| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png | 162.159.138.9 | 200 OK | 2.2 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash148e7959884334e6a7dd6360822e97f7 dd6d15464e25c7f9cf35e6990fc8c4fc64c04665 868a512d1fb675ef291cadab0f743166effad787bcb96711c9185f636c8968c7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 2150
cf-ray: 880ad4da6bc2b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="logo.webp"
etag: "63705b5d-296f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:05 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10607
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rlkeJt0JSQcX_4.1pn6404R42xeXKQP73LOPz_C8oLk-1715185796-1.0.1.1-I_48kIcDkW4x8c5HmYY8yutwmxDFd6IHSAdNLZF8v8qB5Qnu4W8kAnLkbdFsa6e2KALtgK2M1175wYt2sGecCQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=gcXvkbln7K0yfD0vD7Mcr6KRY5qJ9_lTMhqg1ivWhV4-1715185796305-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf | 162.159.138.9 | 200 OK | 174 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeTrueType Font data, 16 tables, 1st "GPOS", 17 names, Microsoft, language 0x409, Copyright (c) 2010 - 2013, Matt McInerney (matt@pixelspread.com), Pablo Impallari (impallari@gma Size174 kB (174028 bytes) Hashbb5ae98e4ce1a64042093dc235c305ed 0c8681407d5de2de363187e7911e790d34d808c1 67544b051079d750900856631013bb2c59da3b92ef45a8eeacb04ffa03ca48a8
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/octet-stream
content-length: 174028
cf-ray: 880ad4da6bb6b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "63705b64-2a7cc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:12 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1L8kjzv3khIiwrSSSkmUapnsCLwCVmDzgbxqsh5FF.s-1715185796-1.0.1.1-LpsuToTPDdCVbXa6K2UrMfoZUN2VJQeTJ2KSqxKogim0gOKBAWoBiwLXMMZ9tZS0RIjn._BJNKZ4Y_KIZow0DQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9SG47Oh7ZKSB8YHTS3h58oOnevtVwnuHgSMoxfagBTA-1715185796308-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1) | 162.159.138.9 | 200 OK | 16 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1) IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashf24a16efed7b4d060aa639a86bf9aaa0 095befbf49a23e215bf21d27646797470e5a8dc4 59695618c346e1e4a719d56f145686a2273c4248271fe58322b59dcbc5ac7e91
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1) HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/octet-stream
content-length: 16267
cf-ray: 880ad4da6bc1b50c-OSL
cf-cache-status: DYNAMIC
accept-ranges: bytes
etag: "63705b4b-3f8b"
last-modified: Sun, 13 Nov 2022 02:49:47 GMT
ec-cdn-status: dynamic
ec-cdn-status-reason: not supported
ec-source: static
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=XVXH75YCbSFPtL9Do7N9rXFTrC8wp51lI9sZNglujtM-1715185796-1.0.1.1-V.0iORnUeIUxCij.ySlpgpCmFzCnqQ_eijsRJfAXOdhr0jObQ32j2CRs2on91f5hHrgmAW6hvcAljNt2Wx8IqQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UpO401_X.fEAFycOvcmCGLMcQUest4nmvoXizMEpEHE-1715185796322-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png | 162.159.138.9 | 200 OK | 8.5 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeRIFF (little-endian) data, Web/P image Hash21b784a98801eb5763583e620fec876a 92a7fdff783f33c44365f70e7490569eded961a9 cad50c12b6c3cc48d7a270867f8d212146591dee6ebfc479e39bcc4566903a95
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 8538
cf-ray: 880ad4da6bc4b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="delivery-truck.webp"
etag: "63705b4c-58a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:48 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=22690
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=RssvCgnkH_52bTHj1EqqfWPGw.ho1IWk27L98JcUatQ-1715185796-1.0.1.1-Y63aG10tu740syzntmkk__GK4YBSWfEWD8hIBoAtZUxNagBy6VFw6YzS9K.CNw2EjmxpxXbWgHtvmcVth7C6Iw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=mNWrEgL8VBorRBoAPx7HPPnb91pXA8T.9nLDv5uP2eM-1715185796328-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js | 162.159.138.9 | 404 Not Found | 572 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4da6bd1b50c-OSL
cf-cache-status: EXPIRED
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=y4TDPwHhmdA5I6QhWCL.v6SYuMhhdY_WnPTH0kzFmdg-1715185796-1.0.1.1-p5YpWonLI5YsgvLE3rEdpsXmKH4iz9wQFauIUgcimfAGB1JF7jBfbZb_I3SOYUOrga_fmchT8mA291UMAkaEQA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=ET0pGvQDTwHwmhyb4z9pSmqtYCAPQUd2y5W0Bbesw.k-1715185796334-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Raleway:wght@500&display=swap | 142.250.74.106 | 200 OK | 112 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Raleway:wght@500&display=swap IP142.250.74.106:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Size112 kB (112221 bytes) Hash046b8a056b8b64ae99579e5a6ab15860 62eea6cbdcdb55995a20a35a58c3f72d008d4e41 4f7a3feaf36d5749e26b5d6a8d439b00b5326ed75f757abdc37eb11934e8811c
GET /css2?family=Raleway:wght@500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 16:29:56 GMT
date: Wed, 08 May 2024 16:29:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22076, version 1.0 Hash6945abf9da6b789c96b2015ef4868409 bfca3e7cfe2140b03557ce2bf0d26eb3ee488611 9f0210608086c584f54e8716f5900cfe6863365f68309509e46aba09e1c4f4f5
GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:13:10 GMT
expires: Fri, 02 May 2025 15:13:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 20:31:54 GMT
content-type: font/woff2
age: 523006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js | 162.159.138.9 | 302 Found | 0 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Wed, 08 May 2024 16:29:56 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
set-cookie: __cf_bm=hr.Kl2tfz9w70Vcpz7rdVr8BzA7Q3AlAe4cTRrTmBuo-1715185796-1.0.1.1-STiqtrRYGtiTiIJKG4APizMtAcUzrsw7cnU5r0bWF2IC6IQ9lkmpUzxsfkG5.RkqNhx3xEKg5yiWtYTV2FKAVQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4de6a5eb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css | 162.159.138.9 | 200 OK | 19 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasha6b066a5cb340c5a56afee6b33458a95 9c8fa908ab972c5424de3c77687f41b5f6d7b4a5 d5ea466ccfa1e38f1ec26057d28eb1bbf1de7db4f9cecd7c559ca90333440383
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5bb0b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b68-180db"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:16 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=98523
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=14Tau3qMAE_Fm86ue9d.3HV1PjD0mUsmzuIzJ2h..No-1715185796-1.0.1.1-Fyb_VrMt5LXNjuPYLwlV8nWCBM54o4CNZVsWK2IGkzBsddkVuSJvfUpKlB9lZkac9Uze3VR_ESFaR7WZwS35IA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=iKFXA_Hk1PkxzDLdVoPAZlnj.CodDNfynuCfmA00q7s-1715185796288-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ajax.googleapis.com/ajax/libs/webfont/1/webfont.js | 216.58.211.10 | 200 OK | 5.4 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP216.58.211.10:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeJavaScript source, ASCII text, with very long lines (2134) Hash7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee
GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:37:20 GMT
expires: Fri, 02 May 2025 02:37:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 568356
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf | 162.159.138.9 | 200 OK | 0 B |
URL POST HTTP/3zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12234
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:57 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=.JlVKCzKbq5QtY4LaFF5DhmP3eEmu1S5TW1iFcQNDwk-1715185797-1.0.1.1-98Nc06Z9y_wocnqJRcsAcOnA0mv1AsnFltU4acUB4Feita00jGZqJCdn7TICOWQUZONCBFck0RQ15cFR3t1YJQ; Path=/; Expires=Thu, 08-May-25 16:29:57 GMT; Domain=.elementor.cloud; HttpOnly; Secure; SameSite=None; Partitioned
__cf_bm=yejrkBlRI6YWFlMs3C6Ti1gQZG1WGOSRH2HMx8RjVxc-1715185797-1.0.1.1-Hrkko24jTkpFxusg3edyaHIbDjy7rfzEFQoNQNakvs5nlSH0UNx.0kwqMjLfS74.9n7cUjHeE9brmzHo6e8D_Q; path=/; expires=Wed, 08-May-24 16:59:57 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4e0cdceb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/cdn-cgi/rum? | 162.159.138.9 | 204 No Content | 0 B |
URL POST HTTP/3zdrhuagh.elementor.cloud/cdn-cgi/rum? IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1138
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Wed, 08 May 2024 16:29:57 GMT
access-control-allow-origin: https://zdrhuagh.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880ad4e1af33b50c-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 370880
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0 Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:32:46 GMT
expires: Fri, 02 May 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 568631
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21528, version 1.0 Hash6113a25a586aeb6d0d3af5b5b652b973 25619eeae1fe17389310e4d392c427b7711dba44 539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f
GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:38 GMT
expires: Sat, 03 May 2025 16:31:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
age: 431899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 570363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 21528, version 1.0 Hash6113a25a586aeb6d0d3af5b5b652b973 25619eeae1fe17389310e4d392c427b7711dba44 539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f
GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:38 GMT
expires: Sat, 03 May 2025 16:31:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
age: 431899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 570897
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 IP216.58.207.227:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17368, version 1.0 Hashabe083d96b58eb02ada8b7c30d7b09f2 61447d66d13a8c8f4335696777a85c438c46f749 db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:12 GMT
expires: Fri, 02 May 2025 01:56:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 570825
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin | 142.250.74.106 | 200 OK | 4.9 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin IP142.250.74.106:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashb65a4a1615211ec45409a1f96ac888a5 5e24a350cccb2727e87d1b87064d5a349ce1e208 22247d3828545c6f4ebfd73eb4a8c1e0b0f1943a9ea341277fde9428d5905e46
GET /css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 16:29:57 GMT
date: Wed, 08 May 2024 16:29:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js | 162.159.138.9 | 200 OK | 14 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (23095), with no line terminators Hash834d2ecce9a8cc7dba36d273de52b28a a605a1843810a676f6018c8a0072de08b05b7ef5 523eb9b6af99c2488af8dcd1a5cd648902c24b4981195b0d0b9f3cdaa2fd3b7f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be8b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b40-5a37"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:36 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=I83R0RV8LAcVFhixNBJizNU88dZHV3LeA25ivNV.g1s-1715185796-1.0.1.1-ZvJW84VI91tt396oJmVkSLo12RXomU6rhNCzeHIRxtQREU18gispxdnez57_b7kwFLpllRlvoKRloYaWQunRcg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=zglmMPGWP0tzXoiaZfq_P0kdEA.b2jRIM6uv6DWwaGs-1715185796304-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/cdn-cgi/rum? | 162.159.138.9 | 204 No Content | 0 B |
URL POST HTTP/3zdrhuagh.elementor.cloud/cdn-cgi/rum? IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 636
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/3 204 No Content
date: Wed, 08 May 2024 16:30:19 GMT
access-control-allow-origin: https://zdrhuagh.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880ad569aa91b50c-OSL
x-frame-options: DENY
x-content-type-options: nosniff
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff | 162.159.138.9 | 404 Not Found | 146 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeHTML document, ASCII text, with no line terminators Hash40b3fc14254227ec5012d996bf90c4e1 b0dd06eb5a779151151101337889ff09953f8ac0 740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4de6a69b50c-OSL
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=6HZBbXoIHAsV.cIZvm1vpI4.VfvcCrMKsbkfXi8tkVc-1715185796-1.0.1.1-.HIAP7QgEfc2yZBP364F98A2VGFw0W6c0gEqpUZpU17I00JJNPhdATTSWeU_YuDiO2x0K4oQ7j8REOiKe3lnjQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=jm37dqXU2rYaqytnd1x68ttgrYTv6_1XggN2O0yWWxY-1715185796899-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js | 162.159.138.9 | 200 OK | 7.9 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (7862), with no line terminators Hash30282e8ec4d4ec835f9657adb5662ebf fb811c62ddbc1f3b949d21d1da1f23781dc027f3 572ce2a46875edb39b51933ab0daa03318da46c7e790a7abc8f1e817ce4f372e
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
set-cookie: __cf_bm=2sITV_fTSe3ITB0R_n8W2Ge3l5S50kN9LoAwYePkyw4-1715185796-1.0.1.1-ZUuu1.DwMOUe96dPV9etIz9If7cZW0a47qtrdlwR04B6didvchomrFVXcWJnjY5.aDr4o62R0JJ0SECVEW0lvg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4defb18b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js | 162.159.138.9 | 200 OK | 261 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Size261 kB (260968 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be6b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b46-3fb68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:42 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=8EwH4aeK3jyzzyShz7ft.jb5sYvrcOroEsXWq_MWqwg-1715185796-1.0.1.1-ojcDG6e4EZKreil3ewdoZMbVs15kLw2RHutBojVpNKysCJE2ywylLSqUK2KviE2F_wi4iwOKCZvTdXq5NY0zjA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=rxFagg1i1nsxT9cmqNbEtDTlWQ0ajQFkStN4hk5b.Qo-1715185796306-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js | 162.159.138.9 | 200 OK | 845 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (871), with no line terminators Hashbd1f900aa4ef58f6c1f98598ab7c73ae d4b77f910a29f31938ef1b188727d21a9185f9af 8577e30436b417f38dea776cf0de84339b8c16f601227222ae17afe5965f13a5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7beab50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b57-34d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:59 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=bKE69Vku9cL_1pE3RGVYXbTND0egwK0GgIaBPmmMAdY-1715185796-1.0.1.1-9ndmQO8xEqFJ.cZZtDPtHam9EQEY8r_y4YU.GBr964aHRakBb6ttxjc46J6yysPFdtRE0OcCU4uYJsqVd9cLDw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=YfiJ4ckIoY.mQt9NYTklhlCEjSdmtT6CEc8MbIEmWoM-1715185796298-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 | 104.16.80.73 | 200 OK | 19 kB |
URL GET HTTP/2static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP104.16.80.73:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerGoogle Trust Services LLC Subjectcloudflareinsights.com FingerprintCE:62:08:77:7A:C9:4F:2B:EB:19:EA:54:43:3D:9F:10:06:33:69:E8 ValidityWed, 08 May 2024 03:07:03 GMT - Tue, 06 Aug 2024 03:07:02 GMT
File typeJavaScript source, ASCII text, with very long lines (19189), with no line terminators Hash4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192
GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ad4da9d220b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff | 162.159.138.9 | 404 Not Found | 146 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeHTML document, ASCII text, with no line terminators Hash40b3fc14254227ec5012d996bf90c4e1 b0dd06eb5a779151151101337889ff09953f8ac0 740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4dc8f6db50c-OSL
cf-cache-status: MISS
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=lIPWxd9o5ACbUlonPaSQVuU.Hqp5h.Q1F6Nz7vkE2HA-1715185796-1.0.1.1-e6zE1tAdY2H7.e1X1xRUp6k64._DF9rvDM3ONMnp9SQKXVm5jHLbGPhQHq70LPr6GDLb_21wT6yRgm7rRgahDQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=hRPWuBAhLX.pg_mzMGQhquh36UKOKXlOhdRMP8oSdnU-1715185796630-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js | 162.159.138.9 | 200 OK | 102 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (32010), with CRLF line terminators Size102 kB (101753 bytes) Hash660d070837ba7b53c5dcec99f7f94b9b b6fae86591af6f1260f49f52b45256a824096351 bc865ff931d1d97a468a025905eed3bde7282bd45450abfb759da9ac3ae9546f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be7b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b6c-18d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:20 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=b3fSJflt8NNPXOgBrCB9gOxfykQcmJQRRER1CyyUvFo-1715185796-1.0.1.1-8S8cdVQj7uVQl1uXLVENBWqxP1Tvh72Cs4yqp9cpn2daI_8qB1impFVmX3mBwBTc6lOH8_bc2ihb6EI6SCpg_w; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=og1mz8uR2mNeSgkbedJKfd_5yADTf6e06NJSKXvcfs4-1715185796307-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html | 162.159.138.9 | 200 OK | 12 kB |
URL User Request GET HTTP/2zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html IP162.159.138.9:443
CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | DHL Airways, Inc. |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 16:29:55 GMT
content-type: text/html
cf-ray: 880ad4d68df056bf-OSL
cf-cache-status: DYNAMIC
last-modified: Wed, 08 May 2024 02:49:58 GMT
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=LucIhC1nqVWHFDCabyqMuTdcL2lZEc2Fbiuym91xaak-1715185795-1.0.1.1-BvX62DNFy52G_HMEfO4RZT29Z6f_NiKvs.O6Nu69nO2azgtLP9fhD.VsPez047qFAlpHKITdJzQyfLZ4LxQt1w; path=/; expires=Wed, 08-May-24 16:59:55 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=7hWLMIhu4IZayxVSOPCjGtlZb_FfT5MXGPQSQnuJJYQ-1715185795685-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css | 162.159.138.9 | 404 Not Found | 20 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeHTML document, ASCII text, with very long lines (8586) Hash70f659be4c3105abe1cd6a1fd0d2e4f1 a74624bd208eed3b74bf234b6a7f1a72d215499f dd891b8129de549fe9f78b43b519c0e20472cd50dbd7e172139c70c338929c17
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html; charset=UTF-8
cf-ray: 880ad4da5ba0b50c-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, must-revalidate, max-age=0
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://zdrhuagh.elementor.cloud/wp-json/>; rel="https://api.w.org/"
ec-cdn-cache-control: public, max-age=604800
ec-cdn-status: dynamic
ec-cdn-status-reason: status not ok
ec-cdn-supported: 1
ec-coldstart:
ec-source: dynamic
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=HBJCAzr46FuJpC3PJJgM38aMSuKTlPCLzOFxe_FQKGA-1715185796-1.0.1.1-JcA_M5Zq6qgAwn.6nZS3rjUqBS_Gtxlj_8LPh.d7aL5MczJ9MHu09sGKEC2ReiOUQywJ3Q7XkxoSOVajuX_XkA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=FZJynwqV7IorlC2r2rCtl0EEXUaRhqoygYbPBknTO_A-1715185796438-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js | 162.159.138.9 | 200 OK | 1.1 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (1195), with no line terminators Hash2a52c0ae880623240f10d004733ae5eb ed606b8d74a40be0276815f4c91ef966718a16d4 58c2306123793a08d28ec7c3ce38b87fe28de1aaf981b1b8d45a5239cb5d37b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be9b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b49-471"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:45 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rLKR.90VBPXNhIIT4iWl1rkQAdEvjfEyNEHpBo2.pcM-1715185796-1.0.1.1-sY.XpDvdZzqE5r0Iy3DI_ijKSRPMhfSztyZdb8TKqtVC2zPW8Q5WyzuooENNxgQOK47gZZYwt1UKIZB.nkXrqw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=EYkCwILSO96dldt2ae.UiM9woQKX2RTEK73tWQB4D7A-1715185796295-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css | 162.159.138.9 | 200 OK | 78 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (64986), with CRLF line terminators Hashec69e730972214d8bb0fe2a89600ce06 194d53b7d335621ac70cf31a95315acce389053a 72120a1c75da07babdbacd3c005cb6a04149efd51c68383ae5c26a925afc189a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5bb4b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b56-13058"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:58 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=VhTewb6Z_9ooq7w_5DN5hQnOVPuWBYH5fg_Yc215mFc-1715185796-1.0.1.1-zVMTnZgCMDIUV4xyEqmKGCkoXrRZAym7WJ5z36t9d0XJUr7yusnws5x_JPvCcHZ8rFM3xosBWMaFToKzsy8anw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=lwOq74cWoV1E6WuJdnmG3v_MpKDP8UtkAfpqegHnb_Q-1715185796318-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg | 162.159.138.9 | 200 OK | 112 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJPEG image data, progressive, precision 8, 1596x1015, components 3 Size112 kB (111679 bytes) Hash6275aedbfdf293c6484bd5666e80308f 301873f19c0723152004411e5f62fbc2a79415df e23885c4e00866e945b70f7d10f69ed49c7aa345774e3530d855d860d7420419
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/jpeg
content-length: 111679
cf-ray: 880ad4dc7f67b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "63705b50-1dc54"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:52 GMT
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=121940
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1.h7sQ5HKI4SrwWvzXDa026gQpU9RDo56dj7kTWmTeg-1715185796-1.0.1.1-Sofawbh15AQ_ebsqxQlHwwKwdC5UYA9gXQX7oMIS_I_z0HBLwgiGIONUtSUw_ZyTouZovaz.tMvxJaNHl3AwBg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=g3GQ.Oy.1L7FLm.7KgQFghYOuyzr9bmucPmp7IhLp3w-1715185796624-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js | 162.159.138.9 | 200 OK | 2.2 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (2170), with no line terminators Hash11c2a3123010ce341e10c336ffa45dab d78884530352cb09a7a383a27bebedcb24a29388 bef90c40cf2b9a27ff17b0b60644075c56c427ffe2246ee3c5e9fd9359ddba23
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da5b9ab50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b45-f0d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:41 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3853
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=UEjf5o_bfqRVIYO7SxoictoVBYld5ZIZfaFbcQ1crG8-1715185796-1.0.1.1-owJ0iFYmuI.KCOhd2MxXxCC3LhxgxLJfJZa_Sgmz.VyVzn7bcIWuo102UE8jCJGN2no74HpjFUpRdqFnQXkC4w; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9rgIKgb_lSn88s1G8ODgrVF2xZwx8vyuwhBcCZtqbEQ-1715185796293-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css | 162.159.138.9 | 200 OK | 99 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeASCII text, with very long lines (64954), with CRLF line terminators Hash210251cccee53e864a29e22fb6bd2348 2d34ea62055808d9e1e6ecfcc99f8b542ef2270b e3ba7ab57a9c17c5dfaaa6f225c880dd6807fae54ecc3699209c553aaaa5c3cb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5ba8b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b6b-18298"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:19 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=muAZltI3SDgHKalVKFoRZqrtQcaGmMPrcKoN3WJw2ds-1715185796-1.0.1.1-7nVJyYiQrNdpbHlHzYNRVXpmzbtqq93jJy259g2lW.F1QMTwHiNdqDbMImrh3DBVYGbdvruPG5eqs9M4qzsc9g; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=qb4ln0724ZL5qTz1AaBSgu3BUBQHnGpYXuKPu62qK10-1715185796302-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js | 162.159.138.9 | 200 OK | 34 kB |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeJavaScript source, ASCII text, with very long lines (32005), with CRLF line terminators Hash9c58a34f02796276b7e7109af74070cd a895868d27f57e0c1ef4ddf4e50c1055ff66eb15 a076b936e9383ed6f90c614cfd4e9ce57f95481e19fe1d84450926954d268856
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be5b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b61-868a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:09 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=e94e.i3KeAo2a8cUdoUuHBJu6PF6KIo37EmkpnZJuz4-1715185796-1.0.1.1-Wyjb7lw02DCIN3d99XV84.N0pHnzdk2aNjWBao2Q9I98zdGN3h9s7o5WaXqcuG.Mw7xKnptU9ge.neqP0KKYaA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=04sVCYpPJknbCCs9zU6ueUGbCKLuWrvtEcsfU_SH_Pk-1715185796313-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif | 162.159.138.9 | 200 OK | 668 B |
URL GET HTTP/3zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif IP162.159.138.9:443
Requested byhttps://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html CertificateIssuerLet's Encrypt Subjectelementor.cloud Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT
File typeRIFF (little-endian) data, Web/P image Hashecf736e1c8097731a599315d08170c97 f320e221ee99df0a6136f12c089160b683f0a0ac 8069e4836476472d221442ba47c27308f2a51334bf8ed860197d0ef73e12639e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - DHL |
GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 668
cf-ray: 880ad4de5a3bb50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="dhl.webp"
etag: "63705b4d-52f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:49 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=1327
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=myJ8Y1HEl1cNBgfHEb7Wiodr6AnrmIHqHbP9sxNH0d8-1715185796-1.0.1.1-udOGrXWy3qhU98Z.65dnvAHKBCWXdyvhcNqgHimRrasOGvimpXM8A.POO3sNWd0wl7_FHgZEh_wqTUUW1AlGEA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=N.br0LVb.oaLfIueIqmwO1GYrShIgdLLuCop.6A5fYU-1715185796887-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
|
|