Report - cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf

Report Overview

Submitted URL
cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
IP
104.17.64.14
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 17:27:18
Access
public
Website Title
Track & Trace Express | DHL
Final URL
cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Tags
phishing suspicious
urlquery detections
Phishing - Generic phishing
Suspicious - Suspicious Javascript code

Detections

urlquery
8
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.dhl.com	40018	1989-05-25	2012-07-02	2024-05-06	1.4 kB	59 kB	96.6.17.154
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-05-06	974 B	134 kB	104.18.11.207
firebasestorage.googleapis.com	9937	2005-01-25	2017-01-30	2024-05-07	750 B	978 B	142.250.74.106
api.ipregistry.co	207993	2019-02-16	2019-06-15	2024-04-30	452 B	510 B	104.18.26.170
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-06	458 B	12 kB	104.17.25.14
code.jquery.com	634	2005-12-10	2012-05-21	2024-05-07	414 B	34 kB	151.101.194.137
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-05-07	869 B	67 kB	142.250.74.106
prod-cdn.wetransfer.net	25787	2009-02-02	2018-10-23	2024-05-02	2.0 kB	459 kB	54.230.111.37
cloudflare-ipfs.com	75147	2018-05-30	2021-01-20	2024-03-15	613 B	458 kB	104.17.64.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf	DHL Airways, Inc.

PhishTank

Scan Date	Severity	Indicator	Alert
2023-05-02	medium	cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	code.jquery.com/jquery-1.12.0.min.js	97 kB	2023-03-07	2024-05-19
Pretty URL code.jquery.com/jquery-1.12.0.min.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:02 Last Seen2024-05-19 16:32:37 Times Seen5062 Hash cbb11b58473b2d672f4ed53abbb67336 66f47b885d587aa9a6c453ae3f2c9a382e5c7ec7 5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-19
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-19 17:25:37 Times Seen56650 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-05-19
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-19 17:59:45 Times Seen145603 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf	449 kB	2023-11-10	2024-05-15
Pretty URL cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf IP 104.17.64.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-10 00:50:33 Last Seen2024-05-15 20:43:34 Times Seen7 Hash 50193692dbc7940c85c9224581a5322d 8d8e9b520099b8ace569632f4cdcd61cde1fdf46 9c6b0ba29417e4e4b8d2ee711819426948b437561de2c68a9516ff2dab7c5e57 Loading...

	cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf	7.6 kB	2023-08-07	2024-05-15
Pretty URL cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf IP 104.17.64.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-07 23:05:52 Last Seen2024-05-15 20:43:34 Times Seen8 Hash 44ad8fbcddee824aed758708217998ca 5eaec27a6b3c88535795ccdf131f074fc611df91 764e4a1723dac34e9fd4f812e98c0119b4a35157af42d3845b78369fdbd2d205 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	97 kB	2023-03-07	2024-05-19
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-19 18:37:23 Times Seen119948 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

		Size	First Seen	Last Seen
	#1 Write - fb1ff8cf13d1f25b1c153c8fbe05888c	150 kB	2023-11-10	2024-05-15
Pretty Observations First Seen2023-11-10 00:50:33 Last Seen2024-05-15 20:43:34 Times Seen7 Hash fb1ff8cf13d1f25b1c153c8fbe05888c 9699ede6113cef6eda774f640b3160216d15b771 452ff38614ff14a808cd735d90dbcae94b7f6fd85a0f3270f9b40fb7b1706edb Loading...

HTTP Transactions (16)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css

104.17.25.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/all.min.css
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59158)
Size
10 kB (10482 bytes)
Hash
74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386

HTTP Headers

GET /ajax/libs/font-awesome/5.15.3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:26:53 GMT
content-type: text/css; charset=utf-8
content-length: 10482
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6599bda5-28f2"
last-modified: Sat, 06 Jan 2024 21:52:53 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 600507
expires: Sun, 27 Apr 2025 17:26:53 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YdqKMTVEVG9SXWdxRr6yR4He49O876wnFgWcCW7%2BMHi%2BzBBcAodO4xpXp8ucfs%2FASPFuA0BT56VTDMNLIk9fn3tCBy7YTOC9gV6HQJ%2BI%2FNUGrsoIUEQciAaYaypihNTyFPunghoO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8802eae72b995695-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-1.12.0.min.js

151.101.194.137

200 OK

34 kB

URL GET HTTP/2
code.jquery.com/jquery-1.12.0.min.js
IP
151.101.194.137:443
ASN
#54113 FASTLY

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (32060)
Size
34 kB (33820 bytes)
Hash
cbb11b58473b2d672f4ed53abbb67336
66f47b885d587aa9a6c453ae3f2c9a382e5c7ec7
5f1ab65fe2ad6b381a1ae036716475bf78c9b2e309528cf22170c1ddeefddcbf

HTTP Headers

GET /jquery-1.12.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-17c52"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 17:26:53 GMT
age: 15832921
x-served-by: cache-lga21956-LGA, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 4, 930
x-timer: S1715102813.354221,VS0,VE0
vary: Accept-Encoding
content-length: 33820
X-Firefox-Spdy: h2

www.dhl.com/content/dam/dhl/global/core/images/teaser-image-main/dhl-logo.jpg

96.6.17.154

200 OK

55 kB

URL GET HTTP/2
www.dhl.com/content/dam/dhl/global/core/images/teaser-image-main/dhl-logo.jpg
IP
96.6.17.154:443
ASN
#16625 AKAMAI-AS

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 19.0 (Windows), datetime=2022:03:24 11:02:11], baseline, precision 8, 568x426, components 3
Size
55 kB (54809 bytes)
Hash
ee3f12c96f8722ea577e0cfd9269e0da
0587ed2a3850e0fc6e68332fc48e6fd9d381d8aa
d82ed9880a42fa5b0dbe8a6804f727f8a1a8598f52b7030b8d2c755bee11ffd6

HTTP Headers

GET /content/dam/dhl/global/core/images/teaser-image-main/dhl-logo.jpg HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Fri, 26 Apr 2024 08:59:44 GMT
etag: "d619-616fc2003bebd"
accept-ranges: bytes
content-length: 54809
content-type: image/jpeg
expires: Tue, 14 May 2024 17:26:53 GMT
date: Tue, 07 May 2024 17:26:53 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
cache-control: public, max-age=604800, stale-while-revalidate=86400
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js

142.250.74.106

200 OK

31 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (31021 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 02:27:35 GMT
expires: Sat, 03 May 2025 02:27:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 399558
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.74.106

200 OK

34 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:49:13 GMT
expires: Fri, 02 May 2025 01:49:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 488260
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

prod-cdn.wetransfer.net/packs/media/actiefgrotesque/ActiefGrotesque_W_Regular-1f437876.woff

54.230.111.37

200 OK

31 kB

URL GET HTTP/2
prod-cdn.wetransfer.net/packs/media/actiefgrotesque/ActiefGrotesque_W_Regular-1f437876.woff
IP
54.230.111.37:443
ASN
#16509 AMAZON-02

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerAmazon
Subjectwetransfer.net
Fingerprint0B:0D:65:82:74:97:1B:AD:60:D8:48:2B:7D:A7:00:EA:34:08:86:48
ValiditySun, 30 Jul 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 31120, version 1.6554
Size
31 kB (31120 bytes)
Hash
57cbbfdafc43e0deecc75a309dd042c6
b9cc2ff331b8520706de175f5b3fdba6731a9bfc
a9117f16bdaa64c953b303bef951dfca6316ef59f1b7ca72d5b946b1d815f6a6

HTTP Headers

GET /packs/media/actiefgrotesque/ActiefGrotesque_W_Regular-1f437876.woff HTTP/1.1
Host: prod-cdn.wetransfer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://prod-cdn.wetransfer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: font/woff
content-length: 31120
date: Tue, 07 May 2024 15:34:32 GMT
last-modified: Thu, 21 Dec 2023 14:25:54 GMT
etag: "57cbbfdafc43e0deecc75a309dd042c6"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jwL_zDQpmDmD0nEVz65b1Dj7Ylrs8K4AxedxHl9uTZeWt2L2dWmdxw==
age: 6743
X-Firefox-Spdy: h2

www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png

96.6.17.154

200 OK

1.2 kB

URL GET HTTP/2
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png
IP
96.6.17.154:443
ASN
#16625 AKAMAI-AS

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT

File type
PNG image data, 180 x 180, 8-bit colormap, non-interlaced
Size
1.2 kB (1173 bytes)
Hash
6e5f4e072a2793f9d9cd2a6974d5ccc9
df0d0b28ae71a37dd321d33435c3143a446e2741
148a09a41b13df86b44d2a1f70e2482e5d31fd91ce540a0dbe016011a5fd29b9

HTTP Headers

GET /etc/clientlibs/dhl/clientlib-all/assets/appletouch/apple-touch-icon-180x180.png HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Fri, 26 Apr 2024 06:53:00 GMT
etag: "495-616fa5ac1fe76"
accept-ranges: bytes
content-length: 1173
content-type: image/png
expires: Tue, 14 May 2024 17:26:54 GMT
date: Tue, 07 May 2024 17:26:54 GMT
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
cache-control: public, max-age=604800, stale-while-revalidate=86400
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

104.18.11.207

200 OK

11 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (32033)
Size
11 kB (10580 bytes)
Hash
5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

HTTP Headers

GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 17:26:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 03/13/2024 15:19:43
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1907f0bf3b53147acc56c50087c55007
cdn-cache: HIT
cf-cache-status: HIT
age: 25787
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8802eaeb4ff8712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

firebasestorage.googleapis.com/v0/b/files-89657.appspot.com/o/qfiles%2Fimg%2Flhd.html?alt=media&token=822fb2fb-b446-4a4b-9124-038e10a3ba5d&_gl=1*1r6a40t*_ga*MjAwODA4NTg4OC4xNjMxNjcxNjk3*_ga_CW55HF8NVT*MTY5OTQ3ODIzNi4zLjAuMTY5OTQ3ODIzNi42MC4wLjA.

142.250.74.106

412 Precondition Failed

452 B

URL GET HTTP/3
firebasestorage.googleapis.com/v0/b/files-89657.appspot.com/o/qfiles%2Fimg%2Flhd.html?alt=media&token=822fb2fb-b446-4a4b-9124-038e10a3ba5d&_gl=1*1r6a40t*_ga*MjAwODA4NTg4OC4xNjMxNjcxNjk3*_ga_CW55HF8NVT*MTY5OTQ3ODIzNi4zLjAuMTY5OTQ3ODIzNi42MC4wLjA.
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JSON text data
Size
452 B (452 bytes)
Hash
18ae161ff4734eb542ca3576dace6d06
2b4b9703ff3c1d7b423c5bccd3b15199ef7051c0
5bb4cd3797c91481f79f774b6ba11989b8f11ef9b7f4e17c4e11bd6f36cc7144

HTTP Headers

GET /v0/b/files-89657.appspot.com/o/qfiles%2Fimg%2Flhd.html?alt=media&token=822fb2fb-b446-4a4b-9124-038e10a3ba5d&_gl=1*1r6a40t*_ga*MjAwODA4NTg4OC4xNjMxNjcxNjk3*_ga_CW55HF8NVT*MTY5OTQ3ODIzNi4zLjAuMTY5OTQ3ODIzNi42MC4wLjA. HTTP/1.1
Host: firebasestorage.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 412 Precondition Failed
x-content-type-options: nosniff
content-type: application/json; charset=UTF-8
access-control-expose-headers: Content-Range, X-Firebase-Storage-XSRF
access-control-allow-origin: *
x-guploader-uploadid: ABPtcPr8M4n_juuO3FOxgaZgOgNrbZr-Kin3qhnhWQhdHg-8Di_fyaYxLk2_9n8CSj2T2FeGh2M
date: Tue, 07 May 2024 17:26:54 GMT
expires: Tue, 07 May 2024 17:26:54 GMT
cache-control: private, max-age=0
content-length: 452
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico

0.0.0.0

0 B

URL GET
www.dhl.com/etc/clientlibs/dhl/clientlib-all/assets/favicon.ico
IP
0.0.0.0:0
ASN
#0

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerDeutsche Post AG
Subjectwww.dhl.com
Fingerprint74:54:3F:D6:C6:2A:C2:09:FA:00:BA:FE:F9:DF:A2:BA:32:43:7E:27
ValidityMon, 31 Jul 2023 14:59:53 GMT - Tue, 30 Jul 2024 14:58:53 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /etc/clientlibs/dhl/clientlib-all/assets/favicon.ico HTTP/1.1
Host: www.dhl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-frame-options: DENY
content-security-policy: frame-ancestors 'self' https://dhlinsights.dhlsupplychain.dhl.com https://dpdhlcsiace.my.site.com; default-src 'self' data: https: blob: wss://cctr-chat.dhl.com:443 wss://cctr-xchat.dhl.com:443 wss://streaming.mypurecloud.de wss://collection.decibelinsight.net; script-src 'unsafe-inline' 'unsafe-eval' 'self' https: blob:; style-src 'unsafe-inline' 'self' https: blob:; media-src 'unsafe-inline' 'self' https: blob:
referrer-policy: same-origin
permissions-policy: microphone=(),camera=()
last-modified: Thu, 25 Apr 2024 19:19:59 GMT
etag: "47e-616f0ac57928f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 325
content-type: image/vnd.microsoft.icon
expires: Tue, 14 May 2024 17:26:54 GMT
date: Tue, 07 May 2024 17:26:54 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000 ; includeSubDomains
x-content-type-options: nosniff
cache-control: public, max-age=604800, stale-while-revalidate=86400
x-akamai-cache: Hit from child
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css

104.18.11.207

200 OK

121 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65371)
Size
121 kB (121200 bytes)
Hash
ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c

HTTP Headers

GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:26:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 10/31/2023 18:59:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 446bd24ea029afd12a1318d9aa570c4e
cdn-cache: HIT
cf-cache-status: HIT
age: 607560
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8802eae6ded1712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

prod-cdn.wetransfer.net/packs/media/actiefgrotesque/ActiefGrotesque_W_Medium-293e86f0.woff

54.230.111.37

200 OK

8.2 kB

URL GET HTTP/2
prod-cdn.wetransfer.net/packs/media/actiefgrotesque/ActiefGrotesque_W_Medium-293e86f0.woff
IP
54.230.111.37:443
ASN
#16509 AMAZON-02

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerAmazon
Subjectwetransfer.net
Fingerprint0B:0D:65:82:74:97:1B:AD:60:D8:48:2B:7D:A7:00:EA:34:08:86:48
ValiditySun, 30 Jul 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT

File type
Web Open Font Format, TrueType, length 32124, version 1.6554
Size
8.2 kB (8192 bytes)
Hash
e60441842d526ce1842dbaaa8137a724
b0ace8e2e7d9b6000d936fcb0ff90aa82e5c783a
4264a86b38af5e61b6077d64067de4e32cb24a7fb9d0ae248c9f919e345546bb

HTTP Headers

GET /packs/media/actiefgrotesque/ActiefGrotesque_W_Medium-293e86f0.woff HTTP/1.1
Host: prod-cdn.wetransfer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Referer: https://prod-cdn.wetransfer.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: font/woff
content-length: 32124
date: Tue, 07 May 2024 15:34:32 GMT
last-modified: Thu, 21 Dec 2023 14:25:54 GMT
etag: "868aedeefe7669e8a4f7196f7df5d058"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ymAnJ4vtX7ItGtj8UO4Rnq01tdTSahxBrwGZYIu5qwvXArOWQWuc4w==
age: 6742
X-Firefox-Spdy: h2

prod-cdn.wetransfer.net/packs/css/wallpaper-a71fc0d7.chunk.css

54.230.111.37

200 OK

2.3 kB

URL GET HTTP/2
prod-cdn.wetransfer.net/packs/css/wallpaper-a71fc0d7.chunk.css
IP
54.230.111.37:443
ASN
#16509 AMAZON-02

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerAmazon
Subjectwetransfer.net
Fingerprint0B:0D:65:82:74:97:1B:AD:60:D8:48:2B:7D:A7:00:EA:34:08:86:48
ValiditySun, 30 Jul 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (2335), with no line terminators
Size
2.3 kB (2333 bytes)
Hash
2bb7a6a719b0972a892b3511a51b1286
e91c12d02daaf089e885dbe383f8661907e91d7b
ea77ed1d93e324ec1114304d8c76376efa284a74bfce6eb4d7789962c89a613f

HTTP Headers

GET /packs/css/wallpaper-a71fc0d7.chunk.css HTTP/1.1
Host: prod-cdn.wetransfer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Sun, 10 Dec 2023 08:27:48 GMT
last-modified: Tue, 18 Jan 2022 09:54:19 GMT
etag: W/"22c80ac282130cab50ecd48d6aff7799"
cache-control: public, max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GfZU0kgeO7b56YUfuE3k53MCI7b-MHH6VyBhG8No2uHV8Ks5c9XjFA==
age: 12905946
X-Firefox-Spdy: h2

api.ipregistry.co/?key=jevqkvx5uige6tmr

104.18.26.170

403 Forbidden

160 B

URL GET HTTP/2
api.ipregistry.co/?key=jevqkvx5uige6tmr
IP
104.18.26.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerCloudflare, Inc.
Subjectipregistry.co
FingerprintFF:E4:98:5E:8F:25:BD:47:D8:14:73:8D:3F:B3:98:3A:6B:01:10:75
ValidityTue, 03 Oct 2023 00:00:00 GMT - Wed, 02 Oct 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
160 B (160 bytes)
Hash
1a0c4fbf8a1eec42248b25705f57f7a3
475cb325d2d77a252b3f940b2fc310a7391a0d9d
293c3951d601ac2ed6144e916dc43a10a6f97e7998bf0fa819a22577784c6bcc

HTTP Headers

GET /?key=jevqkvx5uige6tmr HTTP/1.1
Host: api.ipregistry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://cloudflare-ipfs.com/
Origin: https://cloudflare-ipfs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Tue, 07 May 2024 17:26:54 GMT
content-type: application/json
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8802eaec38b40afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf

104.17.64.14

200 OK

456 kB

URL User Request GET HTTP/2
cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
IP
104.17.64.14:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectcloudflare-ipfs.com
FingerprintAF:BC:14:E3:55:D9:D8:F0:3C:8E:26:A0:4E:4A:C8:E6:13:58:A0:59
ValidityWed, 24 Apr 2024 02:22:22 GMT - Tue, 23 Jul 2024 02:22:21 GMT

File type
HTML document, ASCII text, with very long lines (65488), with CRLF line terminators
Size
456 kB (456372 bytes)
Hash
2814fae9e2d6784c2248f3745b79d369
de6d90cb1d5d169fcf1ca954e50b308ca5207fe4
ff9dde83f8d40627378c9e47379f862ee053c291d0641897989e5ba78cc55152

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic phishing
urlquery	suspicious	Suspicious - Suspicious Javascript code
OpenPhish	phishing	DHL Airways, Inc.
PhishTank	phishing	Other

HTTP Headers

GET /ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf HTTP/1.1
Host: cloudflare-ipfs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 17:26:52 GMT
content-type: text/html
cf-ray: 8802eae2a81fb51d-OSL
cf-cache-status: MISS
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry"
vary: Accept-Encoding
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/
x-ipfs-roots: bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry
set-cookie: __cf_bm=c3yzzRexjXfulYPYP4TxqpoKmDTLfF6gdAfnA.E5Hk0-1715102812-1.0.1.1-q_9zfwcZxjTZLuvn3.t_QaNjTARCGeRrbk2OiLsEUu.IOuE9RcVUTp0kIsyKIawEruqHka6Lrx6OcxV4hBjyKQ; path=/; expires=Tue, 07-May-24 17:56:52 GMT; domain=.cloudflare-ipfs.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

prod-cdn.wetransfer.net/packs/css/application-25ff49de.chunk.css

54.230.111.37

200 OK

415 kB

URL GET HTTP/2
prod-cdn.wetransfer.net/packs/css/application-25ff49de.chunk.css
IP
54.230.111.37:443
ASN
#16509 AMAZON-02

Requested by
https://cloudflare-ipfs.com/ipfs/bafybeicg75qsvy3lcygkgfmbtiycmylsciuo3zujotnagiwgjubyv2nrry/?data=U1BpbGxhaUBrb2Nrdy5jb20=&subf=Transport-Label.pdf&file=Waybill.pdf
Certificate
IssuerAmazon
Subjectwetransfer.net
Fingerprint0B:0D:65:82:74:97:1B:AD:60:D8:48:2B:7D:A7:00:EA:34:08:86:48
ValiditySun, 30 Jul 2023 00:00:00 GMT - Wed, 28 Aug 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
415 kB (415266 bytes)
Hash
3cf8c718bf39ad6d732c9574769d8fa6
6a9dfe13406ac35eb909b411d0dd0c5b39efc4dd
307160c1a9ea716154e406cdf73ba99623840ae546006898023c6988f38da18f

HTTP Headers

GET /packs/css/application-25ff49de.chunk.css HTTP/1.1
Host: prod-cdn.wetransfer.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudflare-ipfs.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css
date: Sun, 14 Apr 2024 10:40:22 GMT
last-modified: Wed, 12 Jan 2022 13:40:42 GMT
etag: W/"3cf8c718bf39ad6d732c9574769d8fa6"
cache-control: public, max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fuwy8-stungVYOrGhUBtshDK49IKwzQTG8R14tqBP2U9Nm-9VA8Qsg==
age: 2011592
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (16)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers