r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3829
Expires: Tue, 31 Jan 2023 04:19:47 GMT
Date: Tue, 31 Jan 2023 03:15:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5954
Expires: Tue, 31 Jan 2023 04:55:13 GMT
Date: Tue, 31 Jan 2023 03:15:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20595
Expires: Tue, 31 Jan 2023 08:59:14 GMT
Date: Tue, 31 Jan 2023 03:15:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 02:35:51 GMT
content-type: application/json
age: 2408
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aYEAgTvirVGF/puutn62QmifdHGS7diAIqVEK+KUCCAuiAcGbJbPqIM5XAQkwyVKKw30lQKD3C0=
x-amz-request-id: SYBJ4S5MHGSDGJVT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 02:51:00 GMT
age: 1499
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:15:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/clientlib-core.min.js.download
76.76.21.93200 OK 7.4 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/clientlib-core.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (551)
Hash 0bf8f438a4dbbf9f8a4170bc3cc0d52e
d184360cfb771aee766971df2903742242f0bd2f
b4687e0cad1321e202182f2e7f98528c0c903b73934e79c588de3a49d306b776
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/clientlib-core.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7471
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="clientlib-core.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "0bf8f438a4dbbf9f8a4170bc3cc0d52e"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959168-626973e74bd0
content-length: 7417
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/AppMeasurement.min.js.download
76.76.21.93200 OK 34 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/AppMeasurement.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (32768)
Hash d860c16ac938f7d839f0ec158d02d0f0
8710f81ed151233677f7e32b229cb35293dd6840
9219086b4f2c3bf77854b2e06ccd97ad32b9b7a140e65ff8b974a3bae6c7854c
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/AppMeasurement.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="AppMeasurement.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "d860c16ac938f7d839f0ec158d02d0f0"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::8tgmh-1675134959170-7d46b97f87dd
content-length: 33557
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/di.js.download
76.76.21.93200 OK 198 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/di.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (32023)
Size 198 kB (197911 bytes)
Hash 7a066031e07af3945940bff77d66607d
a16bfd324f220543de15d6cf22868edd6ddf9c00
5b436cdf7fa536559ae3de5547d2d18406d74eaf8688493001deb7323e13cfa5
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/di.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7471
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="di.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "7a066031e07af3945940bff77d66607d"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959164-663ed4b61103
content-length: 197911
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/AppMeasurement_Module_ActivityMap.min.js.download
76.76.21.93200 OK 3.3 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/AppMeasurement_Module_ActivityMap.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (3155)
Hash 2d1382c349d480b6b41574ac0c1af066
53ddf017aa6b66b4d54ea0818dc5c04789b9e5ae
462a66acbf50e933685e7587e9f1441df8225b2bb4d6b7bc5e757eccf4ff6575
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/AppMeasurement_Module_ActivityMap.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="AppMeasurement_Module_ActivityMap.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "2d1382c349d480b6b41574ac0c1af066"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959170-608d3de5172b
content-length: 3301
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RC4a2bb33ef6f44735b695cd79403b721b-source.min.js.download
76.76.21.93200 OK 2.4 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RC4a2bb33ef6f44735b695cd79403b721b-source.min.js.download
IP 76.76.21.93:0
File type HTML document, ASCII text, with very long lines (2213)
Hash 4db08b9248dab613bb8a830e8c4d539e
db21955ccf3ba0b47488b58c8a4d33eae09faabc
50f664a916d61c5e3c6711cdea3b645600475d856c23f700c4e8c3f28384cee9
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RC4a2bb33ef6f44735b695cd79403b721b-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RC4a2bb33ef6f44735b695cd79403b721b-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "4db08b9248dab613bb8a830e8c4d539e"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::8tgmh-1675134959176-396dfcddf46e
content-length: 2360
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download
76.76.21.93200 OK 22 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (21747)
Hash a750a84d2cd5eb69aa0b8b1b94db6da8
56fd3e55c49aa5f3e48e525ae794da9b070cfa6c
bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/otSDKStub.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7471
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="otSDKStub.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "a750a84d2cd5eb69aa0b8b1b94db6da8"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959173-3542abf7e9d5
content-length: 21748
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js.download
76.76.21.93200 OK 902 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (755)
Hash 80aa0c6a2461c170652fd8da9cd68dd9
24354a1e0e8183df3f1617170a9d7f8cf83fdbee
dcf997875f9bf4fddf4c958fc00f73c364aeda73a7deda19b7e94cf8879b90c7
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RCc9f7f8cb76ec492d8b222a8d9c393cfc-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "80aa0c6a2461c170652fd8da9cd68dd9"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959178-9fb00575d40c
content-length: 902
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/otBannerSdk.js.download
76.76.21.93200 OK 378 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/otBannerSdk.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (65455)
Size 378 kB (377935 bytes)
Hash c08a27b021ce514db6140696f2626e53
a814a629ec4c1172b5cc1d27943eb1a14eb62467
42b2b9d16fbf8d3c6be72420699360790966e58fe30d8794fd90a71c8aef122d
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/otBannerSdk.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="otBannerSdk.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "c08a27b021ce514db6140696f2626e53"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959174-59ca5c2e669a
content-length: 377935
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RCd8dbbd2c011c438fb16fa415b35603f3-source.min.js.download
76.76.21.93200 OK 428 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RCd8dbbd2c011c438fb16fa415b35603f3-source.min.js.download
IP 76.76.21.93:0
Hash b0a5f75fdf9a3fe59c69d85e9eead65d
0f45c2139912410739a6491bfb5bf17f754582e7
49ad9dd29dec14f86f7041b809e37b9e3d2855d57a509b01206dd84a4ffd88d5
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RCd8dbbd2c011c438fb16fa415b35603f3-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RCd8dbbd2c011c438fb16fa415b35603f3-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "b0a5f75fdf9a3fe59c69d85e9eead65d"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959220-402e071af7b1
content-length: 428
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RC75da1b3258d94f5da50eaa2974232d9e-source.min.js.download
76.76.21.93200 OK 365 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RC75da1b3258d94f5da50eaa2974232d9e-source.min.js.download
IP 76.76.21.93:0
Hash 38963a03959262d1dd1d41bf2e2244a9
5a5c50e78aaf0a6af520612c3117e57e3c9f58ed
d49289d6a4d7d653836f1f2aca4e260b351c30a4447327e46dc197a824fea3af
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RC75da1b3258d94f5da50eaa2974232d9e-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RC75da1b3258d94f5da50eaa2974232d9e-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "38963a03959262d1dd1d41bf2e2244a9"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959220-e793b73b03c0
content-length: 365
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RC286ef291908641129c1261f15497d8cb-source.min.js.download
76.76.21.93200 OK 795 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RC286ef291908641129c1261f15497d8cb-source.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (648)
Hash 4554c1d31a3012e18a1cde11ce80fef2
9d2ff6f960f7f2a5749894491fd484a0eabe7e95
9437bc51d536fc7e5d7ad8e710914609041c02ac90486239e8f1bf1b0966fa11
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RC286ef291908641129c1261f15497d8cb-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RC286ef291908641129c1261f15497d8cb-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "4554c1d31a3012e18a1cde11ce80fef2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::8tgmh-1675134959221-abcbaf4aff9f
content-length: 795
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RCb82c49ee073741aabfa8bf0ee76a7e6a-source.min.js.download
76.76.21.93200 OK 978 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RCb82c49ee073741aabfa8bf0ee76a7e6a-source.min.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (831)
Hash 23d67940c0a133f9c994948bdad60ce3
030631f7cfdcf0ce1132547fe30eb969ac71dec8
b559bb98870ad41e16b26114055f5f09bfddbcb490e2687cb323dc366642d7f7
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RCb82c49ee073741aabfa8bf0ee76a7e6a-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RCb82c49ee073741aabfa8bf0ee76a7e6a-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "23d67940c0a133f9c994948bdad60ce3"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::957v7-1675134959221-7c13d5cbdec9
content-length: 978
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RC8a235772eaf34045a2daec1ffb713f36-source.min.js.download
76.76.21.93200 OK 321 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RC8a235772eaf34045a2daec1ffb713f36-source.min.js.download
IP 76.76.21.93:0
Hash 2f2fd4d12136fabd28e0ae17328757c2
3887b7c99da25f398d1a2767339409ed42ea7c10
f150b5ac912716c7955f5a6f10fa4e0dd7801f578ceeffc31fee82ee20e5ee55
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RC8a235772eaf34045a2daec1ffb713f36-source.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RC8a235772eaf34045a2daec1ffb713f36-source.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "2f2fd4d12136fabd28e0ae17328757c2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959220-cf8df5d88013
content-length: 321
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/manifest-received-rgb-red.svg
76.76.21.93200 OK 437 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/manifest-received-rgb-red.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (330)
Hash 2bb3de19f45ba230f0d023ee27636bbc
fe9d72fcc9d8a444bffb696097cac87b5ebaa582
0d9a17b0930fec1c670417b0a02a5bf0ced9c38d34f516d3f9f6370b3ade545b
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/manifest-received-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2104
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="manifest-received-rgb-red.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "2bb3de19f45ba230f0d023ee27636bbc"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::nhh22-1675134959222-de0a9b1a3bea
content-length: 437
X-Firefox-Spdy: h2
s2.go-mpulse.net/boomerang/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY
104.110.16.174200 OK 50 kB URL HTTP/2 s2.go-mpulse.net/boomerang/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY
IP 104.110.16.174:0
File type C source, ASCII text, with very long lines (65103)
Hash 8991c3ec80ec8fbc41382a55679e3911
8cc8cee91d671038acd9e3ae611517d6801b0909
f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800
GET /boomerang/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY HTTP/1.1
Host: s2.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Mon, 16 Jan 2023 08:21:41 GMT
timing-allow-origin: *
vary: Accept-Encoding
content-length: 50393
date: Tue, 31 Jan 2023 03:15:59 GMT
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/sec-cpt-3-9.js.download
76.76.21.93200 OK 10 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/sec-cpt-3-9.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (10455), with no line terminators
Hash 6f2d457efabed927621ad12a96d2e7a1
1e27bd223d2941b9f6522a1fe7ec6093d1100ea9
c6b4ade6fa79bbf42a9ba1be3a979f301139b4b9af2d79d2224f8db049d89438
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/sec-cpt-3-9.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7469
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="sec-cpt-3-9.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "6f2d457efabed927621ad12a96d2e7a1"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959284-805ee9a571eb
content-length: 10455
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/cTAINFc
76.76.21.93200 OK 198 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/cTAINFc
IP 76.76.21.93:0
Size 198 kB (198041 bytes)
Hash 6ac0ae2c7f0635d215afc680fdc028d4
5aee9e70f5b1f8c667625502e14ce4db6e870ad4
92d9c06cfa51c0ee85b3a7ea26934b299c290b0c76948736d8b87cd79dfb20e7
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/cTAINFc HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7470
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="cTAINFc"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "6ac0ae2c7f0635d215afc680fdc028d4"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959284-9c1371ad081e
content-length: 198041
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.js.download
76.76.21.93200 OK 325 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 325 kB (324772 bytes)
Hash 0e4dce68e6265e0675ff90760f3a55b6
57332847baa6f4d9fa54f9f70315219ecbe2aed4
67451ecbca61989f8e2a38f34cf17c36fef8cb81e23439345c28c146a308c068
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/bundle.fd704368e44b4ffba12b03be52aeca89.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7470
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bundle.fd704368e44b4ffba12b03be52aeca89.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "0e4dce68e6265e0675ff90760f3a55b6"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::zbwws-1675134959283-3705c2f1bbf4
content-length: 324772
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/coronavirus-rgb-red.svg
76.76.21.93200 OK 898 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/coronavirus-rgb-red.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (791)
Hash b06d09c3604ae6e96d08480a5a2438f2
b1bb172ba5582d7e6b6d42bf8bb83ac9f4bafb41
83cf5eb4325e916c62c1e8d9cc0afb9fe7a538e0d3deca2b0c11a0bac2b37746
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/coronavirus-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="coronavirus-rgb-red.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "b06d09c3604ae6e96d08480a5a2438f2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::ms4xj-1675134959223-43dc000517a9
content-length: 898
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/intransit-rgb-red.svg
76.76.21.93200 OK 392 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/intransit-rgb-red.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3019eb21a42b8e062af831144768e398
ac19d21c131b1804bf5fa9a5afba04af79daac5e
ca4c1ad509fd5285e670f5aca7f9b9ea1c425b85749cf6cdcba51c1a9f93d577
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/intransit-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="intransit-rgb-red.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "3019eb21a42b8e062af831144768e398"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::nhh22-1675134959230-9b285a6186f8
content-length: 392
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/employee-receives-customer-signature-0001.web.785.246.jpg
76.76.21.93200 OK 28 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/employee-receives-customer-signature-0001.web.785.246.jpg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 785x245, components 3\012- data
Hash 660e2ca17856c5245fb04c1680ba6e26
d469231d33c6c6e1d2a0e15ee2d14d38ad47385e
ce0148130ae85e01770380f5612ecfa251895a6340c5ab76cb1559d3a6d3baea
Analyzer Verdict Alert openphish DHL Airways, Inc.
GET /index_files/employee-receives-customer-signature-0001.web.785.246.jpg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="employee-receives-customer-signature-0001.web.785.246.jpg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "660e2ca17856c5245fb04c1680ba6e26"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::xqsxs-1675134959223-d53b510eb9b4
content-length: 27471
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/employees-working-in-warehouse-0005.jpeg
76.76.21.93200 OK 133 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/employees-working-in-warehouse-0005.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 133 kB (133103 bytes)
Hash 6623777f5fa26395aceb01ff5d33a784
655bc54a1d41eb3c7a8a30b7d8beb754efe5a3a3
98b552b411ab22afde008948a6858de1b8c4aef07d1ca1d7a275c559b7eb07a5
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/employees-working-in-warehouse-0005.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="employees-working-in-warehouse-0005.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "6623777f5fa26395aceb01ff5d33a784"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959281-06de6dcf1548
content-length: 133103
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/glo-core-gogreen-warehousing.svg
76.76.21.93200 OK 764 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/glo-core-gogreen-warehousing.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b35fdccf2d08e3881c190d2619449312
6818f542b225d5cea16f90de6ff82217ee7659a6
bea8a5bcb115d49d5222c79804eeaceadd425c1b36c19396e746749dcc5d9be3
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/glo-core-gogreen-warehousing.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="glo-core-gogreen-warehousing.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "b35fdccf2d08e3881c190d2619449312"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::ms4xj-1675134959223-ba65f7e0e6ea
content-length: 764
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/woman-signs-for-package-0002.jpeg
76.76.21.93200 OK 132 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/woman-signs-for-package-0002.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 132 kB (132214 bytes)
Hash 57cc63f2a031e76792dc07303b88ab39
0efe21e77d302897e5b32375c2545f54f84d3c4c
a0bef149b9ee6896bb177c57e681c0c5913ba4eaa3c4ba881758b619789cf9c2
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/woman-signs-for-package-0002.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="woman-signs-for-package-0002.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "57cc63f2a031e76792dc07303b88ab39"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::nhh22-1675134959224-3319b1bbcba7
content-length: 132214
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/booth-with-automotive-visions-0001.jpeg
76.76.21.93200 OK 50 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/booth-with-automotive-visions-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 588x330, components 3\012- data
Hash 75318a2b4a6346df3461c07b4f80c41b
88a742af4eb96351a0b10f408492a53626797034
6b670362ce751a72a377bdb43f1043ea8010797b51d134c12029eb20fdfed07a
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/booth-with-automotive-visions-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="booth-with-automotive-visions-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "75318a2b4a6346df3461c07b4f80c41b"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::8tgmh-1675134959281-5aa7c762e783
content-length: 49617
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/deliverer-opening-vehicle-0001.jpeg
76.76.21.93200 OK 121 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/deliverer-opening-vehicle-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 121 kB (120559 bytes)
Hash d88640f91e9b6e4ad6bda07acc86275c
3db45806f903667617c6683a131322002f44c3ef
14e8bf2e2854123e05fb7b000ac51f98afc8528ef028d9f2a5f542a96dfdc924
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/deliverer-opening-vehicle-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="deliverer-opening-vehicle-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "d88640f91e9b6e4ad6bda07acc86275c"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::8722z-1675134959221-55727a9a8c51
content-length: 120559
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 02:49:04 GMT
age: 1615
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/clientlib-core.min.css
76.76.21.93200 OK 29 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/clientlib-core.min.css
IP 76.76.21.93:0
File type ASCII text, with no line terminators
Hash b104a4a85c21511ada13e2c6e7552d37
475c6eb572d41f86d612ef9d8d64c2cd9ae95980
34a8d4f240f1b7a01d0472d5367e1bc57e17f70a12a91aae37dcac3b33b24732
Analyzer Verdict Alert openphish DHL Airways, Inc.
GET /index_files/clientlib-core.min.css HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="clientlib-core.min.css"
content-type: text/css; charset=utf-8
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "b104a4a85c21511ada13e2c6e7552d37"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::957v7-1675134959165-08f96c9e618f
content-length: 29
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/calendar-rgb-red.svg
76.76.21.93200 OK 235 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/calendar-rgb-red.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b4c967634ac036d8df2ee7d4be4d7a22
ea9e6c8d10e7a988a0a2b8498c177e755ec7028f
a34ececaaf6ac7f72ac9713717e0d5604b506dce363fc59ce301efc9794879e2
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/calendar-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="calendar-rgb-red.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "b4c967634ac036d8df2ee7d4be4d7a22"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::957v7-1675134959222-ffb814cc77e8
content-length: 235
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/plane-take-off-rgb-red.svg
76.76.21.93200 OK 378 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/plane-take-off-rgb-red.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash f02cdf0c0be40fa4c270e7e433532737
d9848af61ec17b35aae8c1017a207b2d93f40f54
459695cd37aba6102ac4ddd47bbfa857afc77c7ff69868c30a00ca9e6f622645
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/plane-take-off-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="plane-take-off-rgb-red.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "f02cdf0c0be40fa4c270e7e433532737"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::trt7x-1675134959230-06c4163f1b28
content-length: 378
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/glo-core-getaquote.svg
76.76.21.93200 OK 786 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/glo-core-getaquote.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 20224ab70f5524996910c3b856cced70
ca9f089140d5a68f6c4446494082df09c08b6e99
33e4d6ea85fcc033bc1d066cc202ae0a5a64dbbba953dce91874e81391d54eef
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/glo-core-getaquote.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="glo-core-getaquote.svg"
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "20224ab70f5524996910c3b856cced70"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::957v7-1675134959223-633104e0b3ec
content-length: 786
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4559
Expires: Tue, 31 Jan 2023 04:31:59 GMT
Date: Tue, 31 Jan 2023 03:16:00 GMT
Connection: keep-alive
dhlexpressdelivery.yipper.info/index_files/dl-about-us-globalization.jpeg
76.76.21.93200 OK 50 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/dl-about-us-globalization.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 588x330, components 3\012- data
Hash 3a04d4b6e419dd448e8946963f00a294
0193c9cbcf390fa071795579aa8560c2620b7ed9
414db5103b4092c9925e4d1a1f615369c9ba1d240f0a10425eeec49209e72fea
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/dl-about-us-globalization.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="dl-about-us-globalization.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "3a04d4b6e419dd448e8946963f00a294"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::8tgmh-1675134959282-dfb274bae3b7
content-length: 49851
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/truck-drives-through-forest-0001.jpeg
76.76.21.93200 OK 40 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/truck-drives-through-forest-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 588x330, components 3\012- data
Hash 24d8d8713bc9c1e770d1e6bae817e46f
c8525c36c2c4420c1e5cc764f853f30b3597c708
684476a13d8e6831be05e82113cec915b469d557aa3ddb97c3e9c78e4693ca05
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/truck-drives-through-forest-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="truck-drives-through-forest-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "24d8d8713bc9c1e770d1e6bae817e46f"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::nhh22-1675134959279-f2e2322c576b
content-length: 40374
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/woman-packs-packages-0001.jpeg
76.76.21.93200 OK 109 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/woman-packs-packages-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 109 kB (108972 bytes)
Hash dbce2b2e6e81e0b031ebd3dbeb12a1d9
3b6a1f6f1795a52085dac40357fc89dbe36caf04
80c11f16439c2c376dad2ca5784dc763b94e5fa1cef7a9d1f0805e6dcfbf45fc
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/woman-packs-packages-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="woman-packs-packages-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "dbce2b2e6e81e0b031ebd3dbeb12a1d9"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::4t92x-1675134959225-0aed1ba0d07c
content-length: 108972
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::xqsxs-1675134960202-ce4e6924e3fd
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/saved_resource.html
76.76.21.93200 OK 245 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/saved_resource.html
IP 76.76.21.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3179657846791d12f0296643a3c51ca2
f9953db86f36d102022e6485ff38efa4a617a9b3
076c71b49a7541c1ac2ef9acd709568614012ad327be3904db154aaa967ede21
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/saved_resource.html HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7470
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="saved_resource.html"
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "3179657846791d12f0296643a3c51ca2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134960203-fcb0531bbfdd
content-length: 245
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/saved_resource(1).html
76.76.21.93200 OK 394 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/saved_resource(1).html
IP 76.76.21.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (327)
Hash 2e44fa3bbec1a8b1e283c47e2f290980
65367591870230444dd9c5014fd843ef6e0d0f86
a3768ac4dec53be5bb4e1f9862cb6464d49de01283e81096034fb7f9a2a768ea
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/saved_resource(1).html HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7470
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="saved_resource(1).html"
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "2e44fa3bbec1a8b1e283c47e2f290980"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134960223-9310a0d78999
content-length: 394
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/saved_resource(2).html
76.76.21.93200 OK 307 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/saved_resource(2).html
IP 76.76.21.93:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92bebc159ca6acba061a207a40cf0ebf
f254b92207f75adb87a26a836e025ab09e2563f2
d040aafb5dde04569f0cc97823ef6d34a661c6a6a49c9fc0fd958317086f5705
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/saved_resource(2).html HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7470
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="saved_resource(2).html"
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "92bebc159ca6acba061a207a40cf0ebf"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::4t92x-1675134960223-c148e4d150ca
content-length: 307
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
23.38.200.237200 OK 12 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (32768)
Hash e616df092766c7ab7904619f971a35cc
a960429c42802a43e3ce728fc4d1e8bdab10e606
082ae7647bfdb639846791e5c0ca39b96544dff3aed0c365973c9589cd5b091e
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d860c16ac938f7d839f0ec158d02d0f0:1644856531.418573"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12163
expires: Tue, 31 Jan 2023 04:16:00 GMT
date: Tue, 31 Jan 2023 03:16:00 GMT
cache-control: no-cache
access-control-allow-origin: https://dhlexpressdelivery.yipper.info
timing-allow-origin: *
X-Firefox-Spdy: h2
assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
23.38.200.237200 OK 1.6 kB URL HTTP/2 assets.adobedtm.com/extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js
IP 23.38.200.237:0
File type ASCII text, with very long lines (3155)
Hash e672de61b277fc72de4299829bfbb31c
157a7409922d58a02dad3ba879d04eb2a3ef8f3d
e1a1c2a6f2ed4ffb63ebfda157eaf12c6ee3973be4da649eb63e0402c0d29215
GET /extensions/EP171e731c9ba34f1c950c36d26e3efd61/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d1382c349d480b6b41574ac0c1af066:1644856531.739514"
last-modified: Mon, 14 Feb 2022 16:35:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1597
expires: Tue, 31 Jan 2023 04:16:00 GMT
date: Tue, 31 Jan 2023 03:16:00 GMT
cache-control: no-cache
access-control-allow-origin: https://dhlexpressdelivery.yipper.info
timing-allow-origin: *
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/dhl-logo.svg
76.76.21.93200 OK 7.9 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/dhl-logo.svg
IP 76.76.21.93:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8c75450cc0545784803e8e13ea1ab3fa
9beed2410e8dfb5767c692dc01dfdc99f8290427
041bb1a988fe2ec9c029f5d92f167ec06a4a95f3b5b450c6673e6d024af8f714
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/dhl-logo.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="dhl-logo.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"3fecc9db35d5d2a9e6e71ab4b02d22e5"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::rmpmb-1675134959221-ca5a71522a19
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/workers-in-warehouse-0001.jpeg
76.76.21.93200 OK 266 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/workers-in-warehouse-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 266 kB (266186 bytes)
Hash 90a376c3cd4faa4c3579c2e8d5540071
8acaf40b974c53ee1645e1820e1f41b6e5964db8
9f709c306c5c297d7c00d80ca9f9e84680b0f1eb9f072a21b66a9cc5c7a1a182
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/workers-in-warehouse-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="workers-in-warehouse-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "90a376c3cd4faa4c3579c2e8d5540071"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::8tgmh-1675134959222-3992c3323b2a
content-length: 266186
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/assets/fonts/default-274a65bae9742377aaf0.woff
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/assets/fonts/default-274a65bae9742377aaf0.woff
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /assets/fonts/default-274a65bae9742377aaf0.woff HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::8tgmh-1675134960306-924e981a4286
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/assets/fonts/iconfont-da52a17c1b8deb953bfe.woff
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/assets/fonts/iconfont-da52a17c1b8deb953bfe.woff
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /assets/fonts/iconfont-da52a17c1b8deb953bfe.woff HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::8tgmh-1675134960308-cd74f7997a0c
content-length: 39
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.88.238101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.88.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 738QO/U+/BiN9e4r0/uNqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oYAYYYMwNlvfgi9ktOVzcCxto6U=
dhlexpressdelivery.yipper.info/assets/fonts/default-3e828e80f6e985c352eb.woff
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/assets/fonts/default-3e828e80f6e985c352eb.woff
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /assets/fonts/default-3e828e80f6e985c352eb.woff HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::8tgmh-1675134960337-cf72f2ba05fb
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/assets/fonts/default-815fcbb4d2c579017011.woff
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/assets/fonts/default-815fcbb4d2c579017011.woff
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /assets/fonts/default-815fcbb4d2c579017011.woff HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::4t92x-1675134960338-03a6fb4ba8e3
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/assets/fonts/default-5a6dd86f272b304a8b83.woff
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/assets/fonts/default-5a6dd86f272b304a8b83.woff
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /assets/fonts/default-5a6dd86f272b304a8b83.woff HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::4t92x-1675134960346-18a5b4ca8a5f
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/workers-at-the-container-port-0001.jpeg
76.76.21.93200 OK 188 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/workers-at-the-container-port-0001.jpeg
IP 76.76.21.93:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1197x897, components 3\012- data
Size 188 kB (187987 bytes)
Hash c70790f3fe6302040b3b239d1b893d2a
817460122f877c12ab4c17f974f9e6eb84826766
5b6c8d868c510905e0e0ddd2dec2c25cb9581f18dd6159e137919369451d50d4
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/workers-at-the-container-port-0001.jpeg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="workers-at-the-container-port-0001.jpeg"
content-type: image/jpeg
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "c70790f3fe6302040b3b239d1b893d2a"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::p6qjt-1675134959230-3d43bf91da6e
content-length: 187987
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/saved_resource(3).html
76.76.21.93200 OK 149 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/saved_resource(3).html
IP 76.76.21.93:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3c2ccda97c47ede0b1c91b11efd575ea
0a348c4b61c961aba7618f909beb87f740a81983
97f9b10039b05e1af4a3c9b778fc72ba44cf68a376e4ec1d55f2558f16cf3e50
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/saved_resource(3).html HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Cookie: cookieDisclaimer=seen
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7465
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="saved_resource(3).html"
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "3c2ccda97c47ede0b1c91b11efd575ea"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::4t92x-1675134960442-ac6c4d76392b
content-length: 149
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/otSDKStub.js.download/consent/21ea6bde-3c6a-4350-a8dc-e86228114de3/21ea6bde-3c6a-4350-a8dc-e86228114de3.json HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::p6qjt-1675134960588-c3cd3cd7960e
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY
76.76.21.93200 OK 210 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY
IP 76.76.21.93:0
File type C source, ASCII text, with very long lines (65103)
Size 210 kB (209939 bytes)
Hash fa4c76a7fde62b18054cf7eb8e946012
b20150066a879d2b78dd3d4908f4acd148ee66f8
09ebd7f407439990aac227e70da23e1a819e8e30282928e324370805f480bec4
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/RSVGU-547KJ-ZUMZD-ZW27F-P4RHY HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/saved_resource.html
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7468
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="RSVGU-547KJ-ZUMZD-ZW27F-P4RHY"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "fa4c76a7fde62b18054cf7eb8e946012"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::4t92x-1675134960671-e3c6e328bba1
content-length: 209939
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/b2d2adfa16cf.js.download
76.76.21.93200 OK 70 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/b2d2adfa16cf.js.download
IP 76.76.21.93:0
File type ASCII text, with very long lines (34655)
Hash f55517b12ce8a2873dc4d78e6422ccd2
2b0d5562434a92b92fe3d0ba08bb225718316cd1
a827d24021c18a4d70407da9c812ac7d9650ca0b1e51d5a82f078541706f69bc
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/b2d2adfa16cf.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/saved_resource(1).html
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7468
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="b2d2adfa16cf.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "f55517b12ce8a2873dc4d78e6422ccd2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::bnp4v-1675134960670-f1c176866b9b
content-length: 69976
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/global/dhl/news-alerts.gnf.json
76.76.21.93404 Not Found 39 B URL HTTP/2 dhlexpressdelivery.yipper.info/global/dhl/news-alerts.gnf.json
IP 76.76.21.93:0
Hash d4ac7f1bba70ba87c56e6d93092b7cca
96492a95a7f9153eed58a3598c4cce56edc6f8d1
91218093a08027e8f69c8051f9deef1fe6c22b278b3f6bdf761e7587cb272774
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /global/dhl/news-alerts.gnf.json HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-error: NOT_FOUND
x-vercel-id: arn1::bnp4v-1675134960715-831237f3a556
content-length: 39
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/saved_resource(4).html
76.76.21.93200 OK 600 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/saved_resource(4).html
IP 76.76.21.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash e03f26e56967581737fa24af77fa089c
e0ce8f0f04f127366850688ae1332823e4bb763c
2958a930716c25d139e29c39391738d79f25a0e164aa04f4505daff66da665c7
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/saved_resource(4).html HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Cookie: cookieDisclaimer=seen
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7466
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="saved_resource(4).html"
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: "e03f26e56967581737fa24af77fa089c"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::p6qjt-1675134960655-eb7d6664656b
content-length: 600
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
76.76.21.93200 OK 97 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css
IP 76.76.21.93:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 20dd40a42f64f4dcbaf3e89f5d1fd0a8
aae752b14aa0aceffdd0c41fbf034e2394d39d1d
042754127074896d3e89edb267e11c1f062d7cbfb93f9b0cb53ef0dc589567ae
Analyzer Verdict Alert openphish DHL Airways, Inc.
GET /index_files/bundle.fd704368e44b4ffba12b03be52aeca89.css HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="bundle.fd704368e44b4ffba12b03be52aeca89.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: W/"e14eb89e7730e08affef9a4e3408beb2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::nhh22-1675134959169-a5b730f425ee
X-Firefox-Spdy: h2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png
96.6.17.154200 OK 1.2 kB URL HTTP/2 www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png
IP 96.6.17.154:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash 6e5f4e072a2793f9d9cd2a6974d5ccc9
df0d0b28ae71a37dd321d33435c3143a446e2741
148a09a41b13df86b44d2a1f70e2482e5d31fd91ce540a0dbe016011a5fd29b9
GET /etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
last-modified: Wed, 18 Jan 2023 17:22:45 GMT
etag: "495-5f28d108f0b81"
accept-ranges: bytes
content-length: 1173
content-type: image/png
cache-control: public, max-age=0
expires: Tue, 31 Jan 2023 03:16:00 GMT
date: Tue, 31 Jan 2023 03:16:00 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash f00a5e099baa6fb6de03dd876b13a8cd
f504f7260f35dd528cf26a83aa18f343561382e9
1126ad2cd65349b69fee3d133a5438e66e6bc466e10d346237076544baebc1fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=97816
Date: Tue, 31 Jan 2023 03:16:00 GMT
Etag: "63d74d85-1d7"
Expires: Wed, 01 Feb 2023 06:26:16 GMT
Last-Modified: Mon, 30 Jan 2023 04:54:29 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YwWuRlr8YOhuXcuGzayreoTNyw0BrPnmScZro7D9RFlsZOr5Bg6Cgw==
Age: 5507
w.usabilla.com/b2d2adfa16cf.js?lv=1
52.210.21.49200 OK 16 kB URL HTTP/2 w.usabilla.com/b2d2adfa16cf.js?lv=1
IP 52.210.21.49:0
File type ASCII text, with very long lines (34655)
Hash f89fbf7e8cd24be977dde1a23435011e
a4e2e9a2637146c5af12409b527cf3b12903a338
e119fe3b517a2b202c759d7c436aa0afe3f7e30bfc506e564745b07f9bda4394
GET /b2d2adfa16cf.js?lv=1 HTTP/1.1
Host: w.usabilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: text/javascript
content-length: 15968
cache-control: public,max-age=0
content-encoding: gzip
etag: "9e259da63572f8028c2f284a2c352961"
pragma: no-cache
x-widget-server: 2.1
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/558ed1e5ab2b5603beed5a890431c8c4
76.76.21.93200 OK 1.6 kB URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/558ed1e5ab2b5603beed5a890431c8c4
IP 76.76.21.93:0
File type PNG image data, 35 x 126, 8-bit colormap, non-interlaced\012- data
Hash 50b476a98e8a8fcab1eac59777d9491a
e7c94532df83b7d56e5e6512408b342c6eeb9591
3221db8f898b88e467ebbb8ae155a37bd02087b3df197ad5c4ecead06db08cdf
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/558ed1e5ab2b5603beed5a890431c8c4 HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/index_files/saved_resource(4).html
Cookie: cookieDisclaimer=seen
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="558ed1e5ab2b5603beed5a890431c8c4"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:16:01 GMT
etag: "50b476a98e8a8fcab1eac59777d9491a"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::p6qjt-1675134960824-f2af47530386
content-length: 1577
X-Firefox-Spdy: h2
c.go-mpulse.net/api/config.json?key=RSVGU-547KJ-ZUMZD-ZW27F-P4RHY&d=dhlexpressdelivery.yipper.info&t=5583783&v=1.720.0&sl=0&si=08b16158-4c44-4f10-a1fc-78fd33ea706b-rpbyf2&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=326248
23.38.200.138200 OK 51 B URL HTTP/1.1 c.go-mpulse.net/api/config.json?key=RSVGU-547KJ-ZUMZD-ZW27F-P4RHY&d=dhlexpressdelivery.yipper.info&t=5583783&v=1.720.0&sl=0&si=08b16158-4c44-4f10-a1fc-78fd33ea706b-rpbyf2&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=326248
IP 23.38.200.138:0
File type JSON data\012- , ASCII text
Hash fab3350f517d18b7477da4ae18a9c167
de5f852dd26c67317a93786d90be83834155ae4b
b5f00536668e50df07ecb903e83a51385cc341ba621ee6933be30794fdd92586
GET /api/config.json?key=RSVGU-547KJ-ZUMZD-ZW27F-P4RHY&d=dhlexpressdelivery.yipper.info&t=5583783&v=1.720.0&sl=0&si=08b16158-4c44-4f10-a1fc-78fd33ea706b-rpbyf2&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=326248 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlexpressdelivery.yipper.info
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=120, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Content-Length: 51
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
Content-Type: application/json
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10506
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10506
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10506
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
collection.decibelinsight.net/i/13379/62048/c.json
18.192.110.189200 OK 4.9 kB URL HTTP/2 collection.decibelinsight.net/i/13379/62048/c.json
IP 18.192.110.189:0
Hash 48d92377164417777544d3b2d5f2b55a
2d54ac4741858f4d817cff7d4f40b60a7d3d4a25
7ec5bff67bbff1963f2a3dd29849f7084f49fe2809df6eb0c4f033cfc125654b
GET /i/13379/62048/c.json HTTP/1.1
Host: collection.decibelinsight.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dhlexpressdelivery.yipper.info
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 03:16:01 GMT
content-type: application/json
cache-control: private, max-age=31537800
timing-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, X-HTTP-Method-Override
access-control-allow-origin: https://dhlexpressdelivery.yipper.info
access-control-allow-credentials: true
vary: Origin
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10506
Expires: Tue, 31 Jan 2023 06:11:07 GMT
Date: Tue, 31 Jan 2023 03:16:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 4952
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v9Wphg34UGE5kkZ9RKBcphcpPuCn54oVyepzTW5rZ3J9nkL9J501PA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:03:23 GMT
age: 18758
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 4665
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lJril-pCQ3MCMoVEFu3kmDuv4T1ABYMFJTuC5dbwxGe1_ydrbUkt8Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 03:40:12 GMT
age: 84949
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cbc9f50b0a96fb69fa2e948aa3125413
e7f13a6e81263e73ac5777959d63b567f50848d5
2e3411687a31211dbf0aa732f8d93a3c5a4748afb264e695d36782700c8e8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12906
x-amzn-requestid: 4d09cdf1-2b4b-4f72-a313-caf6660774d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsLoHaHIAMF1uQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d22717-7074bd5202e3aced21ac49e3;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:09:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZkPnGMNVHQUSKvsqXZajTFA6FiOiZvSXHU6QN8zbCrSXKKmSdCWVqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:47:13 GMT
age: 16128
etag: "e7f13a6e81263e73ac5777959d63b567f50848d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e575f4c5e3aa793f846cadc8baf386c
f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d
09a5bbe4fb7f23ee43228267f30c1ef0cd8747e515e01c963df0756b866f23ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 059475a7-d7de-4a44-9fc7-11fb24e201b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_9G8DIAMF64A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e399-57fea3031d1e93ec02308fac;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vzubP2I1xR5NF1amWIPiIlp6yPykWhz-CEbwDiJOs-eTWkTE-fvfjA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 04:12:11 GMT
age: 83030
etag: "f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
access-control-allow-origin: *
age: 35581
cache-control: public, max-age=0, must-revalidate
content-disposition: inline
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 03:15:58 GMT
etag: W/"12636c88b9a8e2144537f0051148153d"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134958824-3534852a17ca
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/linkedIn-new.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/linkedIn-new.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/linkedIn-new.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="linkedIn-new.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"43efff953a2a3baf6a2ef0528f55dc07"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::957v7-1675134959283-a6198d0d3dc5
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/powered_by_logo.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/powered_by_logo.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/powered_by_logo.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="powered_by_logo.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"63e737d3544164d2b7f4fbca416ac807"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::zbwws-1675134959294-872b1ac1442b
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/glo-core-online.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/glo-core-online.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/glo-core-online.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="glo-core-online.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: W/"3d612e654839ed972b9420e332b03ccc"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::xqsxs-1675134959223-b394f2d4cd99
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/youtube-new.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/youtube-new.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/youtube-new.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="youtube-new.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"376247a0b06e705c758fe04978ea9df5"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::8722z-1675134959282-ca13a495cf6e
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/instagram-new.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/instagram-new.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/instagram-new.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="instagram-new.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"056511aeb5282ecaab9fbf10ed2273e5"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::rmpmb-1675134959284-568695d8af04
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/glo-footer-logo.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/glo-footer-logo.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/glo-footer-logo.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="glo-footer-logo.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: W/"d1b0e043744fd642282117a03d308b17"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::bnp4v-1675134959364-2af4060dd0a3
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js.download
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js.download
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/launch-ENa2e710b79eef40758cbb936003b8b231.min.js.download HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 7471
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="launch-ENa2e710b79eef40758cbb936003b8b231.min.js.download"
content-type: application/octet-stream
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: "9863962e6a0c94f157ee79931b337b9e"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::xqsxs-1675134959169-05e467aa5fcd
content-length: 635561
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/globe-rgb-red.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/globe-rgb-red.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/globe-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="globe-rgb-red.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"85bdeaf8e78df9f2b33e226ad8cb87c2"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ms4xj-1675134959223-29a7818ffd8f
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/mobile-phone-rgb-red.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/mobile-phone-rgb-red.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/mobile-phone-rgb-red.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="mobile-phone-rgb-red.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"76e690a4c6863b7375902a23319dec1d"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::8tgmh-1675134959224-1cdac0d797ac
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/sec-3-9.css
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/sec-3-9.css
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
GET /index_files/sec-3-9.css HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="sec-3-9.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Tue, 31 Jan 2023 03:15:59 GMT
etag: W/"6bfbead72c4a94dd4de9d6051d5bb497"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::lv6mv-1675134959284-eb125d9fd840
X-Firefox-Spdy: h2
dhlexpressdelivery.yipper.info/index_files/facebook-new.svg
76.76.21.93200 OK 0 B URL HTTP/2 dhlexpressdelivery.yipper.info/index_files/facebook-new.svg
IP 76.76.21.93:0
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /index_files/facebook-new.svg HTTP/1.1
Host: dhlexpressdelivery.yipper.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dhlexpressdelivery.yipper.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="facebook-new.svg"
content-encoding: br
content-type: image/svg+xml
date: Tue, 31 Jan 2023 03:16:00 GMT
etag: W/"259d8928a7fd5329b3d7fd80eca2ea2f"
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1:arn1::lv6mv-1675134959458-bf86dca31037
X-Firefox-Spdy: h2