Report - zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html

Report Overview

Submitted URL
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
IP
162.159.137.9
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 16:30:23
Access
public
Website Title
packet express- confirme su pago.
Final URL
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Tags
dhl logistics phishing
urlquery detections
Phishing - DHL

Detections

urlquery
37
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-08	433 B	6.4 kB	216.58.211.10
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-05-07	514 B	20 kB	104.16.80.73
zdrhuagh.elementor.cloud	unknown	unknown	No data	No data	14 kB	987 kB	162.159.138.9
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	979 B	118 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-08	4.4 kB	152 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html	DHL Airways, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (14)

	URL	Size	First Seen	Last Seen
	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js	1.1 kB	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:14 Last Seen2024-05-08 18:30:29 Times Seen157 Hash b627c2a2eb3ed44bdaa291d0fc898316 03e1542cffbd078f0a21ad83ad589ce1679009cc d136e8ae0ac9b54bac28578861fac37ad93bd89b14d253e7d9f4a51609858537 Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js	23 kB	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:20:14 Last Seen2024-05-08 18:30:30 Times Seen179 Hash 834d2ecce9a8cc7dba36d273de52b28a a605a1843810a676f6018c8a0072de08b05b7ef5 523eb9b6af99c2488af8dcd1a5cd648902c24b4981195b0d0b9f3cdaa2fd3b7f Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html	627 B	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 13:20:14 Last Seen2024-05-08 18:30:29 Times Seen60 Hash b201513c0278ec41ea7c5ef6a9e8d49b 01f1e02e4a0c5af5508af3ffc0123e4e5fb70b88 d9a6b10b1adfe406ab10beb680272365118f84d0db848ece0cc31a281f279402 Loading...

	static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387	19 kB	2024-04-24	2024-05-20
Pretty URL static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 IP 104.16.80.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 00:56:41 Last Seen2024-05-20 03:03:34 Times Seen2608 Hash 4c980ee97cb5c001b4d19e2895fa5603 2c6fe998aa7486c4becd74cf253bdd82666a64c3 d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192 Loading...

	zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-08	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 18:30:29 Last Seen2024-05-08 18:30:30 Times Seen2 Hash 30282e8ec4d4ec835f9657adb5662ebf fb811c62ddbc1f3b949d21d1da1f23781dc027f3 572ce2a46875edb39b51933ab0daa03318da46c7e790a7abc8f1e817ce4f372e Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js	2.2 kB	2023-03-09	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:24:14 Last Seen2024-05-08 18:30:29 Times Seen26 Hash 91b1658e4c13acdc8b9d1f54462faf5c 7685517809bd4c2694bd6b6bea9f5161ff8ab697 03eae2687c1ef52f34d7f6a20de1c2d5e5f91c5c21f0552331cdfe6d38394bce Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js	261 kB	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:02:36 Last Seen2024-05-08 18:30:29 Times Seen49 Hash 836a446f4b1173eeffc3f441dc3a145a 6ae3d53166f94dd1114522267a47e1287d1b67f5 1e359301246090b9c8e8a9b451d81eb83e04d04d2f98140cb216d3c3acd84cde Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js	102 kB	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:02:36 Last Seen2024-05-08 18:30:30 Times Seen67 Hash 660d070837ba7b53c5dcec99f7f94b9b b6fae86591af6f1260f49f52b45256a824096351 bc865ff931d1d97a468a025905eed3bde7282bd45450abfb759da9ac3ae9546f Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js	845 B	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:22:53 Last Seen2024-05-08 18:30:29 Times Seen153 Hash 8f26c1984eb6fc31f58d073788de4157 ed87fa78deed844a0837f9694be0ae253f90c818 558619a267691a460b410d2f703296b87a44e2fe994b3483740c6e74c8ee8d1b Loading...

	unknown	247 B	2024-05-08	2024-05-08
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 18:30:29 Last Seen2024-05-08 18:30:29 Times Seen1 Hash a9312920253924855bb9ec3a4f8472d4 4c81be1b9742fe925edb2b7488b346c17634e762 efac112f4b07390bd5e94c53e7b44c5d10f68f65216ec58636d4943304164785 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1/webfont.js	13 kB	2023-03-07	2024-05-20
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1/webfont.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:17 Last Seen2024-05-20 00:53:16 Times Seen23307 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html	76 B	2023-03-07	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 14:22:53 Last Seen2024-05-08 18:30:29 Times Seen57 Hash 55b6e3a81dc265a6e8287b7a683d1a91 cbeb4f0a89ea5ca00c938230bbe65b636c2fe56d 0324c0205dc1fe44ebeb36a1fe9dfa8d6e13930d617a6141d6fa7f99d6e3ffdc Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js	34 kB	2023-03-07	2024-05-15
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:02:36 Last Seen2024-05-15 05:47:10 Times Seen89 Hash 9c58a34f02796276b7e7109af74070cd a895868d27f57e0c1ef4ddf4e50c1055ff66eb15 a076b936e9383ed6f90c614cfd4e9ce57f95481e19fe1d84450926954d268856 Loading...

	zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html	1.1 kB	2024-05-08	2024-05-08
Pretty URL zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html IP 162.159.138.9 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 18:30:29 Last Seen2024-05-08 18:30:29 Times Seen1 Hash 283efc67434b8cd73b2fe9ff30e0ede7 8550caeefec410a693bd59610424f7d07aac0fa8 e50074a1c115930ee1b43b1d5c9d25e568f96a8f2a59b7487b5ee1722d76a776 Loading...

HTTP Transactions (38)

URL IP Response Size

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png

162.159.138.9

200 OK

2.2 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
RIFF (little-endian) data, Web/P image
Size
2.2 kB (2150 bytes)
Hash
148e7959884334e6a7dd6360822e97f7
dd6d15464e25c7f9cf35e6990fc8c4fc64c04665
868a512d1fb675ef291cadab0f743166effad787bcb96711c9185f636c8968c7

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/logo.png HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 2150
cf-ray: 880ad4da6bc2b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="logo.webp"
etag: "63705b5d-296f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:05 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=10607
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rlkeJt0JSQcX_4.1pn6404R42xeXKQP73LOPz_C8oLk-1715185796-1.0.1.1-I_48kIcDkW4x8c5HmYY8yutwmxDFd6IHSAdNLZF8v8qB5Qnu4W8kAnLkbdFsa6e2KALtgK2M1175wYt2sGecCQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=gcXvkbln7K0yfD0vD7Mcr6KRY5qJ9_lTMhqg1ivWhV4-1715185796305-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf

162.159.138.9

200 OK

174 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
TrueType Font data, 16 tables, 1st "GPOS", 17 names, Microsoft, language 0x409, Copyright (c) 2010 - 2013, Matt McInerney (matt@pixelspread.com), Pablo Impallari (impallari@gma
Size
174 kB (174028 bytes)
Hash
bb5ae98e4ce1a64042093dc235c305ed
0c8681407d5de2de363187e7911e790d34d808c1
67544b051079d750900856631013bb2c59da3b92ef45a8eeacb04ffa03ca48a8

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/Raleway-Medium.ttf HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/octet-stream
content-length: 174028
cf-ray: 880ad4da6bb6b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "63705b64-2a7cc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:12 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1L8kjzv3khIiwrSSSkmUapnsCLwCVmDzgbxqsh5FF.s-1715185796-1.0.1.1-LpsuToTPDdCVbXa6K2UrMfoZUN2VJQeTJ2KSqxKogim0gOKBAWoBiwLXMMZ9tZS0RIjn._BJNKZ4Y_KIZow0DQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9SG47Oh7ZKSB8YHTS3h58oOnevtVwnuHgSMoxfagBTA-1715185796308-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1)

162.159.138.9

200 OK

16 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1)
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text
Size
16 kB (16267 bytes)
Hash
f24a16efed7b4d060aa639a86bf9aaa0
095befbf49a23e215bf21d27646797470e5a8dc4
59695618c346e1e4a719d56f145686a2273c4248271fe58322b59dcbc5ac7e91

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/css(1) HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/octet-stream
content-length: 16267
cf-ray: 880ad4da6bc1b50c-OSL
cf-cache-status: DYNAMIC
accept-ranges: bytes
etag: "63705b4b-3f8b"
last-modified: Sun, 13 Nov 2022 02:49:47 GMT
ec-cdn-status: dynamic
ec-cdn-status-reason: not supported
ec-source: static
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=XVXH75YCbSFPtL9Do7N9rXFTrC8wp51lI9sZNglujtM-1715185796-1.0.1.1-V.0iORnUeIUxCij.ySlpgpCmFzCnqQ_eijsRJfAXOdhr0jObQ32j2CRs2on91f5hHrgmAW6hvcAljNt2Wx8IqQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=UpO401_X.fEAFycOvcmCGLMcQUest4nmvoXizMEpEHE-1715185796322-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png

162.159.138.9

200 OK

8.5 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
RIFF (little-endian) data, Web/P image
Size
8.5 kB (8538 bytes)
Hash
21b784a98801eb5763583e620fec876a
92a7fdff783f33c44365f70e7490569eded961a9
cad50c12b6c3cc48d7a270867f8d212146591dee6ebfc479e39bcc4566903a95

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/delivery-truck.png HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 8538
cf-ray: 880ad4da6bc4b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="delivery-truck.webp"
etag: "63705b4c-58a2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:48 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=22690
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=RssvCgnkH_52bTHj1EqqfWPGw.ho1IWk27L98JcUatQ-1715185796-1.0.1.1-Y63aG10tu740syzntmkk__GK4YBSWfEWD8hIBoAtZUxNagBy6VFw6YzS9K.CNw2EjmxpxXbWgHtvmcVth7C6Iw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=mNWrEgL8VBorRBoAPx7HPPnb91pXA8T.9nLDv5uP2eM-1715185796328-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js

162.159.138.9

404 Not Found

572 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
572 B (572 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/webfont.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4da6bd1b50c-OSL
cf-cache-status: EXPIRED
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=y4TDPwHhmdA5I6QhWCL.v6SYuMhhdY_WnPTH0kzFmdg-1715185796-1.0.1.1-p5YpWonLI5YsgvLE3rEdpsXmKH4iz9wQFauIUgcimfAGB1JF7jBfbZb_I3SOYUOrga_fmchT8mA291UMAkaEQA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=ET0pGvQDTwHwmhyb4z9pSmqtYCAPQUd2y5W0Bbesw.k-1715185796334-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Raleway:wght@500&display=swap

142.250.74.106

200 OK

112 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Raleway:wght@500&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
112 kB (112221 bytes)
Hash
046b8a056b8b64ae99579e5a6ab15860
62eea6cbdcdb55995a20a35a58c3f72d008d4e41
4f7a3feaf36d5749e26b5d6a8d439b00b5326ed75f757abdc37eb11934e8811c

HTTP Headers

GET /css2?family=Raleway:wght@500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 16:29:56 GMT
date: Wed, 08 May 2024 16:29:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2

216.58.207.227

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 22076, version 1.0
Size
22 kB (22076 bytes)
Hash
6945abf9da6b789c96b2015ef4868409
bfca3e7cfe2140b03557ce2bf0d26eb3ee488611
9f0210608086c584f54e8716f5900cfe6863365f68309509e46aba09e1c4f4f5

HTTP Headers

GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvoorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22076
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 15:13:10 GMT
expires: Fri, 02 May 2025 15:13:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 20:31:54 GMT
content-type: font/woff2
age: 523006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js

162.159.138.9

302 Found

0 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Wed, 08 May 2024 16:29:56 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
set-cookie: __cf_bm=hr.Kl2tfz9w70Vcpz7rdVr8BzA7Q3AlAe4cTRrTmBuo-1715185796-1.0.1.1-STiqtrRYGtiTiIJKG4APizMtAcUzrsw7cnU5r0bWF2IC6IQ9lkmpUzxsfkG5.RkqNhx3xEKg5yiWtYTV2FKAVQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4de6a5eb50c-OSL
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css

162.159.138.9

200 OK

19 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
19 kB (19280 bytes)
Hash
a6b066a5cb340c5a56afee6b33458a95
9c8fa908ab972c5424de3c77687f41b5f6d7b4a5
d5ea466ccfa1e38f1ec26057d28eb1bbf1de7db4f9cecd7c559ca90333440383

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min(1).css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5bb0b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b68-180db"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:16 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=98523
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=14Tau3qMAE_Fm86ue9d.3HV1PjD0mUsmzuIzJ2h..No-1715185796-1.0.1.1-Fyb_VrMt5LXNjuPYLwlV8nWCBM54o4CNZVsWK2IGkzBsddkVuSJvfUpKlB9lZkac9Uze3VR_ESFaR7WZwS35IA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=iKFXA_Hk1PkxzDLdVoPAZlnj.CodDNfynuCfmA00q7s-1715185796288-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

ajax.googleapis.com/ajax/libs/webfont/1/webfont.js

216.58.211.10

200 OK

5.4 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1/webfont.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2134)
Size
5.4 kB (5437 bytes)
Hash
7c96a5f11d9741541d5e3c42ff6380d7
d3fa2564c021cf730e58ffddb138cf6b57ed126e
81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee

HTTP Headers

GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:37:20 GMT
expires: Fri, 02 May 2025 02:37:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 568356
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf

162.159.138.9

200 OK

0 B

URL POST HTTP/3
zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/880ad4d68df056bf HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12234
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:57 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=.JlVKCzKbq5QtY4LaFF5DhmP3eEmu1S5TW1iFcQNDwk-1715185797-1.0.1.1-98Nc06Z9y_wocnqJRcsAcOnA0mv1AsnFltU4acUB4Feita00jGZqJCdn7TICOWQUZONCBFck0RQ15cFR3t1YJQ; Path=/; Expires=Thu, 08-May-25 16:29:57 GMT; Domain=.elementor.cloud; HttpOnly; Secure; SameSite=None; Partitioned
__cf_bm=yejrkBlRI6YWFlMs3C6Ti1gQZG1WGOSRH2HMx8RjVxc-1715185797-1.0.1.1-Hrkko24jTkpFxusg3edyaHIbDjy7rfzEFQoNQNakvs5nlSH0UNx.0kwqMjLfS74.9n7cUjHeE9brmzHo6e8D_Q; path=/; expires=Wed, 08-May-24 16:59:57 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4e0cdceb50c-OSL
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/cdn-cgi/rum?

162.159.138.9

204 No Content

0 B

URL POST HTTP/3
zdrhuagh.elementor.cloud/cdn-cgi/rum?
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1138
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Wed, 08 May 2024 16:29:57 GMT
access-control-allow-origin: https://zdrhuagh.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880ad4e1af33b50c-OSL
x-frame-options: DENY
x-content-type-options: nosniff

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 370880
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:32:46 GMT
expires: Fri, 02 May 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 568631
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2

216.58.207.227

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21528, version 1.0
Size
22 kB (21528 bytes)
Hash
6113a25a586aeb6d0d3af5b5b652b973
25619eeae1fe17389310e4d392c427b7711dba44
539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f

HTTP Headers

GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:38 GMT
expires: Sat, 03 May 2025 16:31:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
age: 431899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 570363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2

216.58.207.227

200 OK

22 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21528, version 1.0
Size
22 kB (21528 bytes)
Hash
6113a25a586aeb6d0d3af5b5b652b973
25619eeae1fe17389310e4d392c427b7711dba44
539bdb4bd9bb71c694451bbf2d5d7c0b2849e3584f0b50be3588a07605d3337f

HTTP Headers

GET /s/sourcecodepro/v23/HI_SiYsKILxRpg3hIP6sJ7fM7PqlPevW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:38 GMT
expires: Sat, 03 May 2025 16:31:38 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:21:57 GMT
content-type: font/woff2
age: 431899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:55:00 GMT
expires: Fri, 02 May 2025 01:55:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 570897
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

216.58.207.227

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:56:12 GMT
expires: Fri, 02 May 2025 01:56:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 570825
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin

142.250.74.106

200 OK

4.9 kB

URL GET HTTP/3
fonts.googleapis.com/css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
4.9 kB (4901 bytes)
Hash
b65a4a1615211ec45409a1f96ac888a5
5e24a350cccb2727e87d1b87064d5a349ce1e208
22247d3828545c6f4ebfd73eb4a8c1e0b0f1943a9ea341277fde9428d5905e46

HTTP Headers

GET /css?family=Source+Code+Pro:400,700%7CRoboto:400,300,500,700,400italic&subset=latin,latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 16:29:57 GMT
date: Wed, 08 May 2024 16:29:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js

162.159.138.9

200 OK

14 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (23095), with no line terminators
Size
14 kB (13588 bytes)
Hash
834d2ecce9a8cc7dba36d273de52b28a
a605a1843810a676f6018c8a0072de08b05b7ef5
523eb9b6af99c2488af8dcd1a5cd648902c24b4981195b0d0b9f3cdaa2fd3b7f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/altair_admin_common.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be8b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b40-5a37"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:36 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=I83R0RV8LAcVFhixNBJizNU88dZHV3LeA25ivNV.g1s-1715185796-1.0.1.1-ZvJW84VI91tt396oJmVkSLo12RXomU6rhNCzeHIRxtQREU18gispxdnez57_b7kwFLpllRlvoKRloYaWQunRcg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=zglmMPGWP0tzXoiaZfq_P0kdEA.b2jRIM6uv6DWwaGs-1715185796304-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/cdn-cgi/rum?

162.159.138.9

204 No Content

0 B

URL POST HTTP/3
zdrhuagh.elementor.cloud/cdn-cgi/rum?
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 636
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Wed, 08 May 2024 16:30:19 GMT
access-control-allow-origin: https://zdrhuagh.elementor.cloud
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 880ad569aa91b50c-OSL
x-frame-options: DENY
x-content-type-options: nosniff

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff

162.159.138.9

404 Not Found

146 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4de6a69b50c-OSL
cf-cache-status: HIT
age: 0
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=6HZBbXoIHAsV.cIZvm1vpI4.VfvcCrMKsbkfXi8tkVc-1715185796-1.0.1.1-.HIAP7QgEfc2yZBP364F98A2VGFw0W6c0gEqpUZpU17I00JJNPhdATTSWeU_YuDiO2x0K4oQ7j8REOiKe3lnjQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=jm37dqXU2rYaqytnd1x68ttgrYTv6_1XggN2O0yWWxY-1715185796899-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js

162.159.138.9

200 OK

7.9 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (7862), with no line terminators
Size
7.9 kB (7862 bytes)
Hash
30282e8ec4d4ec835f9657adb5662ebf
fb811c62ddbc1f3b949d21d1da1f23781dc027f3
572ce2a46875edb39b51933ab0daa03318da46c7e790a7abc8f1e817ce4f372e

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
set-cookie: __cf_bm=2sITV_fTSe3ITB0R_n8W2Ge3l5S50kN9LoAwYePkyw4-1715185796-1.0.1.1-ZUuu1.DwMOUe96dPV9etIz9If7cZW0a47qtrdlwR04B6didvchomrFVXcWJnjY5.aDr4o62R0JJ0SECVEW0lvg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
x-powered-by: Elementor Cloud
server: cloudflare
cf-ray: 880ad4defb18b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js

162.159.138.9

200 OK

261 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
261 kB (260968 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/common.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be6b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b46-3fb68"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:42 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=8EwH4aeK3jyzzyShz7ft.jb5sYvrcOroEsXWq_MWqwg-1715185796-1.0.1.1-ojcDG6e4EZKreil3ewdoZMbVs15kLw2RHutBojVpNKysCJE2ywylLSqUK2KviE2F_wi4iwOKCZvTdXq5NY0zjA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=rxFagg1i1nsxT9cmqNbEtDTlWQ0ajQFkStN4hk5b.Qo-1715185796306-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js

162.159.138.9

200 OK

845 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (871), with no line terminators
Size
845 B (845 bytes)
Hash
bd1f900aa4ef58f6c1f98598ab7c73ae
d4b77f910a29f31938ef1b188727d21a9185f9af
8577e30436b417f38dea776cf0de84339b8c16f601227222ae17afe5965f13a5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7beab50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b57-34d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:59 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=bKE69Vku9cL_1pE3RGVYXbTND0egwK0GgIaBPmmMAdY-1715185796-1.0.1.1-9ndmQO8xEqFJ.cZZtDPtHam9EQEY8r_y4YU.GBr964aHRakBb6ttxjc46J6yysPFdtRE0OcCU4uYJsqVd9cLDw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=YfiJ4ckIoY.mQt9NYTklhlCEjSdmtT6CEc8MbIEmWoM-1715185796298-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387

104.16.80.73

200 OK

19 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387
IP
104.16.80.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
FingerprintCE:62:08:77:7A:C9:4F:2B:EB:19:EA:54:43:3D:9F:10:06:33:69:E8
ValidityWed, 08 May 2024 03:07:03 GMT - Tue, 06 Aug 2024 03:07:02 GMT

File type
JavaScript source, ASCII text, with very long lines (19189), with no line terminators
Size
19 kB (19189 bytes)
Hash
4c980ee97cb5c001b4d19e2895fa5603
2c6fe998aa7486c4becd74cf253bdd82666a64c3
d2e817d2c44b9cf45f0e45cfa351abba3203af38f5aa1c8576a2db69ebd15192

HTTP Headers

GET /beacon.min.js/vedd3670a3b1c4e178fdfb0cc912d969e1713874337387 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zdrhuagh.elementor.cloud
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2024.4.1"
last-modified: Mon, 06 May 2024 19:01:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 880ad4da9d220b45-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff

162.159.138.9

404 Not Found

146 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/files/fonts/Delivery_W_Rg.woff HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html
cf-ray: 880ad4dc8f6db50c-OSL
cf-cache-status: MISS
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=lIPWxd9o5ACbUlonPaSQVuU.Hqp5h.Q1F6Nz7vkE2HA-1715185796-1.0.1.1-e6zE1tAdY2H7.e1X1xRUp6k64._DF9rvDM3ONMnp9SQKXVm5jHLbGPhQHq70LPr6GDLb_21wT6yRgm7rRgahDQ; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=hRPWuBAhLX.pg_mzMGQhquh36UKOKXlOhdRMP8oSdnU-1715185796630-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js

162.159.138.9

200 OK

102 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (32010), with CRLF line terminators
Size
102 kB (101753 bytes)
Hash
660d070837ba7b53c5dcec99f7f94b9b
b6fae86591af6f1260f49f52b45256a824096351
bc865ff931d1d97a468a025905eed3bde7282bd45450abfb759da9ac3ae9546f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit_custom.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be7b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b6c-18d79"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:20 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=b3fSJflt8NNPXOgBrCB9gOxfykQcmJQRRER1CyyUvFo-1715185796-1.0.1.1-8S8cdVQj7uVQl1uXLVENBWqxP1Tvh72Cs4yqp9cpn2daI_8qB1impFVmX3mBwBTc6lOH8_bc2ihb6EI6SCpg_w; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=og1mz8uR2mNeSgkbedJKfd_5yADTf6e06NJSKXvcfs4-1715185796307-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html

162.159.138.9

200 OK

12 kB

URL User Request GET HTTP/2
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type

Size
12 kB (12237 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DHL Airways, Inc.

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 16:29:55 GMT
content-type: text/html
cf-ray: 880ad4d68df056bf-OSL
cf-cache-status: DYNAMIC
last-modified: Wed, 08 May 2024 02:49:58 GMT
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=LucIhC1nqVWHFDCabyqMuTdcL2lZEc2Fbiuym91xaak-1715185795-1.0.1.1-BvX62DNFy52G_HMEfO4RZT29Z6f_NiKvs.O6Nu69nO2azgtLP9fhD.VsPez047qFAlpHKITdJzQyfLZ4LxQt1w; path=/; expires=Wed, 08-May-24 16:59:55 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=7hWLMIhu4IZayxVSOPCjGtlZb_FfT5MXGPQSQnuJJYQ-1715185795685-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css

162.159.138.9

404 Not Found

20 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/css
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
HTML document, ASCII text, with very long lines (8586)
Size
20 kB (19789 bytes)
Hash
70f659be4c3105abe1cd6a1fd0d2e4f1
a74624bd208eed3b74bf234b6a7f1a72d215499f
dd891b8129de549fe9f78b43b519c0e20472cd50dbd7e172139c70c338929c17

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/html; charset=UTF-8
cf-ray: 880ad4da5ba0b50c-OSL
cf-cache-status: DYNAMIC
cache-control: no-cache, must-revalidate, max-age=0
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://zdrhuagh.elementor.cloud/wp-json/>; rel="https://api.w.org/"
ec-cdn-cache-control: public, max-age=604800
ec-cdn-status: dynamic
ec-cdn-status-reason: status not ok
ec-cdn-supported: 1
ec-coldstart: 
ec-source: dynamic
vary: Accept-Encoding
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=HBJCAzr46FuJpC3PJJgM38aMSuKTlPCLzOFxe_FQKGA-1715185796-1.0.1.1-JcA_M5Zq6qgAwn.6nZS3rjUqBS_Gtxlj_8LPh.d7aL5MczJ9MHu09sGKEC2ReiOUQywJ3Q7XkxoSOVajuX_XkA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=FZJynwqV7IorlC2r2rCtl0EEXUaRhqoygYbPBknTO_A-1715185796438-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js

162.159.138.9

200 OK

1.1 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (1195), with no line terminators
Size
1.1 kB (1137 bytes)
Hash
2a52c0ae880623240f10d004733ae5eb
ed606b8d74a40be0276815f4c91ef966718a16d4
58c2306123793a08d28ec7c3ce38b87fe28de1aaf981b1b8d45a5239cb5d37b6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/components_notifications.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be9b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b49-471"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:45 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=rLKR.90VBPXNhIIT4iWl1rkQAdEvjfEyNEHpBo2.pcM-1715185796-1.0.1.1-sY.XpDvdZzqE5r0Iy3DI_ijKSRPMhfSztyZdb8TKqtVC2zPW8Q5WyzuooENNxgQOK47gZZYwt1UKIZB.nkXrqw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=EYkCwILSO96dldt2ae.UiM9woQKX2RTEK73tWQB4D7A-1715185796295-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css

162.159.138.9

200 OK

78 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (64986), with CRLF line terminators
Size
78 kB (77912 bytes)
Hash
ec69e730972214d8bb0fe2a89600ce06
194d53b7d335621ac70cf31a95315acce389053a
72120a1c75da07babdbacd3c005cb6a04149efd51c68383ae5c26a925afc189a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/login_page.min.css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5bb4b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b56-13058"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:58 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=VhTewb6Z_9ooq7w_5DN5hQnOVPuWBYH5fg_Yc215mFc-1715185796-1.0.1.1-zVMTnZgCMDIUV4xyEqmKGCkoXrRZAym7WJ5z36t9d0XJUr7yusnws5x_JPvCcHZ8rFM3xosBWMaFToKzsy8anw; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=lwOq74cWoV1E6WuJdnmG3v_MpKDP8UtkAfpqegHnb_Q-1715185796318-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg

162.159.138.9

200 OK

112 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JPEG image data, progressive, precision 8, 1596x1015, components 3
Size
112 kB (111679 bytes)
Hash
6275aedbfdf293c6484bd5666e80308f
301873f19c0723152004411e5f62fbc2a79415df
e23885c4e00866e945b70f7d10f69ed49c7aa345774e3530d855d860d7420419

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/DHL2.jpg HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/jpeg
content-length: 111679
cf-ray: 880ad4dc7f67b50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
etag: "63705b50-1dc54"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:52 GMT
vary: Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origSize=121940
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=1.h7sQ5HKI4SrwWvzXDa026gQpU9RDo56dj7kTWmTeg-1715185796-1.0.1.1-Sofawbh15AQ_ebsqxQlHwwKwdC5UYA9gXQX7oMIS_I_z0HBLwgiGIONUtSUw_ZyTouZovaz.tMvxJaNHl3AwBg; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=g3GQ.Oy.1L7FLm.7KgQFghYOuyzr9bmucPmp7IhLp3w-1715185796624-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js

162.159.138.9

200 OK

2.2 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (2170), with no line terminators
Size
2.2 kB (2153 bytes)
Hash
11c2a3123010ce341e10c336ffa45dab
d78884530352cb09a7a383a27bebedcb24a29388
bef90c40cf2b9a27ff17b0b60644075c56c427ffe2246ee3c5e9fd9359ddba23

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/cc.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da5b9ab50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b45-f0d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:41 GMT
vary: Accept-Encoding
cf-bgj: minify
cf-polished: origSize=3853
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=UEjf5o_bfqRVIYO7SxoictoVBYld5ZIZfaFbcQ1crG8-1715185796-1.0.1.1-owJ0iFYmuI.KCOhd2MxXxCC3LhxgxLJfJZa_Sgmz.VyVzn7bcIWuo102UE8jCJGN2no74HpjFUpRdqFnQXkC4w; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=9rgIKgb_lSn88s1G8ODgrVF2xZwx8vyuwhBcCZtqbEQ-1715185796293-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css

162.159.138.9

200 OK

99 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
ASCII text, with very long lines (64954), with CRLF line terminators
Size
99 kB (98968 bytes)
Hash
210251cccee53e864a29e22fb6bd2348
2d34ea62055808d9e1e6ecfcc99f8b542ef2270b
e3ba7ab57a9c17c5dfaaa6f225c880dd6807fae54ecc3699209c553aaaa5c3cb

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/uikit.almost-flat.min.css HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: text/css
cf-ray: 880ad4da5ba8b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b6b-18298"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:19 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=muAZltI3SDgHKalVKFoRZqrtQcaGmMPrcKoN3WJw2ds-1715185796-1.0.1.1-7nVJyYiQrNdpbHlHzYNRVXpmzbtqq93jJy259g2lW.F1QMTwHiNdqDbMImrh3DBVYGbdvruPG5eqs9M4qzsc9g; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=qb4ln0724ZL5qTz1AaBSgu3BUBQHnGpYXuKPu62qK10-1715185796302-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js

162.159.138.9

200 OK

34 kB

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
JavaScript source, ASCII text, with very long lines (32005), with CRLF line terminators
Size
34 kB (34442 bytes)
Hash
9c58a34f02796276b7e7109af74070cd
a895868d27f57e0c1ef4ddf4e50c1055ff66eb15
a076b936e9383ed6f90c614cfd4e9ce57f95481e19fe1d84450926954d268856

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/moment.min.js HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: application/javascript
cf-ray: 880ad4da7be5b50c-OSL
cf-cache-status: HIT
cache-control: max-age=315360000
etag: W/"63705b61-868a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:50:09 GMT
vary: Accept-Encoding
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=e94e.i3KeAo2a8cUdoUuHBJu6PF6KIo37EmkpnZJuz4-1715185796-1.0.1.1-Wyjb7lw02DCIN3d99XV84.N0pHnzdk2aNjWBao2Q9I98zdGN3h9s7o5WaXqcuG.Mw7xKnptU9ge.neqP0KKYaA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=04sVCYpPJknbCCs9zU6ueUGbCKLuWrvtEcsfU_SH_Pk-1715185796313-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif

162.159.138.9

200 OK

668 B

URL GET HTTP/3
zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif
IP
162.159.138.9:443
ASN
#13335 CLOUDFLARENET

Requested by
https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Certificate
IssuerLet's Encrypt
Subjectelementor.cloud
Fingerprint9B:9B:B2:54:E4:0D:B0:69:09:06:09:11:55:70:D3:D7:03:AA:9F:6C
ValidityTue, 12 Mar 2024 10:13:46 GMT - Mon, 10 Jun 2024 10:13:45 GMT

File type
RIFF (little-endian) data, Web/P image
Size
668 B (668 bytes)
Hash
ecf736e1c8097731a599315d08170c97
f320e221ee99df0a6136f12c089160b683f0a0ac
8069e4836476472d221442ba47c27308f2a51334bf8ed860197d0ef73e12639e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - DHL

HTTP Headers

GET /ESATEGS4224VSES/89HJFSCOIJUXZE34/dhl.gif HTTP/1.1
Host: zdrhuagh.elementor.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zdrhuagh.elementor.cloud/ESATEGS4224VSES/89HJFSCOIJUXZE34/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 16:29:56 GMT
content-type: image/webp
content-length: 668
cf-ray: 880ad4de5a3bb50c-OSL
cf-cache-status: HIT
accept-ranges: bytes
cache-control: max-age=315360000
content-disposition: inline; filename="dhl.webp"
etag: "63705b4d-52f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Sun, 13 Nov 2022 02:49:49 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=1327
ec-cdn-status: dynamic
ec-cdn-status-reason: static resource
ec-source: static
x-powered-by: Elementor Cloud
set-cookie: __cf_bm=myJ8Y1HEl1cNBgfHEb7Wiodr6AnrmIHqHbP9sxNH0d8-1715185796-1.0.1.1-udOGrXWy3qhU98Z.65dnvAHKBCWXdyvhcNqgHimRrasOGvimpXM8A.POO3sNWd0wl7_FHgZEh_wqTUUW1AlGEA; path=/; expires=Wed, 08-May-24 16:59:56 GMT; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
_cfuvid=N.br0LVb.oaLfIueIqmwO1GYrShIgdLLuCop.6A5fYU-1715185796887-0.0.1.1-604800000; path=/; domain=.elementor.cloud; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML