Report - www.congngheviet24h.com/d.html

Report Overview

Visited public
2023-09-27 23:34:13
Tags
URL
www.congngheviet24h.com/d.html
Finishing URL
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
IP / ASN
103.186.65.42
#0
Title
Follow my parcel| DPD - Oslo

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-27 18:12:01	2.0 kB	4.2 kB	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-28 00:38:55	942 B	152 kB	142.250.74.168
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-09-28 00:36:05	490 B	14 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-28 00:40:06	1.7 kB	39 kB	142.250.74.131
use.fontawesome.com	942	2012-10-18	2017-01-30 05:43:25	2023-09-27 18:12:44	453 B	448 kB	172.64.102.11
www.brt.it	833585	1998-11-03	2017-02-08 17:01:27	2023-09-24 20:12:30	1.9 kB	3.9 kB	172.64.146.66
lieferung.neu.planen.98-67-163-167.cprapid.com	unknown	2019-05-16	2023-09-26 11:30:09	2023-09-26 15:46:21	16 kB	1.4 MB	98.67.163.167
www.congngheviet24h.com	unknown	2012-08-13	2020-09-08 09:55:59	2023-09-27 15:59:46	947 B	2.6 kB	103.186.65.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-09-26	medium	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd	DPDgroup
2023-09-26	medium	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	DPDgroup
2023-09-27	medium	www.congngheviet24h.com/d.html	DPDgroup
2023-09-06	medium	www.brt.it/it/	DPDgroup
2023-09-06	medium	www.brt.it/it/	DPDgroup

PhishTank

Scan Date	Severity	Indicator	Alert
2023-09-26	medium	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (16)

	URL	From	Size	First Seen	Last Seen
	use.fontawesome.com/releases/v5.15.4/js/all.js	ScriptElement	1.2 MB	2023-03-07	2025-05-10
Pretty URL use.fontawesome.com/releases/v5.15.4/js/all.js IP 172.64.102.11 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-10 20:59 Times Seen1066 Hash 5e29440867fdb02a48dffded02338c31 c8bfbbfca7eb327e2e98caf637d6de05e5ee737a 812ab0e46f86b2ce98ab2425ab2224b90d0845952a1ac0d5abd734b6217e98bf Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	ScriptElement	204 B	2023-06-12	2024-12-06
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-12 12:28 Last Seen2024-12-06 11:33 Times Seen306 Hash 4dc3fcb0dac59ef56757617cc758fec9 2cc07a6a97d8516d20f7a503c5897bc8fe43a1fd 8d6f13b162bdab9836246720c673dec140360d2ad2f7e285b135b0093a3339aa Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery-3.6.0.min.js	ScriptElement	90 kB	2023-03-07	2025-05-11
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery-3.6.0.min.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 00:46 Times Seen205846 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.bundle.min.js	ScriptElement	79 kB	2023-03-07	2025-05-08
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.bundle.min.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-08 06:28 Times Seen5191 Hash a454220fc07088bf1fdd19313b6bfd50 265a733cb7fbc481fd2510a659a85ad55c93c895 7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	ScriptElement	579 B	2023-03-07	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:28 Last Seen2024-08-21 09:40 Times Seen246 Hash a16c8c2eced6ab74dee56a346ff47956 cc78dd5312219284481e64ac39ba678221c1c018 e70f15892663b04451459b56577ff8c5ddbf37f64b9538b14efb24ed4e11eeaf Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/FlexJS.js	ScriptElement	22 kB	2023-04-05	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/FlexJS.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 05:36 Last Seen2024-08-21 09:40 Times Seen253 Hash a5e725df3ba34d1b2435e42f86074c63 ebbc525080b73a2692567cebad47ee48fbee65e0 eb632626410426b1a5508c2862e1ec49f062018180e1cf0b5ac2e773cf851106 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 02:05 Times Seen341815 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 02:05 Times Seen341013 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=UA-16368494-1	ScriptElement	189 kB	2023-09-28	2023-09-28
Pretty URL www.googletagmanager.com/gtag/js?id=UA-16368494-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 01:34 Last Seen2023-09-28 01:34 Times Seen1 Hash 77d55f7f595399dbbf5f6fd2a7d015e4 d635684bfe7f19251f98b127c198281c2f2f24b4 a84a3580f522cf143d0ac08d616ab3acac5abbb086c5f5aeba4583f61b049d27 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	ScriptElement	1.3 kB	2023-06-12	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-12 12:28 Last Seen2024-08-21 09:40 Times Seen197 Hash 2045899522f60db6c61dad20037c8d25 66f342563fe5170fb126d1c06f8947efd4c446c8 18db157a047b3edadba185c2908c5ec7c7b241cd1ec220c4e0d67bcc185ff2a7 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/DropDownMenu.js	ScriptElement	2.5 kB	2023-03-07	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/DropDownMenu.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2024-08-21 09:40 Times Seen254 Hash 7b48c7adc759259273d1a9b110c9d34d cb00a61719d0523efc21192e18705bcb0cf568ed c5b60596c83a6a6ad571510793a32790545ef1a90a6e3f8043fb738d28cd3d39 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.min.js	ScriptElement	43 kB	2023-03-07	2025-05-10
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.min.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06 Last Seen2025-05-10 22:47 Times Seen22798 Hash d5a61c749e44e47159af8a6579dda121 3b41b3bc956685015a347a2238e71db29dfa0dbb 0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	ScriptElement	4.6 kB	2023-06-12	2024-09-19
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-12 12:28 Last Seen2024-09-19 21:34 Times Seen253 Hash d8f52b37497e7fc34d111a626293e191 7637fb654a3e8d30b38afd2b0986265f589b463b e8e028e96efc39edc1cee12c5e15dd3c25726f30142d9c6b0c77e3e1190abab3 Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.js	ScriptElement	9.8 kB	2023-03-07	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.js IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:28 Last Seen2024-08-21 09:40 Times Seen253 Hash d227022ee2263f88319bbc7b17d8d900 84243fff1ba86e7f58146a5e0731da6e60357703 bc58030c40a89177bf413013256e50ebe3c6da30b64e72260dc4c3118181ccfa Loading...

	lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php	ScriptElement	234 B	2023-03-09	2024-08-21
Pretty URL lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php IP 98.67.163.167 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 12:09 Last Seen2024-08-21 09:40 Times Seen49 Hash 5aeb3ecf22607673efebba144215285d d6a976160041b874407d5b02113cdb7c7a0fda7c c928a2bca06b8e147fa28c5d4dc362aa109fd5ef86ea06636aee835e8f0f3dff Loading...

	www.googletagmanager.com/gtag/js?id=G-D025G9D5VJ&l=dataLayer&cx=c	ScriptElement	233 kB	2023-09-28	2023-09-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-D025G9D5VJ&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 01:34 Last Seen2023-09-28 01:34 Times Seen1 Hash 4a4e7060c6ca6bd435fd0284218ad047 879dae9f15a751b10f5dd9205135e885fb794935 4267cfa1124803e3cbd9a61f2bf629ab95342e7051c04edb389223464886adbd Loading...

HTTP Transactions (48)

URL IP Response Size

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd

98.67.163.167

301 Moved Permanently

267 B

URL User Request GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
267 B (267 bytes)
Hash
be2854b7d3642cf8db89165134461fdb
3278bf9d8030eb851cfdc91e609401ef569c78b1
04e7c5e8479587939ac1fef9c7e5dd6a879ae054131def6799016652af416b41

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DPDgroup

HTTP Headers

GET /dpd HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.congngheviet24h.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Wed, 27 Sep 2023 23:33:54 GMT
Server: Apache
Location: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/
Content-Length: 267
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

www.congngheviet24h.com/favicon.ico

103.186.65.42

640 B

URL
www.congngheviet24h.com/favicon.ico
IP
103.186.65.42:0
ASN
#0

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
640 B (640 bytes)
Hash
abb258211f4d0232ca70ef66912de900
c31e7047ff12c3d26a00e46215c2341f8e5d18e6
51a6270fe9b1f0bb095a36a0cd6a07d6f9218c14c6998cbf8dd958eba3a1153c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.congngheviet24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.congngheviet24h.com/d.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 04 Oct 2023 23:33:55 GMT
etag: "47e-5dbd7760-9cff4;br"
last-modified: Sat, 02 Nov 2019 12:32:32 GMT
content-type: image/x-icon
content-length: 640
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 23:33:55 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/

98.67.163.167

302 Found

0 B

URL User Request GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dpd/ HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.congngheviet24h.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Date: Wed, 27 Sep 2023 23:33:54 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197; path=/
location: update.php
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php

98.67.163.167

200 OK

37 kB

URL User Request GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
37 kB (37287 bytes)
Hash
35293aac1db07821063f9bc194076f10
3cbe9c11de86ba55bd7d49d53144e846df8a16ab
1eb255385c1926151e5875dd4713b8c3e74b0dce5fe4358ec6150075a5ce7d1a

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DPDgroup
PhishTank	phishing	Other

HTTP Headers

GET /dpd/update.php HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.congngheviet24h.com/
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.min.css

98.67.163.167

200 OK

156 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.min.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65319), with CRLF line terminators
Size
156 kB (155764 bytes)
Hash
8fe70898895271ddc62823321011273a
60f0159744e3b554a45da027f9e7faa992aed71a
ae576713bc196098f7438dede6ff1f835a23291c32b745ad7e6fb6db809a719b

HTTP Headers

GET /dpd/layout/bootstrap.min.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:10:54 GMT
Accept-Ranges: bytes
Content-Length: 155764
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.css

98.67.163.167

200 OK

4.3 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
4.3 kB (4333 bytes)
Hash
14f0217f02d3a327d0f86bd53fd8fa93
e96b13504bc89ef639503745934a15ab277339e1
bef5f7460dd336051731e6257746851d2e05b92de405e29d47f289e5dc23754c

HTTP Headers

GET /dpd/layout/jquery.smartbanner.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:45:26 GMT
Accept-Ranges: bytes
Content-Length: 4333
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.css

98.67.163.167

200 OK

2.2 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (2031), with CRLF line terminators
Size
2.2 kB (2200 bytes)
Hash
dd0b3483b8e2001f321463eabccf9ba9
6556b6bf6c2fdd9d9b149a1c7ebd005c3a9b7889
587145223d451023581d76c024aa8ade1377b05679fe11fb9e7cb9b83946f049

HTTP Headers

GET /dpd/layout/slick.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:18:34 GMT
Accept-Ranges: bytes
Content-Length: 2200
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/MappaDoveTrovarci.css

98.67.163.167

200 OK

11 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/MappaDoveTrovarci.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (10575), with CRLF line terminators
Size
11 kB (10756 bytes)
Hash
d10418be05871fcc5f56601b59f7ba3f
44195f61f0a25f349533a4f2a50b50b292eb8546
c455f42ffb8f81a00cfd23f90f90e5bedcc12a925b3f4cfdddcf8afbbe96a0b0

HTTP Headers

GET /dpd/layout/MappaDoveTrovarci.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:19:04 GMT
Accept-Ranges: bytes
Content-Length: 10756
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/rintracciaspedizioni.css

98.67.163.167

200 OK

10 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/rintracciaspedizioni.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (398), with CRLF line terminators
Size
10 kB (10039 bytes)
Hash
8812f7dea3e4adc4e9f94427fb163f41
3b9784754a9f52afabb0136aa80234b693045979
95ab5ef358d256072057bcd234c85fa1ddce349177a5166def5594f5f25248f6

HTTP Headers

GET /dpd/layout/rintracciaspedizioni.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Fri, 11 Feb 2022 10:37:02 GMT
Accept-Ranges: bytes
Content-Length: 10039
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/applicazione-carburanti.css

98.67.163.167

200 OK

13 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/applicazione-carburanti.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (13244), with CRLF line terminators
Size
13 kB (13433 bytes)
Hash
14b9439c8d4a7f8282a1eea47e9c3566
e799f0774d9aba5e010b6c1b694e16be44ec890b
1de9e9c15a3d6641f8466ac0d8a2f861be355f0dcd94dceab8e202b9bad9b784

HTTP Headers

GET /dpd/layout/applicazione-carburanti.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:18:52 GMT
Accept-Ranges: bytes
Content-Length: 13433
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbb6b90952f5230c043b0bbe8fb528b1
8e990f9e4448fdfb0b2c4dce68a9f5d6e3a843d9
2aaceb74eb7e1e69517de5bb254cdd373aa0abbd1c51acd3495756fec52ec5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.bundle.min.js

98.67.163.167

200 OK

79 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/bootstrap.bundle.min.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65297)
Size
79 kB (78635 bytes)
Hash
a454220fc07088bf1fdd19313b6bfd50
265a733cb7fbc481fd2510a659a85ad55c93c895
7f3145c87d3570154f633975e8a4f8d30aa38603edaba145501e9c90ddbe186c

HTTP Headers

GET /dpd/layout/bootstrap.bundle.min.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:57:02 GMT
Accept-Ranges: bytes
Content-Length: 78635
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/DropDownMenu.js

98.67.163.167

200 OK

2.5 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/DropDownMenu.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
2.5 kB (2528 bytes)
Hash
7b48c7adc759259273d1a9b110c9d34d
cb00a61719d0523efc21192e18705bcb0cf568ed
c5b60596c83a6a6ad571510793a32790545ef1a90a6e3f8043fb738d28cd3d39

HTTP Headers

GET /dpd/layout/DropDownMenu.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:57:04 GMT
Accept-Ranges: bytes
Content-Length: 2528
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/FlexJS.js

98.67.163.167

200 OK

22 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/FlexJS.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with CRLF line terminators
Size
22 kB (21782 bytes)
Hash
760043c02e5ad8250143432496cb1e95
43c58bc8327c95b2882c6166158ab229f69dc20e
32095cbb818303a76241a875198b459096fcce979d54e0f2775433a42b4063b3

HTTP Headers

GET /dpd/layout/FlexJS.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:56:14 GMT
Accept-Ranges: bytes
Content-Length: 21782
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/flex.css

98.67.163.167

200 OK

102 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/flex.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65364), with CRLF line terminators
Size
102 kB (101686 bytes)
Hash
4e68e191e41175cf6abdd06065c03f29
620c303fd0f87dd511265de5bb3b10909d47a7f0
fd7f86cc227664360cf976786c766cbe8afa2a2759d8de5bcf47c712bccfd43d

HTTP Headers

GET /dpd/layout/flex.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:19:38 GMT
Accept-Ranges: bytes
Content-Length: 101686
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/all.css

98.67.163.167

200 OK

174 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/all.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65389), with CRLF line terminators
Size
174 kB (174337 bytes)
Hash
2bc4fd8f7766f129c10c2dd8f935e745
f2e023c433f91a57433bb446345f24130f102415
c0d22cec83d6202205c0c4f032831100c6d7c9fc65d949c8bae6ea0f3ee39516

HTTP Headers

GET /dpd/layout/all.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:11:10 GMT
Accept-Ranges: bytes
Content-Length: 174337
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery-3.6.0.min.js

98.67.163.167

200 OK

90 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery-3.6.0.min.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
90 kB (89501 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /dpd/layout/jquery-3.6.0.min.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:56:10 GMT
Accept-Ranges: bytes
Content-Length: 89501
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.min.js

98.67.163.167

200 OK

43 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/slick.min.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
ASCII text, with very long lines (42862)
Size
43 kB (42863 bytes)
Hash
d5a61c749e44e47159af8a6579dda121
3b41b3bc956685015a347a2238e71db29dfa0dbb
0c7178cc6ca34fb18e30f070a5e7a1c287b2d7ccfcba2cfdf06e0f46eda55740

HTTP Headers

GET /dpd/layout/slick.min.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:57:06 GMT
Accept-Ranges: bytes
Content-Length: 42863
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.js

98.67.163.167

200 OK

9.8 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/jquery.smartbanner.js
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
9.8 kB (9784 bytes)
Hash
d227022ee2263f88319bbc7b17d8d900
84243fff1ba86e7f58146a5e0731da6e60357703
bc58030c40a89177bf413013256e50ebe3c6da30b64e72260dc4c3118181ccfa

HTTP Headers

GET /dpd/layout/jquery.smartbanner.js HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:57:08 GMT
Accept-Ranges: bytes
Content-Length: 9784
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

www.googletagmanager.com/gtag/js?id=UA-16368494-1

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-16368494-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (68959 bytes)
Hash
77d55f7f595399dbbf5f6fd2a7d015e4
d635684bfe7f19251f98b127c198281c2f2f24b4
a84a3580f522cf143d0ac08d616ab3acac5abbb086c5f5aeba4583f61b049d27

HTTP Headers

GET /gtag/js?id=UA-16368494-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 23:33:56 GMT
expires: Wed, 27 Sep 2023 23:33:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 27 Sep 2023 22:08:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68959
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-tempi.svg

98.67.163.167

200 OK

2.0 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-tempi.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1951), with no line terminators
Size
2.0 kB (1959 bytes)
Hash
f836a6bff530d5e4c0e07d312ac0bd43
57e855f12427e191ef3bf56f5aa06e1a1b8fe428
cc997fb56b14926f7747e54dec26cb428be9d26eb35c0569125f903a8f58261c

HTTP Headers

GET /dpd/layout/ico-tempi.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:56:20 GMT
Accept-Ranges: bytes
Content-Length: 1959
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/3.jpg

98.67.163.167

200 OK

92 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/3.jpg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1300x352, components 3\012- data
Size
92 kB (92185 bytes)
Hash
fdc5bbc8b9b0d801af37e046580a3ac6
a98db790664d3242bb5f157f93b25d97ce98f0ea
e1796edebe65a566dcc9767bf50be85c5eb1742681649e47469b42e1b0ef56e4

HTTP Headers

GET /dpd/layout/3.jpg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Tue, 25 Jan 2022 14:40:48 GMT
Accept-Ranges: bytes
Content-Length: 92185
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/dpd.png

98.67.163.167

200 OK

21 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/dpd.png
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
PNG image data, 141 x 67, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (21097 bytes)
Hash
3adf083373a5d24d4b23ec4e212d94cd
4120c41feff071a8b02da31f3e7f65dcde1056b6
268b37ae55b70848676c6c100f52249325e99c6d511d95ebe841ad03bc685069

HTTP Headers

GET /dpd/layout/dpd.png HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Thu, 20 Jan 2022 13:50:30 GMT
Accept-Ranges: bytes
Content-Length: 21097
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-ricerca.svg

98.67.163.167

200 OK

2.8 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-ricerca.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2788), with no line terminators
Size
2.8 kB (2796 bytes)
Hash
aec6ff3da7cea468ac572aa0ef8df2a8
342bf13900f7e8032bc7faf1a5704ab3eb23b504
93778717aa7126e40ed978ec53381cb0520b2157ad0caeee69e9273e9890d838

HTTP Headers

GET /dpd/layout/ico-ricerca.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:56:24 GMT
Accept-Ranges: bytes
Content-Length: 2796
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-rintraccia.svg

98.67.163.167

200 OK

2.3 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-rintraccia.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2286), with no line terminators
Size
2.3 kB (2294 bytes)
Hash
5da88e2c33833f8c5f9e3a8eae29b614
38902b7c00fae386e9e8421a400bf75b1b8e0951
e774edcb209f37323bd87537847f9f80b8e45ac40cc2edf5f1613c72b296d062

HTTP Headers

GET /dpd/layout/ico-rintraccia.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:55:40 GMT
Accept-Ranges: bytes
Content-Length: 2294
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml

www.congngheviet24h.com/d.html

103.186.65.42

1.0 kB

URL
www.congngheviet24h.com/d.html
IP
103.186.65.42:0
ASN
#0

File type
gzip compressed data, from Unix\012- data
Size
1.0 kB (1003 bytes)
Hash
4684e29766edd50d19f295748868993d
82c240e038658fcd16c97f4e8e43622518012c9c
487a4d2d399dcec608b95dcf9edc520ec52846e8cf67de43f6acf29ef51d6700

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DPDgroup

HTTP Headers

GET /d.html HTTP/1.1
Host: www.congngheviet24h.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
etag: "e8-6513ea68-5fbbb;gz"
last-modified: Wed, 27 Sep 2023 08:40:08 GMT
content-type: text/html
accept-ranges: bytes
date: Wed, 27 Sep 2023 23:33:54 GMT
server: LiteSpeed
content-encoding: gzip
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/Logo-DPD-footer.svg

98.67.163.167

200 OK

3.0 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/Logo-DPD-footer.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2977), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
9933d7ceee49b115ff7339bf8391b1c3
eb3d35081d2d8ae6e86f74959a58a470cc0e2917
4ec0cc94e8325a36d18ab2200c07f2113c7219d34763e8269461b3f1f89c15ab

HTTP Headers

GET /dpd/layout/Logo-DPD-footer.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:56:42 GMT
Accept-Ranges: bytes
Content-Length: 2977
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-ritiro.svg

98.67.163.167

200 OK

2.7 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-ritiro.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2723), with no line terminators
Size
2.7 kB (2723 bytes)
Hash
d823e32557094e094d2db22e695da821
25862ff41bf858532a38eea3aa1c46aec715424b
70494f58394327833265bebcd56fec862deb9062a274079caf6d5e07bf7d3cad

HTTP Headers

GET /dpd/layout/ico-ritiro.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:55:32 GMT
Accept-Ranges: bytes
Content-Length: 2723
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/svg+xml

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/banner_versand-dpd.jpg

98.67.163.167

200 OK

277 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/banner_versand-dpd.jpg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1280x300, components 3\012- data
Size
277 kB (277075 bytes)
Hash
d27ef8870fc957ed9e5b536c42a89cb2
bb257a978071484f738e280529c115e4beacacd7
8c29792dd0ad83228dc72c2f7e0016336a6e43a603404a0604e9c6e00ff65f7d

HTTP Headers

GET /dpd/layout/banner_versand-dpd.jpg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2022 21:00:08 GMT
Accept-Ranges: bytes
Content-Length: 277075
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/dpd_logo_redgrad_rgb.png

98.67.163.167

200 OK

224 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/dpd_logo_redgrad_rgb.png
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
PNG image data, 4097 x 1822, 8-bit/color RGBA, non-interlaced\012- data
Size
224 kB (224314 bytes)
Hash
dff7f287447aaecd51d1ac2ad8cc44dc
c090020c966a57b4059f564d70f079a552b7fe81
228016cd2143451261b84a38c35d5c902af0be803071c316ab71bd8057efd172

HTTP Headers

GET /dpd/layout/dpd_logo_redgrad_rgb.png HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Sun, 20 Feb 2022 21:25:14 GMT
Accept-Ranges: bytes
Content-Length: 224314
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/Logo_DPD_top.svg

98.67.163.167

200 OK

3.4 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/Logo_DPD_top.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (3362), with no line terminators
Size
3.4 kB (3362 bytes)
Hash
d4f64266e87dee035eac104580821622
998b813a6bcc91de0f1e2a7a9fcedb98481ee29e
82459ee1c5cbd6c6103eb91f7b32d9bee528b18ae3fdce9aaf21d4f3711d3c57

HTTP Headers

GET /dpd/layout/Logo_DPD_top.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:56 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:54:00 GMT
Accept-Ranges: bytes
Content-Length: 3362
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbb6b90952f5230c043b0bbe8fb528b1
8e990f9e4448fdfb0b2c4dce68a9f5d6e3a843d9
2aaceb74eb7e1e69517de5bb254cdd373aa0abbd1c51acd3495756fec52ec5ce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0bbd1e938700d156e361c1ab8640f3bd
20e70357b360a225b5094714bc89889fd045aa14
7e4f05e6aba3abeaf61da9d17ed8d5518df3bc493c3b319eb29faa4c282fb8db

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/stampa.css

98.67.163.167

200 OK

42 kB

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/stampa.css
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (41490), with CRLF line terminators
Size
42 kB (41662 bytes)
Hash
66724bcbf00999acbde8a048fe5ae75d
5221c35013860f45f3bc9632cfbbac6019d04254
7bdcd0b2bef61a5f54acb82fc6afe2fc8e30ade3528eaaebc646410369365c68

HTTP Headers

GET /dpd/layout/stampa.css HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:56 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:19:36 GMT
Accept-Ranges: bytes
Content-Length: 41662
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=G-D025G9D5VJ&l=dataLayer&cx=c

142.250.74.168

200 OK

82 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-D025G9D5VJ&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (5788)
Size
82 kB (82287 bytes)
Hash
4a4e7060c6ca6bd435fd0284218ad047
879dae9f15a751b10f5dd9205135e885fb794935
4267cfa1124803e3cbd9a61f2bf629ab95342e7051c04edb389223464886adbd

HTTP Headers

GET /gtag/js?id=G-D025G9D5VJ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 27 Sep 2023 23:33:56 GMT
expires: Wed, 27 Sep 2023 23:33:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82287
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c84db2aa974ecd33b439a3a6124cea47
a55ea70feb23dfce1365b7aeb60cd3047b0ca1bb
5b6308af9df276542b1f5542a75827208cc0cb612feffc28efd3ef79da97d97a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.googleapis.com/css?family=Titillium+Web:200,300,400,600,700,900

142.250.74.106

200 OK

13 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Titillium+Web:200,300,400,600,700,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT

File type
gzip compressed data, max compression\012- data
Size
13 kB (12840 bytes)
Hash
deb2ea69615c688b9795fd0e866b2196
e4d1afdaf64c6fe2e9635c0df5db85fac7838bd9
b8bf6d2a7f29d302c1767b3b95b0a6f2e769e55d5a05abb48ed1b4f4dff63007

HTTP Headers

GET /css?family=Titillium+Web:200,300,400,600,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 27 Sep 2023 23:33:56 GMT
date: Wed, 27 Sep 2023 23:33:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2

142.250.74.131

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Size
12 kB (12136 bytes)
Hash
5d7c6bb8fd4fc992c54e596ab7433d5d
35fd6e4c125235cb7f9aa6e297da4b64ae45b06a
dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c

HTTP Headers

GET /s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lieferung.neu.planen.98-67-163-167.cprapid.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 15:11:34 GMT
expires: Sat, 21 Sep 2024 15:11:34 GMT
cache-control: public, max-age=31536000
age: 462142
last-modified: Thu, 24 Aug 2023 21:07:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.15.4/js/all.js

172.64.102.11

200 OK

447 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.15.4/js/all.js
IP
172.64.102.11:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subjectuse.fontawesome.com
Fingerprint23:04:2D:9B:C5:BA:9D:AA:AC:6A:FD:14:B0:96:18:D6:EB:A5:B3:65
ValidityFri, 01 Sep 2023 05:27:58 GMT - Thu, 30 Nov 2023 05:27:57 GMT

File type
ASCII text, with very long lines (65350)
Size
447 kB (447296 bytes)
Hash
5e29440867fdb02a48dffded02338c31
c8bfbbfca7eb327e2e98caf637d6de05e5ee737a
812ab0e46f86b2ce98ab2425ab2224b90d0845952a1ac0d5abd734b6217e98bf

HTTP Headers

GET /releases/v5.15.4/js/all.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 23:33:56 GMT
content-type: application/javascript
x-amz-id-2: ANR7a8w8AvpvYb3HGnImD2hqb0/x707AY6PNxwAWvtXzroCOlh0PVwn15dJ7MPYGZHt+zNrOH5E=
x-amz-request-id: 2XEE91SSZYCWJVHH
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"5e29440867fdb02a48dffded02338c31"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2284202
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ieJjRunKSwCiYl1fN1fHZeZ8usb5vjz%2BxTm1FOeCISG9Ets6np4Vl7Gegkb1Ml4OvBrk5SsVXQV2DahIxds0UrwyJndU5E5BaNyZCadAikD5pXZOQ4NwTmW6qYDc%2Bu%2FgvkxTQaDe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80d78df3fc0006e1-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
c84db2aa974ecd33b439a3a6124cea47
a55ea70feb23dfce1365b7aeb60cd3047b0ca1bb
5b6308af9df276542b1f5542a75827208cc0cb612feffc28efd3ef79da97d97a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 27 Sep 2023 23:33:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.brt.it/flex/TemplatesUSR/assets/img/favicon/apple-touch-icon.png

172.64.146.66

302 Found

0 B

URL GET HTTP/2
www.brt.it/flex/TemplatesUSR/assets/img/favicon/apple-touch-icon.png
IP
172.64.146.66:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerDigiCert Inc
Subject*.brt.it
FingerprintFD:C3:02:CA:3F:14:81:5F:BB:A0:45:EF:C8:E6:C0:AB:3E:DC:6F:E5
ValidityMon, 26 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /flex/TemplatesUSR/assets/img/favicon/apple-touch-icon.png HTTP/1.1
Host: www.brt.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 27 Sep 2023 23:33:57 GMT
content-type: text/html; charset=UTF-8
location: https://www.brt.it/it/
strict-transport-security: max-age=31536000; includeSubdomains
cache-control: max-age=0, no-cache, no-store, must-revalidate, no-cache, must-revalidate, max-age=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 12:00:00 GMT, Wed, 11 Jan 1984 05:00:00 GMT
cms-fix-loop: True
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.32
cf-edge-cache: cache,platform=wordpress
x-redirect-by: WordPress
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
set-cookie: INGRESSCOOKIE=3cec5730090be45159454992c75348b9; Path=/; HttpOnly;HttpOnly;Secure;HttpOnly;Secure
PHPSESSID=d8af9449b157157a4c19f63835385c04; path=/; secure; HttpOnly;HttpOnly;Secure;HttpOnly;Secure
dpd-connect-generic-redirect=https%3A%2F%2Fwww.brt.it%2Fflex%2FTemplatesUSR%2Fassets%2Fimg%2Ffavicon%2Fapple-touch-icon.png; expires=Fri, 29-Sep-2023 01:33:57 GMT; Max-Age=93600; path=/; secure;HttpOnly;Secure;HttpOnly;Secure
ROUTEID=.route1; path=/;HttpOnly;Secure
server: cloudflare
cf-ray: 80d78df93f1456b7-OSL
X-Firefox-Spdy: h2

www.brt.it/it/

172.64.146.66

200 OK

0 B

URL GET HTTP/2
www.brt.it/it/
IP
172.64.146.66:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerDigiCert Inc
Subject*.brt.it
FingerprintFD:C3:02:CA:3F:14:81:5F:BB:A0:45:EF:C8:E6:C0:AB:3E:DC:6F:E5
ValidityMon, 26 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DPDgroup

HTTP Headers

GET /it/ HTTP/1.1
Host: www.brt.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 23:33:57 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubdomains
cache-control: public, max-age=86400, s-maxage=200, must-revalidate
cms-200: TRUE
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.32
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cf-edge-cache: cache,platform=wordpress
link: <https://www.brt.it/it/it/>; rel=shortlink
vary: Accept-Encoding,User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 27 Sep 2023 16:36:50 GMT
cf-cache-status: HIT
age: 12816
server: cloudflare
cf-ray: 80d78dfa7fc756b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.brt.it/flex/TemplatesUSR/assets/img/favicon/favicon.ico

172.64.146.66

302 Found

0 B

URL GET HTTP/2
www.brt.it/flex/TemplatesUSR/assets/img/favicon/favicon.ico
IP
172.64.146.66:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerDigiCert Inc
Subject*.brt.it
FingerprintFD:C3:02:CA:3F:14:81:5F:BB:A0:45:EF:C8:E6:C0:AB:3E:DC:6F:E5
ValidityMon, 26 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /flex/TemplatesUSR/assets/img/favicon/favicon.ico HTTP/1.1
Host: www.brt.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 27 Sep 2023 23:33:57 GMT
content-type: text/html; charset=UTF-8
location: https://www.brt.it/it/
strict-transport-security: max-age=31536000; includeSubdomains
cache-control: max-age=0, no-cache, no-store, must-revalidate, no-cache, must-revalidate, max-age=0
pragma: no-cache, no-cache
expires: Thu, 01 Jan 1970 12:00:00 GMT, Wed, 11 Jan 1984 05:00:00 GMT
cms-fix-loop: True
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.32
cf-edge-cache: cache,platform=wordpress
x-redirect-by: WordPress
vary: User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
set-cookie: INGRESSCOOKIE=bc502b2ee62a90cb174c0f039cf09f3a; Path=/; HttpOnly;HttpOnly;Secure;HttpOnly;Secure
PHPSESSID=c04cb6dc0e24c400f24107a90e84e8ba; path=/; secure; HttpOnly;HttpOnly;Secure;HttpOnly;Secure
dpd-connect-generic-redirect=https%3A%2F%2Fwww.brt.it%2Fflex%2FTemplatesUSR%2Fassets%2Fimg%2Ffavicon%2Ffavicon.ico; expires=Fri, 29-Sep-2023 01:33:57 GMT; Max-Age=93600; path=/; secure;HttpOnly;Secure;HttpOnly;Secure
ROUTEID=.route2; path=/;HttpOnly;Secure
server: cloudflare
cf-ray: 80d78df93f1956b7-OSL
X-Firefox-Spdy: h2

www.brt.it/it/

172.64.146.66

200 OK

0 B

URL GET HTTP/2
www.brt.it/it/
IP
172.64.146.66:443
ASN
#13335 CLOUDFLARENET

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerDigiCert Inc
Subject*.brt.it
FingerprintFD:C3:02:CA:3F:14:81:5F:BB:A0:45:EF:C8:E6:C0:AB:3E:DC:6F:E5
ValidityMon, 26 Jun 2023 00:00:00 GMT - Wed, 24 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	DPDgroup

HTTP Headers

GET /it/ HTTP/1.1
Host: www.brt.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 27 Sep 2023 23:33:57 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubdomains
cache-control: public, max-age=86400, s-maxage=200, must-revalidate
cms-200: TRUE
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.32
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cf-edge-cache: cache,platform=wordpress
link: <https://www.brt.it/it/it/>; rel=shortlink
vary: Accept-Encoding,User-Agent
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
last-modified: Wed, 27 Sep 2023 16:36:50 GMT
cf-cache-status: HIT
age: 12816
server: cloudflare
cf-ray: 80d78dfae80656b7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v17/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2

142.250.74.131

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v17/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Size
12 kB (12372 bytes)
Hash
0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532

HTTP Headers

GET /s/titilliumweb/v17/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lieferung.neu.planen.98-67-163-167.cprapid.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 15:09:22 GMT
expires: Sat, 21 Sep 2024 15:09:22 GMT
cache-control: public, max-age=31536000
age: 462274
last-modified: Thu, 24 Aug 2023 20:30:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-spedizione.svg

98.67.163.167

200 OK

808 B

URL GET HTTP/1.1
lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/layout/ico-spedizione.svg
IP
98.67.163.167:443
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuercPanel, Inc.
Subjectlieferung.neu.planen.98-67-163-167.cprapid.com
FingerprintF0:B3:EE:42:8A:5D:CB:B3:54:9B:66:41:47:FB:41:8D:26:A0:D4:ED
ValidityMon, 25 Sep 2023 00:00:00 GMT - Sun, 24 Dec 2023 23:59:59 GMT

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (828), with no line terminators
Size
808 B (808 bytes)
Hash
0e2494d46402ece3548630a0c893b9c9
a0216ce0c64d36cd83c776bf00dfc07459d58a47
2d5cfe75e5523f63cd09e2942481d9b1dfef3a1f29e8556e281496e2c4d11b1a

HTTP Headers

GET /dpd/layout/ico-spedizione.svg HTTP/1.1
Host: lieferung.neu.planen.98-67-163-167.cprapid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Cookie: PHPSESSID=0fa000c9326caf9ce9df760023ff8197
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 27 Sep 2023 23:33:55 GMT
Server: Apache
Last-Modified: Mon, 24 Jan 2022 13:55:20 GMT
Accept-Ranges: bytes
Content-Length: 808
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2

142.250.74.131

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://lieferung.neu.planen.98-67-163-167.cprapid.com/dpd/update.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
8d4079c3aa4f01e6d9bbd4f1bbcdf114
52ab47c062d0bfdbd34dbd31784008bd0e4c4227
d5c1172f24f4f49f780c65cf5be897527fd08f3662a2ba8db0cfe0057d92e367

HTTP Headers

GET /s/titilliumweb/v17/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lieferung.neu.planen.98-67-163-167.cprapid.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 15:09:40 GMT
expires: Sat, 21 Sep 2024 15:09:40 GMT
cache-control: public, max-age=31536000
age: 462257
last-modified: Thu, 24 Aug 2023 20:48:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (16)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by