r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9178
Expires: Fri, 02 Dec 2022 13:50:05 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6312
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:07 GMT
Last-Modified: Fri, 02 Dec 2022 09:31:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6751
Expires: Fri, 02 Dec 2022 13:09:38 GMT
Date: Fri, 02 Dec 2022 11:17:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 10:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3536
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bSabTdNO0ZIpKfde22rKcPdzKF991XiN8+UzVAdmb3vNTSmVZJ6yW6LGW7pa5LxH1vGkjai4QMs=
x-amz-request-id: T47TDSERBQ3BBGQ6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 10:46:40 GMT
age: 1827
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 11:17:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
184.168.116.92302 Moved Temporarily 0 B URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
openphish DHL Airways, Inc.
fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/info.php HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Fri, 02 Dec 2022 11:17:07 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: index.php
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 11:11:15 GMT
cache-control: public,max-age=3600
age: 352
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6303
Cache-Control: max-age=171290
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 11:17:07 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:51:57 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.213.140.56101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.140.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P23GzjArrjuX8XQznaAo/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vZk8BSpemkpXdDKJKboh0mxFngA=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7771
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7771
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7771
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7771
Expires: Fri, 02 Dec 2022 13:26:39 GMT
Date: Fri, 02 Dec 2022 11:17:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 18980
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 16a112f00456d38c4c9e051ccf40e105
8fe32fffe672f0e91ce773af0e4be960f55bad08
43517bbcd17ec6d05d09a4c0d183610acdc7e2fa4767cb786cb8b936d5f44402
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feb2cfbf1-2aef-40a6-97e1-99a756e32924.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13461
x-amzn-requestid: 8c0121a6-cf29-4cd0-bd42-d9f67af62b84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQsyGhGoAMF1-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7eb-593f28367320530e2dcafbfb;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:03:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: npt-A-TEzjd-QRTVhv5FMJhwlYujCRCF7tyYbathxjCdCFFEwh_vEQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:42:38 GMT
age: 16470
etag: "8fe32fffe672f0e91ce773af0e4be960f55bad08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2ihxuuXiECC4oX11t_vswhnLF0UpqDuboPLkrhpWwp-vfCR5pxGGxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:50 GMT
age: 48198
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 21413
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25c68d8b1fae82820f93efca500fd848
45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48
f0ec6b6f6ba0a931c9b71f5bc7ad1e5b89c8e4d8b7441f35eeebfba418d0e588
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb8ec880-52b8-4350-bb47-d051878e78f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6882
x-amzn-requestid: 6b5f15a5-c15b-46bf-9fd5-5d013d37a0eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGfrG3WIAMFc9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfd-6038ca700dfb4489230c2683;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2O6x-8-ESFDtlhcjVyGxEXCZcLbbfhsCVQeX02lbNMupPWmM-fKuLA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:54 GMT
age: 49334
etag: "45cf5e1a54ee491497ffe08a8e39fe97ba3c8a48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:21:56 GMT
age: 78912
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/index.php
184.168.116.92302 Moved Temporarily 3 B URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/index.php
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with no line terminators
Hash ecaa88f7fa0bf610a5a26cf545dcd3aa
57218c316b6921e2cd61027a2387edc31a2d9471
f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5
Analyzer Verdict Alert urlquery Phishing - DHL
fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/index.php HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Fri, 02 Dec 2022 11:17:07 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: info.php
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
184.168.116.92200 OK 16 kB URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (376), with CRLF line terminators
Hash d00c3179b9796abaeecce8a8ffd925aa
71054112fc31edf5c1b52470e9f6b3ca2c45cec2
ec266558827dfa756944aab1a69ecaef5e5c4737d8da8da143950df5cf8f715a
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/info.php HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:10 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15690
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff
96.6.17.154200 OK 44 kB URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff
IP 96.6.17.154:0
File type Web Open Font Format, TrueType, length 44260, version 1.66\012- data
Hash 4ac65a56f2e3b3c83a674da787b9e900
ed4f7343ccb161c8825b523805352576f3677f59
4b2d0f1b82c28299651325d9ed0c728929e874866fa1b1b4173a2bf453f2d83e
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Wed, 16 Nov 2022 20:35:35 GMT
etag: "ace4-5ed9c6a2e517c-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 44219
content-type: application/font-woff
cache-control: public, max-age=1209600
expires: Fri, 16 Dec 2022 11:17:11 GMT
date: Fri, 02 Dec 2022 11:17:11 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff
96.6.17.154200 OK 41 kB URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff
IP 96.6.17.154:0
File type Web Open Font Format, TrueType, length 41084, version 1.66\012- data
Hash 8e28d7fd1b601b52178ab7d32e2406c6
e78d4edea79147e8d6d0b394cbce252b2265b0c3
e005fcd603bec58c87365399d7955dc97b2e22e4ef24d573d7b44ac7cb0f8683
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Wed, 16 Nov 2022 13:48:07 GMT
etag: "a07c-5ed96b8fb992c-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41052
content-type: application/font-woff
cache-control: public, max-age=1209600
expires: Fri, 16 Dec 2022 11:17:11 GMT
date: Fri, 02 Dec 2022 11:17:11 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.js
184.168.116.92200 OK 2.8 kB URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.js
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (551)
Hash 8f05affd799cd20fc20dec6701ee4594
8e043d15a2105930ba68d6ebe405744eb6c3c6f9
1f027d5a89115c8dd12f7670dea878ddf6fb20c9d4609cd4c0263c8ab9033c0a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.js HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 28 Apr 2022 20:26:42 GMT
ETag: "59c21ce-1cfe-5ddbcbe6da480-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2772
Keep-Alive: timeout=5
Content-Type: application/javascript
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle-gcs.68ed004d9792c235096195c178032e0f.css
184.168.116.92200 OK 6.6 kB URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle-gcs.68ed004d9792c235096195c178032e0f.css
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (42276), with no line terminators
Hash 583f6587100cca1a611485107171f31f
8b5e54fe9ca5e08c12671c2eddac61ba6950c166
8cedfc9bd2c801ab1d33a897bb78614662699dfd58dc3a254b5dc9b5c402a5d4
GET /wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle-gcs.68ed004d9792c235096195c178032e0f.css HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 03 May 2022 20:23:34 GMT
ETag: "59c2172-a524-5de21486ddd80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6555
Keep-Alive: timeout=5
Content-Type: text/css
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.css
184.168.116.92200 OK 29 B URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.css
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash b104a4a85c21511ada13e2c6e7552d37
475c6eb572d41f86d612ef9d8d64c2cd9ae95980
34a8d4f240f1b7a01d0472d5367e1bc57e17f70a12a91aae37dcac3b33b24732
Analyzer Verdict Alert urlquery Phishing - DHL
GET /wp-content/themes/bridge/extendvc/dhl/dhl/etc.clientlibs/dhl/clientlibs/clientlib-core.min.css HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 30 Apr 2022 05:43:04 GMT
ETag: "59c21cc-1d-5ddd8a1fdea00"
Accept-Ranges: bytes
Content-Length: 29
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: text/css
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
184.168.116.92301 Moved Permanently 0 B URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/js/bundle.68ed004d9792c235096195c178032e0f.js
184.168.116.92200 OK 84 kB URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/js/bundle.68ed004d9792c235096195c178032e0f.js
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash f0371e64300240599b12dae9437bcb11
ec42ccab4e0a183291773e0757c0c8a2b9da94fa
51f5fa3546197fca7637300c6e2a511ba8c0c6a694546429c799dd6c06bd1a72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/js/bundle.68ed004d9792c235096195c178032e0f.js HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
Last-Modified: Tue, 03 May 2022 20:23:24 GMT
ETag: "59c219d-48b36-5de2147d54700-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle.68ed004d9792c235096195c178032e0f.css
184.168.116.92200 OK 89 kB URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle.68ed004d9792c235096195c178032e0f.css
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 913ee13de4e93ff60b1e307a80dd616f
c365531fc8408e5fb926fcf0112505fcd69cb270
c8b9c160673db3c1d716acf34b755c5b54539c8aaf7cee2f373f85a997696bd5
GET /wp-content/themes/bridge/extendvc/dhl/dhl/etc/clientlibs/dhl/clientlib-all/css/bundle.68ed004d9792c235096195c178032e0f.css HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 11:17:10 GMT
Server: Apache
Last-Modified: Tue, 03 May 2022 20:23:18 GMT
ETag: "59c217c-a7413-5de214779b980-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
184.168.116.92404 Not Found 94 kB URL HTTP/1.1 preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 9a71f53282e5b69eca1aa53487dd806e
42c37296fb04042e225c441180d588bfdae092cc
ac78d2af1a45f39bce7e3dc21135a546192fefb2bb9cff38898c92a13ecb66c2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/bridge/extendvc/dhl/dhl/assets.adobedtm.com/launch-ENa2e710b79eef40758cbb936003b8b231.min.js HTTP/1.1
Host: preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.preetigera.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:11 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.dhl.com/content/dam/dhl/global/core/images/logos/glo-footer-logo.svg
96.6.17.154200 OK 3.5 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/glo-footer-logo.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (656)
Hash 59805e289b6b418e9e0c49e511a6c17e
d037e53465200d5f1363f254ac3aac5552742522
d786f0bd0db1f725ba7dff9c211f59ac1614140f6a926a940389fc2c786f4a0a
GET /content/dam/dhl/global/core/images/logos/glo-footer-logo.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:38 GMT
etag: W/"2ec0-5edb12591f86e-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 3537
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-road.svg
96.6.17.154200 OK 737 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-road.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3fe697136ef872280f6257bc1090704d
530c0ae0cebb91818d9c0d45cf6ab0f18028ca08
e9b82ea38eb82632bebfec839d4a33ce1ca837f2cc9dcb0c803ca5378cf4972c
GET /content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-road.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:57 GMT
etag: "690-5edb126ae9431-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 737
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.1365.428.jpg
96.6.17.154200 OK 48 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.1365.428.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1365x426, components 3\012- data
Hash 17a79071c24364e59e718b74b9d79800
25fde076dd46c20f23853dae4ad1533117ee2831
582a0b81c3b017586a45247f70b38a55be5b2ddb581f1dbfb683c262f891633f
GET /content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.1365.428.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:05 GMT
etag: W/"bd03-5edb1272d9b86"
accept-ranges: bytes
content-length: 48387
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-ocean.svg
96.6.17.154200 OK 657 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-ocean.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aba38910b38910842d0775ba3fbe9966
56d9c320bd633ae131e2ab8fa6ca3ee7cd5bfe0b
0ace5d29ccdfbd39b673bca2cf42e9ec04be4e6d50e16e10584c354da6adfd2b
GET /content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-ocean.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:13 GMT
etag: W/"74c-5edb1279cb1a4-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 657
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/product-icons/glo-core-product-air.svg
96.6.17.154200 OK 777 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/product-icons/glo-core-product-air.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f526cdba11465b90acadcb4bfcc09896
096214b04ece55cf9b01b1a21ab1af665296f1d6
8ab07b6f7837e94d2809971af6591b509fd43c619b64cf0d80b5c6a8a3fff65b
GET /content/dam/dhl/global/core/images/icons/product-icons/glo-core-product-air.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 09:30:09 GMT
etag: "5a2-5eda73c3c3644-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 777
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/logos/instagram-new.svg
96.6.17.154200 OK 1.6 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/instagram-new.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4063)
Hash 35614693def25a2cee78147b50b6724c
c29ec1ccc5e1a7c6e1b34db29bb4901ec341c0a5
492672ac5552ca4885e5b15f01684c45062ac1f431570dff66a1e12f638966b9
GET /content/dam/dhl/global/core/images/logos/instagram-new.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:45 GMT
etag: "119c-5edb125f47f21-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 1608
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/logos/linkedIn-new.svg
96.6.17.154200 OK 738 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/linkedIn-new.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1204)
Hash cfef11df2c8c9cbbf5da179439a168f7
688d97990f2a9975df3cb08e65a484375e036b62
9f04e6cfd182010384025989c3066664e006d775519438e14ad5a32d7e773e05
GET /content/dam/dhl/global/core/images/logos/linkedIn-new.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:05:40 GMT
etag: "66f-5edb0f397b4fc-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 738
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/teaser-image-1200x588/glo-management-services-inventory-financing.web.400.196.jpg
96.6.17.154200 OK 25 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/teaser-image-1200x588/glo-management-services-inventory-financing.web.400.196.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x196, components 3\012- data
Hash 72f77f40854c034e3ddd497e7497fd77
e0aa1c9456c82751be6bf693b2792441fbae9ca2
3b0f8bee5b7bec0e3827fe7376bf87ae5060aa8c0af75d1a66a6f89a3363c2f3
GET /content/dam/dhl/global/core/images/teaser-image-1200x588/glo-management-services-inventory-financing.web.400.196.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:22:37 GMT
etag: "6155-5edb1303a5a84"
accept-ranges: bytes
content-length: 24917
content-type: image/jpeg
cache-control: public, max-age=433810
expires: Wed, 07 Dec 2022 11:47:23 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/dhl-global-forwarding/images/teaser-image-1200x588/glo-dgf-air-freight-cargo-text-generic.web.400.196.jpg
96.6.17.154200 OK 34 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/dhl-global-forwarding/images/teaser-image-1200x588/glo-dgf-air-freight-cargo-text-generic.web.400.196.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x196, components 3\012- data
Hash 439551d8e7db51a7b917fb123df3e891
75ef25168be464500f13e9680d6979f681294774
605715246127fb348fcecfc1b21477bc3ea9a2097fd2c34cacdded434445d8b3
GET /content/dam/dhl/global/dhl-global-forwarding/images/teaser-image-1200x588/glo-dgf-air-freight-cargo-text-generic.web.400.196.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:21:01 GMT
etag: "853b-5edb12a7ee5e1"
accept-ranges: bytes
content-length: 34107
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/about-us-icons/glo-core-aboutus-contact.svg
96.6.17.154200 OK 710 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/about-us-icons/glo-core-aboutus-contact.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8ad80a6c27e06bac663a61caea81146f
abc99235198e5597986e3a8e8c6ffa2f4353eec5
3ddebe33a46652fd0e2fa0b9a0c8dcc8ae75fd01f6970f5260be8c05e089dc9f
GET /content/dam/dhl/global/core/images/icons/about-us-icons/glo-core-aboutus-contact.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:08 GMT
etag: "508-5edb127541ec5-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 710
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/green-logistics-street-trees.web.1365.434.jpg
96.6.17.154200 OK 133 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/green-logistics-street-trees.web.1365.434.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1365x434, components 3\012- data
Size 133 kB (132821 bytes)
Hash 832088e347c89e0a1f649428bce178f8
ef4cc39621ae2834ec9066fa14db59ca0e6c07fb
a75067b5a15521e9d18375166ddd0e7e5862d77385169e179e52bff0b408a0bd
GET /content/dam/dhl/global/core/images/teaser-large-2730x868/green-logistics-street-trees.web.1365.434.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:30 GMT
etag: W/"206d5-5edb128a1701a"
accept-ranges: bytes
content-length: 132821
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/wizard-icons/glo-core-wizard-bulkletters.svg
96.6.17.154200 OK 628 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/wizard-icons/glo-core-wizard-bulkletters.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 365519e7da7453584c4401dfd2607343
a38d7cf3676870243b7e74801616e61a13af74f4
28d4789ba235358c5bed471ea5023a66acae30f19561d3b6d98ed7fe19b9be0b
GET /content/dam/dhl/global/core/images/icons/wizard-icons/glo-core-wizard-bulkletters.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 16:20:50 GMT
etag: "450-5edacf8fa4792-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 628
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/general-icons/glo-core-online.svg
96.6.17.154200 OK 721 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/general-icons/glo-core-online.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash beef52b07d5246a12ee0dea65a9a1614
212cc40ec196474f5c593e29e4a0730179d6bfbe
15295a4f062b2d61fd55bee8176ac5c4bac639cd1eb498e1f3045fd7f9d2720f
GET /content/dam/dhl/global/core/images/icons/general-icons/glo-core-online.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:45 GMT
etag: "6e6-5edb125f9f597-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 721
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/general-icons/glo-core-getaquote.svg
96.6.17.154200 OK 500 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/general-icons/glo-core-getaquote.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a363d563a324ae86397725f5c34f52f5
c6ea00053a285db31a1b93e0af299793a13582c6
e0e4fd543903d0c9bfad9249345af71c464de122a9659491f6d379be32e5cbb7
GET /content/dam/dhl/global/core/images/icons/general-icons/glo-core-getaquote.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 06:45:56 GMT
etag: "312-5eda4f0f86eeb-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 500
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/gogreen-icons/glo-core-gogreen-warehousing.svg
96.6.17.154200 OK 466 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/gogreen-icons/glo-core-gogreen-warehousing.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7cd7723db3d3679d0a9265b33ecdcdb0
fd99aa5631602aa42716fbe211842969e5ba704e
d7c08ab55d16376a49c9d7cca924c384b2e828cee3010cc61666c8d2945e9251
GET /content/dam/dhl/global/core/images/icons/gogreen-icons/glo-core-gogreen-warehousing.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 10:15:41 GMT
etag: "2fc-5eda7df18076d-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 466
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-rail.svg
96.6.17.154200 OK 692 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-rail.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 724a72912c9014bc0f71673e39005b96
a94d05c5e10100bf15674ac2bef0845dab693e48
dd99816d9ea6702c69247c1b14538a1236987fd4be0ad00fd4d5f35893b04acd
GET /content/dam/dhl/global/core/images/icons/tracking-icons/glo-core-tracking-rail.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:05 GMT
etag: "549-5edb127243996-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 692
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/teaser-image-1200x588/glo-warehousing-solutions-warehousing.web.400.196.jpg
96.6.17.154200 OK 28 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/teaser-image-1200x588/glo-warehousing-solutions-warehousing.web.400.196.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 400x196, components 3\012- data
Hash 91dc2a4df7a7c791c11ae5703149da14
052413c3cf0382062a3ae4ddeed22734b08f6033
289e5d61bf5cb76662ce16f243a0797996cc8c81c7f6e998acee2e3127465ed7
GET /content/dam/dhl/global/core/images/teaser-image-1200x588/glo-warehousing-solutions-warehousing.web.400.196.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:07 GMT
etag: "6ba6-5edb127441db4"
accept-ranges: bytes
content-length: 27558
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/glo-our-divisions-teaser-large.web.1365.434.jpg
96.6.17.154200 OK 79 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/glo-our-divisions-teaser-large.web.1365.434.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1365x434, components 3\012- data
Hash 9b6f91423b68b6efc4cb7734be76a2c1
e1ba042aa44aef6d374bbeef2bac0b3c26357b1f
db6f9786eefb76f416006ac44746d92ba3f970ab329309bf9e0f9913aac716e6
GET /content/dam/dhl/global/core/images/teaser-large-2730x868/glo-our-divisions-teaser-large.web.1365.434.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:20:06 GMT
etag: W/"135a3-5edb127366dc6"
accept-ranges: bytes
content-length: 79267
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/logos/dhl-logo.svg
96.6.17.154200 OK 722 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/dhl-logo.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 75e6a3a06ceab9d5d544db411b461773
6133136f4082d6e1286023a7a28e32fe69d0ad40
60f60db64661c2ec17815671734b616bab2fe1befacad5482953f3e7dc13961a
GET /content/dam/dhl/global/core/images/logos/dhl-logo.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Wed, 16 Nov 2022 17:56:01 GMT
etag: "643-5ed9a2f81c6ec-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 722
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/logos/facebook-new.svg
96.6.17.154200 OK 698 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/facebook-new.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (963)
Hash 65511a53e9712caf75a543c78234fbfd
09501988af5b347f96b1793617483d9fa2b3ac61
350352f2e50e0d8a0e88979c40404f19360919f8d9b19a113172417e19e4e7fc
GET /content/dam/dhl/global/core/images/logos/facebook-new.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:38 GMT
etag: W/"57e-5edb12587bb34-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 698
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/logos/youtube-new.svg
96.6.17.154200 OK 614 B URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/logos/youtube-new.svg
IP 96.6.17.154:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (971)
Hash 7962bda21ad2fbf49b9bf2a3b61ba684
72e83d6dbd066a4c10507558e86739fb09b57331
ab6011f45627db15cb14f9699f51a5c853047b881508643c952286218e8fb15e
GET /content/dam/dhl/global/core/images/logos/youtube-new.svg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:39 GMT
etag: "584-5edb1259908eb-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 614
content-type: image/svg+xml
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/glo-insights-innovation-teaser-large.web.1365.434.jpg
96.6.17.154200 OK 135 kB URL HTTP/2 www.dhl.com/content/dam/dhl/global/core/images/teaser-large-2730x868/glo-insights-innovation-teaser-large.web.1365.434.jpg
IP 96.6.17.154:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1365x434, components 3\012- data
Size 135 kB (135341 bytes)
Hash e4727c87033fcd343536301a8b7c3d31
e1f4965fdab9255de1ab16681abdb0506955c323
73feb0b8cd1a47f984f792a808935bb35c9021664cd1c43ba9448e96e7097c72
GET /content/dam/dhl/global/core/images/teaser-large-2730x868/glo-insights-innovation-teaser-large.web.1365.434.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 22:33:43 GMT
etag: "210ad-5edb22e80019f"
accept-ranges: bytes
content-length: 135341
content-type: image/jpeg
cache-control: public, max-age=0
expires: Fri, 02 Dec 2022 11:17:13 GMT
date: Fri, 02 Dec 2022 11:17:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg
184.168.116.92301 Moved Permanently 0 B URL HTTP/1.1 www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: http://preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg
184.168.116.92301 Moved Permanently 0 B URL HTTP/1.1 www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg
184.168.116.92301 Moved Permanently 0 B URL HTTP/1.1 www.preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg
184.168.116.92301 Moved Permanently 0 B URL HTTP/1.1 www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - DHL
GET /wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: http://preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg
Vary: Accept-Encoding
Content-Length: 0
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico
96.6.17.154200 OK 1.2 kB URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico
IP 96.6.17.154:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d8106bf3a1d00ab43b01e6e3c92500eb
202b5e8654ab1b28351378293bca3b9d844cc29b
9ada5709e264c31b04a05bd85448a9bd5e91925e8d83df5cef0762ec97cc283e
GET /etc/clientlibs/dhl/clientlib-all/assets/favicon.ico HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 21:19:45 GMT
etag: "47e-5edb125f79c06"
accept-ranges: bytes
content-length: 1150
content-type: image/ico
cache-control: public, max-age=433858
date: Fri, 02 Dec 2022 11:17:14 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg
184.168.116.92404 Not Found 6.6 kB URL HTTP/1.1 preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash e1d24c8f37b8f054db6a631225a90878
9295e06f693296a7919809e39430ab4a26ff88c8
f59b77febd0d3e8eb5046af2b0f38db5d6b3b58f5e60b08f8a83e1f957056f5c
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-freightshipping.web.175.112.jpg HTTP/1.1
Host: preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.preetigera.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.preetigera.com/global/dhl/news-alerts.gnf.json
184.168.116.92404 Not Found 94 kB URL HTTP/1.1 www.preetigera.com/global/dhl/news-alerts.gnf.json
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 120304c38bd5224fe85da5bbd298eaf2
41ccb2923591d24126590fecf58fcf6d25f978ed
953ada0f8ea7ed62ec8a1170834ea9f97f5ddf2579b8eef2991e9e1fc8d9a6f5
Analyzer Verdict Alert fortinet Phishing
GET.html /global/dhl/news-alerts.gnf.json HTTP/1.1
Host: www.preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/info.php
Cookie: PHPSESSID=82ff68a6621992fef077a0a0db20e393
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 48496
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff
96.6.17.154200 OK 0 B URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff
IP 96.6.17.154:0
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 17 Nov 2022 14:12:44 GMT
etag: "a188-5edab2ed3b10a-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41322
content-type: application/font-woff
cache-control: public, max-age=1209600
expires: Fri, 16 Dec 2022 11:17:11 GMT
date: Fri, 02 Dec 2022 11:17:11 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff
96.6.17.154200 OK 0 B URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff
IP 96.6.17.154:0
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Thu, 24 Nov 2022 04:33:07 GMT
etag: W/"a170-5ee2fe6d50ebd-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 41263
content-type: application/font-woff
cache-control: public, max-age=1209600
expires: Fri, 16 Dec 2022 11:17:11 GMT
date: Fri, 02 Dec 2022 11:17:11 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-36e40d8b4a0a369beacf.woff
96.6.17.154404 Not Found 0 B URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-36e40d8b4a0a369beacf.woff
IP 96.6.17.154:0
GET /etc/clientlibs/dhl/clientlib-all/assets/fonts/iconfont-36e40d8b4a0a369beacf.woff HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.preetigera.com
Connection: keep-alive
Referer: http://www.preetigera.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
accept-ranges: bytes
content-length: 209373
content-type: text/html; charset=UTF-8
cache-control: public, max-age=1209600
expires: Fri, 16 Dec 2022 11:17:11 GMT
date: Fri, 02 Dec 2022 11:17:11 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=53, origin; dur=191
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
set-cookie: ak_bmsc=4F07E75A3D568FE1F43C4D70348356D1~000000000000000000000000000000~YAAQ3U0kF9IXb4OEAQAAmf6N0hGfNIiJLhBYVum3B+JVJUnfjF3tidKmH4IL20v54au2+O5hLqoFbxP3Bn118Lz3Vml4LqCY4ANz7ccBz+oEQuL4drnMz4pinFQcCOd/9Tzw1Mqf1UwtLj0n0KoQaAMnBKIVMq4FoAUhwPgOaipNbNm9GPHoJdatSLp08aweNliR+eMyyVPO4PwezM90CwOzevMxemJJcvlKncYYrhaMDyzYjFMQdU+XCE/OlpPkva2RGwumvWPUbEYKM8L70c9Pkq3IHIelHb1EbllXrf9JgUXVofxx7qLiE4E+XpB1WgQAZ8gF8qFOq1P412FRuXE3d5IQOj42WRONx+IF1vXvIzxFdV30a9KdLmutUFOFj/rghRnM; Domain=.dhl.com; Path=/; Expires=Fri, 02 Dec 2022 13:17:11 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg
184.168.116.92404 Not Found 0 B URL HTTP/1.1 preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-solution.web.175.112.jpg HTTP/1.1
Host: preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.preetigera.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:13 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg
184.168.116.92404 Not Found 0 B URL HTTP/1.1 preetigera.com/wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-content/themes/bridge/extendvc/dhl/dhl/content/dam/dhl/global/core/images/marketing-stage-2730x1120/glo-home-maketing-stage-tracking.web.785.246.jpg HTTP/1.1
Host: preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.preetigera.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:14 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg
184.168.116.92404 Not Found 0 B URL HTTP/1.1 preetigera.com/content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg
IP 184.168.116.92:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /content/dam/dhl/global/core/images/flyout-container-350x224/glo-flyout-parcelsdocuments.web.175.112.jpg HTTP/1.1
Host: preetigera.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.preetigera.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 11:17:14 GMT
Server: Apache
X-Powered-By: PHP/7.4.33
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://preetigera.com/wp-json/>; rel="https://api.w.org/"
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8