6Eo%2BTynLTdFY3cGovtbUj9tk1fqV8blIadiOK1dun73O4teX79sc%2FexQ7AJ91OjTgzKLNHB7%2BpUtWPphrcG79QwbCmNSnAoBcCsalVUCzvxcH3s8HJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f9843b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/m13.min.css | 188.114.96.1 | 200 OK | 4.2 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/m13.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (4177), with no line terminators Hash53a008101efbd175eba085b229060a85 5daac847abad7d25130afd06ed1a64bbee18c54f f789e1b48cfef5a32d5c55472d1e9df8ca1aa6c0325e793c1cbd5a86df964b91
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/m13.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-1051"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qXHK5uPeN7%2BcTGeWUGQWsrKn0NlPEsJzmG2SYjmRVZrQZOdYSpQX40NmS4fcoUJLTdm8l7wvDXL45sdxBtaKZwQyDzRvjBu93I2mI8YQ5X3Ki9Ut9utK9A5JZSq6ORemF%2FnGG0ia"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f9845b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/rocket.svg | 188.114.96.1 | 200 OK | 3.6 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/rocket.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash7e5ff61d24ffaa6a312a7c96eb79c2ee e2f4a4a70252ab2fcd3635957235dbdddbef252e 358bcd51b6df9f269261ac58fcb4b26b15a3c002d4833ce8bce649bd1da6496b
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/rocket.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-e0b"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DcirhZ8yS%2Bc4OandqMsa3LV4lpxF4HwB%2FaVx%2BUMUXSqMX9gqHsb9TJRNWHe1oz8riRvAeDrA3mL3V0i4Yms97hMn3EKNfbJc2Udo5BOdeMJfCBWD%2FAFPN92OQw0e%2FBlotr9fEreb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa863b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 200 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size200 kB (200274 bytes) Hashe1d084740fb312ceef9833d5f45bf8a2 024a1c6be3f8edce2986c4a06f762dd2e63918dc b0abfaca7c31e4cd4fa6066f864aef85a01dbaddacd4d740f165074388d8912d
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kerBD95cNlt9J%2FcWDJ7%2FVnMIQ5vQrjGL6vHYtSg5CAIIAkDRHhlr0dkJejGRqJX0ss1vUqgxo6NtAtR%2BMV9QJRirx5MPlCY3hCqxHL%2BuFAs6k%2FHuQ0ZF0el%2Fg0Fo8xEWEhQLpK36"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc256daf0b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 200 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size200 kB (200470 bytes) Hash9688efd13ac7815dbb6abc96c613adb1 d6e6998c94cf8a6caaae367f98edc476c93a52b3 56d87078710d32bc7dfd2f636b990129d6ba9732fb4870f7252d0574a64e056d
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:16 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MVqpb%2BWXFrY4qBi9LhcQUNKhImpGh%2BI7g2ux%2FlS5QJ%2FzQOi9v0zeCtCg12pqxw9%2FDALs5k4omXNlHl1ORk9lys%2Fj0f0XTEsUQ51Iq6JMOzdY8YP9Q9hP1XnE7hbTF8jyL7Qa%2FZI%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc256daf2b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/common-deferred.min.css | 188.114.96.1 | 200 OK | 203 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/common-deferred.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
Size203 kB (202739 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/common-deferred.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-317f3"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dzK6I2NkhkB9tW8ADqPPVAGq4TLFN64B9XrcDVtI1GA1rzMaRG2cYXRqapR70Zjf8h%2Bs7ULVNwIDQ%2Fk%2FtYow3R1Sw%2FmcJuDjK2TLul%2BCSoXCMsA38%2B9S%2B0%2BFMicLTj1dORAN%2FjPn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f8839b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/anPostLogo.svg | 188.114.96.1 | 200 OK | 66 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/anPostLogo.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash727eb67120c0a7c3f1f768463285787f c7d61bdbe221acb5e5d53bb8b13d41145b43493f 56070667e7c231cf6d86005febb13929fe5873d327926478c332e5ccfbc9073c
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/anPostLogo.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-10052"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2BmOpZQKh0MZdTZCsgnIAS9pJ1szJ6DeFXJAuWcK3eLDkVW5M6ohL6FKNJBWs3vmP2fKRORRZ8kXn0Iv6L4FZRCdhJz6aAfV2bBjPKvUMEcqa0FPLzq%2F%2Bg7xmRfts%2BjOlrK0szwi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f984eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 | 188.114.96.1 | 200 OK | 200 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (51579), with CRLF line terminators Size200 kB (200439 bytes) Hash6d487f2aefaaee78bd394e98d30f5f00 745401344324800d4e44c98c89268035c9e0ca70 867b61c9be0e91cbb7dd74fefe2b1725ffaf38bcd8a82260cf457b8c06368835
GET /e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.18, PleskLin
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=frVOLKVa4%2F4rmivs0Kxf7tkeOPes78J5JWCBZN%2BrnQEVMc%2Bd9iBkzlvQGOgjNp3dlyuY3Q9m%2FfNqhl6IKvbk7I6gprNa9U19Mr5buJVhVv5oP1jA4XWJsqID18%2Bui%2FYQyInj4EA4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bc254bfbdb512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/f16.min.css | 188.114.96.1 | 200 OK | 2.0 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/f16.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (2011), with no line terminators Hash5ef77b311145751aa131921bd1e38ed7 f8057f7073518d1cb52ab9a05e296845b88cd47f 10f17e3e2715a5f01ade00fc75bba83542ae97cdac968a0da2ab4143c08a07b5
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/f16.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-7d7"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QBNgG9AJl8qIxdSFvkC%2BbG4qenUGnvuzsSgxrQ4QcgKlkmQcI42DZwhXayNphmn43FR7Q5j%2B6FT272DzbSGhT3vt9Z1E33VO4%2FBat0RXG4IZL1ygg2El3EE9UHUJeoxkmr6wQhRq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f983eb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/icon-warning-colored.svg | 188.114.96.1 | 200 OK | 2.4 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/icon-warning-colored.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashec744f9d88c89501d784aee3bb1086c2 a5716e3d3a66266886010860be0cd44606031bf8 192fe3013a57b89f5be38b2186cb008670a90ccd0066756fc554e7a41789fcfe
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/icon-warning-colored.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-982"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fn3rgMzlL0%2FPnLi3lv9wfYqbrFJfKNdN%2FYbbMdEAbY8ccVKeoPJCAI28O7EcJFziJkKhJSl8sXegw5K7UirHF7R8HTSS%2FxzqudJMBGMWwekX2H2nkI3A38zjB3uJYkX52BtGBGqW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa865b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Regular.woff2 | 188.114.96.1 | 404 Not Found | 808 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/webfonts/AnPostSans-Regular.woff2 IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeHTML document, ASCII text, with very long lines (866), with no line terminators Hashb45bdabc5c2538b0c4e5f352bcdfb585 5a97ce87ce8d3d86a043c1a5e68e968e20a1e146 c96189c857253fcdbe13dfcbc7f919050fae21ccb7116c3078ee3c8d8d0f12c7
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/webfonts/AnPostSans-Regular.woff2 HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/newassets/core.min.css
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Fri, 10 May 2024 17:48:15 GMT
content-type: text/html
last-modified: Tue, 07 May 2024 10:50:56 GMT
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k1cAX6f3JGCXUlyTY5y0OiOgcFlQiA2mu485x80Cx5K0RE7dDHEhrKobdVltWKAVwDoVXr8YBQmBGGFud4CsqZFNXH4fTzxEBEUr%2FzjRyC30WDQLkrOAZZO9kRYCF09qFvfDysKA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc2552899b512-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/f14.min.css | 188.114.96.1 | 200 OK | 2.3 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/f14.min.css IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeASCII text, with very long lines (2342), with no line terminators Hash037074a457932707919a9b3d74a2b2be 969c6d1d5ed19bd74f8579bd2485c4cb88d6687a 1efc26b37f025ae4d22e31da60bd918445d98d3c317948ba9729cb7571f691a8
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/f14.min.css HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/css
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-922"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DaqMLIiCZ1YavezrRisiGoNM%2F4HOPnit5OlNR%2FKUKBvnlrgnX2VOY%2FLjv9rKbwziYNX1QOxuiysA87lZzTgx93hpz%2FA77e9y2lCrhMyY7OFzx8WIlTZzRQYDCHkN8sa2naipymyv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24f983cb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/search-doc.svg | 188.114.96.1 | 200 OK | 2.9 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/search-doc.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hashd79de439ce90bbb4bf4d0f1128cae51e 158c5df4ae61e6e29194dfbbb5fb497991c50afd dab8f60a4bcef0a27e832430a6b25929fd72bbdc50f16ee84ec360508bd107a2
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/search-doc.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"64e7625c-b24"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NvWKxK%2BSRAnbIp%2BjcyZOetEmLvT6yPSRT9fbPzGJmBy0WwRgeOKF7UH1oBoMP4b0jYhKc6X%2FW0GmqGCINU4ifUoCb8wVU7tpDpI9FXZmNWCmgazko1cmOT6BoW%2FsFcWQbqRK4Qeb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fa860b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/newassets/linkedin.svg | 188.114.96.1 | 200 OK | 849 B |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/newassets/linkedin.svg IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeSVG Scalable Vector Graphics image Hash8df410fa2a2a87e77f81bac030fe33fc 642e706d06716779090df4ec5f2c02832b82bc56 d076bda44d6560965462a526911bd8e7441d858d14d965d84c0398e0fc43f91b
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/newassets/linkedin.svg HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: image/svg+xml
x-accel-version: 0.01
last-modified: Thu, 24 Aug 2023 13:59:56 GMT
etag: W/"351-603aba4984f00"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2FKgDfk%2BY%2Fsx2HhKsTncChQruslpIlkhxFelDTYioYa11EfkMhTXmmt6LTRxTSZrCsKCWD1uLNI7xxYpM57%2Bu6J1tjOV9n7Qeg7qRG4ySQAQWmfpfDqycFURps1vXNy4fx1mbEyM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb86bb512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.anpost-fees.biz/e/authID=KLHwY/sources/jquery.min.js | 188.114.96.1 | 200 OK | 90 kB |
URL GET HTTP/3www.anpost-fees.biz/e/authID=KLHwY/sources/jquery.min.js IP188.114.96.1:443
Requested byhttps://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6 CertificateIssuerGoogle Trust Services LLC Subjectanpost-fees.biz Fingerprint76:53:A6:37:E9:E2:94:AE:62:77:13:17:EE:BF:0E:59:AF:14:56:C4 ValidityTue, 26 Mar 2024 18:17:21 GMT - Mon, 24 Jun 2024 18:17:20 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | OpenPhish | phishing | An Post |
GET /e/authID=KLHwY/sources/jquery.min.js HTTP/1.1
Host: www.anpost-fees.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.anpost-fees.biz/e/authID=KLHwY/tracking.php?sessionid=a276db36a97eba4c98b0720c3fe06cd6
Cookie: PHPSESSID=ace8aenk82fkaaj2m6ogo5tid9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 17:48:14 GMT
content-type: text/javascript
last-modified: Tue, 18 May 2021 02:35:26 GMT
etag: W/"60a327ee-15d9d"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FmD%2B%2FgPX%2FgB18OckofddbaeLcRIBeMe3Hrz9q9xfgfLYwzVudNPKK19LHxwjX8BGE1EiiTAXekKUyq957dGLzLz0meI%2B6ivV9Igt7LplspE4TYf2ZiWf1H0rvlx9RLTvF46A9DIJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881bc24fb877b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|