r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4196
Expires: Wed, 07 Dec 2022 14:15:42 GMT
Date: Wed, 07 Dec 2022 13:05:46 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aaee4cb7873d6f1effbadf269482e100
bd55730ac8414fb6861b03c2a97319b4063e2cb9
d724fd9c5704fb8948d575357cad0032e89cf275d57ddb86f013fa97e033487c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2625
Cache-Control: max-age=166154
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:05:46 GMT
Etag: "63906b73-1d7"
Expires: Fri, 09 Dec 2022 11:15:00 GMT
Last-Modified: Wed, 07 Dec 2022 10:31:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13636
Expires: Wed, 07 Dec 2022 16:53:02 GMT
Date: Wed, 07 Dec 2022 13:05:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 12:18:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2820
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: VALn+LW39hhp+YTrpy3TzWf1sVU9nASaa4Tdeg2hvnGjLxVWArHIZ+Rp4/Czs+104pFFfmOnGSs=
x-amz-request-id: 915804JYQ7WVQ13P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 12:47:30 GMT
age: 1096
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 13:05:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 12:11:20 GMT
cache-control: public,max-age=3600
age: 3266
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2609
Cache-Control: max-age=161072
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 13:05:47 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 09:50:19 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
axo.wdp.mybluehost.me/correos/Recibir_paquete.php
66.235.200.146200 OK 71 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/Recibir_paquete.php
IP 66.235.200.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (363), with CRLF line terminators
Hash 6ee099fe28bd6dd250cd5ac78d926ce7
e10a00e2c23bcf46387db1e6bcc58ca679b889e9
a8ccfe2d88b3b2a9513600aebc0465e36ddd46d0ba7f7e61563c96bcbc6c3654
GET /correos/Recibir_paquete.php HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:46 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639; path=/
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Wed, 07 Dec 2022 13:05:46 GMT
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d79878819b4f3-OSL
Content-Encoding: gzip
push.services.mozilla.com/
44.240.57.100101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.240.57.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VpuIHVZHfStaWSwlpqkUSQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gl3Mx2lxYLpxp4114nojSfkbt88=
axo.wdp.mybluehost.me/correos/Seleccione%20medio%20de%20pago_fichiers/main.css
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/Seleccione%20medio%20de%20pago_fichiers/main.css
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/Seleccione%20medio%20de%20pago_fichiers/main.css HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d798cbdaab4f1-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/gtm.js
66.235.200.146200 OK 36 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/gtm.js
IP 66.235.200.146:0
File type ASCII text, with very long lines (1555)
Hash 44bdfc0cf4a58ea0501ee4158ecfb797
fa8118a6705e7dc2d768bc3c95bcb64873780250
5a0718ba4e5bb8e253141067c2474b9ccbdff292e0fe0cea1fc214d41e4accf7
GET /correos/assets/recibir_paquete_files/gtm.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d798cbb7eb4e8-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/container.js
66.235.200.146200 OK 317 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/container.js
IP 66.235.200.146:0
File type ASCII text, with very long lines (514)
Hash abbcd47293a1d3441d6c87604d5ab3c2
302f022c93d5114efcc2a8cf57d00ee743f3e8b4
c2bc7d8c507b509332bd93fbc743dbc7d6d5fec2e530461a94ad70b664fd19b0
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/container.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: application/javascript
Content-Length: 317
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 775d798e38e4b4f3-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-provider-correosid.js
66.235.200.146200 OK 359 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-provider-correosid.js
IP 66.235.200.146:0
File type ASCII text, with very long lines (544)
Hash 97a7641b5f45d665acd091f0d8a09ae7
7a00bd2d400ca07f0c6ba9feaf0244ab111a201d
8ebb6a5164236229738be9ccac10d47756fd9d9900cd6e162dc67db982e3fa8d
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/clientlib-provider-correosid.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: application/javascript
Content-Length: 359
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 775d798e3c4d0b51-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-site.js
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-site.js
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/clientlib-site.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d798e38a6b4eb-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
66.235.200.146200 OK 24 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
IP 66.235.200.146:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 7475c0062792bef3eb4b47b6977b6eb0
50d6c17bfc646b63e5a09c5aff35d148d89229a7
5e85913c688db985cbe8f25bcd95c1ebfdff745707ca6d0e480e556c38de43d3
GET /correos/assets/recibir_paquete_files/correos-ui-kit.css HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:47 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d798e0dd3b523-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-base.js
66.235.200.146200 OK 39 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/clientlib-base.js
IP 66.235.200.146:0
Hash 960fb05f62844477550c42f02b15a856
783661a2862276ec823fc87f0749e40029e9f84d
a1a3de0317dcd6201f9903914505f8994bc1dd967853b9280add75fb37c2502d
GET /correos/assets/recibir_paquete_files/clientlib-base.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d79908a3fb4f1-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4786
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:05:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4786
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:05:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4786
Expires: Wed, 07 Dec 2022 14:25:34 GMT
Date: Wed, 07 Dec 2022 13:05:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:32:51 GMT
age: 16377
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0f0782df385287698881f1c19e79b96
5a25f245b594f6cbf2fdaeed2463ac5fbc08068a
4f795cd2286e194cd96751e6a4e3bd0da09c6db5344182e51986b65149e75cd7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3a455f5-9c19-4e6f-ab7a-1fe9c399118f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8579
x-amzn-requestid: 0efa303a-364e-488d-beac-24836c7c1e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirE2KoAMFX9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5564a0c0264ed36f0497e17e;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xpzGji_JAWkUjhXLouXWlin6rV-44shz6Z_STqo7uK7ZUV2PWs7Zpg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "5a25f245b594f6cbf2fdaeed2463ac5fbc08068a"
content-type: image/jpeg
age: 54509
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4884ce2731d3033b12e4792c1bbf453e
63b6efc98cb04228d82ac28fceb97bb1cf8d82fb
8c37704d0e1fd16239e28cbdb88c5ac6a2e9cfb70f8457bfab127202f89d3788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167b7461-ee08-4205-a299-12e7c883b958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14896
x-amzn-requestid: 58d94b15-dce0-44c0-96b1-917f1206a39e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cnA4RFkeoAMFfGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c4834-7c1667b53795d5c11a3bfdda;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 07:11:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tM0WOO_Ypgj2QxJSz9GHZZTsKjzsvyD6tjpp4G0ZpuGAIGmnEe4oqQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:15:11 GMT
age: 17437
etag: "63b6efc98cb04228d82ac28fceb97bb1cf8d82fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9257f2e3b9bd1b3aa262b0f4bf57968
4bcdd6ecd63834aa1010faf19457a97f37ae99fa
9afd592279c51b533b3bf72a860cf4a8f2bc6cf01b07d1ab6f11f0ff302e0ef6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7392
x-amzn-requestid: f4b6890a-7a8f-48f8-b2af-365cb5f681e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwREFiXoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-009e524f30c72d0629c877bb;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C0-H0LUbxaxMEXoDf6PXEFAvVTj2D9K2M7eshRo39QzAAWSk2ubepA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:15:41 GMT
age: 35407
etag: "4bcdd6ecd63834aa1010faf19457a97f37ae99fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:49:34 GMT
age: 58574
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e95ebce9d79ba46cb96af9a45af1762f
985c6761675e6bcc0186f64d55f94cf09352f05c
5837d6bf31e57f955ba2577f112281cc33a5502b358c83192f4e396b57042ac0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22142ca2-85b4-47d4-8eaa-fcf2823b2c28.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: 0f5d1b0e-1193-4006-8a54-555681d9f62e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlqVGMjoAMFS6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb641-6366ea6464122d857407cdff;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nm0qQpo75zvDYWxv8V3GvOSBFenh8ocfjV9d02Mc2l-ABieIb3h2uA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:53:40 GMT
age: 54728
etag: "985c6761675e6bcc0186f64d55f94cf09352f05c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js
66.235.200.146200 OK 41 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js
IP 66.235.200.146:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash b6a3082e6e6089861a768acd1862234f
8c7af687e0681875236ba1f4ceba326e03f16cd6
e4e7a1a3fa6bcf6a54ec274f5d2402c04247937305b9f2faf820abe1ce0957a5
GET /correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1_002.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d7991be13b4f3-OSL
axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js
66.235.200.146200 OK 76 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js
IP 66.235.200.146:0
File type ASCII text, with very long lines (18557)
Hash 1190a292cf2473ddf4b125df168f25a3
0567832c56b537bfba6b5e9d6aeedc3020ee3bb1
90880a8157679d50a1fb5921f7742bbbc11980472d29d9188c16d0f463e62334
GET /correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-ui-1.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d7991cfd20b51-OSL
axo.wdp.mybluehost.me/correos/assets/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79928c45b523-OSL
axo.wdp.mybluehost.me/correos/index.php?redirection=
66.235.200.146302 Found 2 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/index.php?redirection=
IP 66.235.200.146:0
File type ASCII text, with CRLF line terminators
Hash 81051bcc2cf1bedf378224b0a93e2877
ba8ab5a0280b953aa97435ff8946cbcbb2755a27
7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: Recibir_paquete.php
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d7991dd4eb4eb-OSL
axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js
66.235.200.146200 OK 94 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js
IP 66.235.200.146:0
Hash 6b58b34b5118bb61f084968988aa4080
9440092cc4ff982b02646b41f67e08c93988d4f1
0582e4e57f7a27b5de4494badf12fb7a5a95cc8922bfbfa87973ce8809490f49
GET /correos/assets/Seleccione%20medio%20de%20pago_fichiers/jquery-1.js HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d799169ceb4e8-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/deco_bars.svg
66.235.200.146200 OK 390 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/deco_bars.svg
IP 66.235.200.146:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 362cb6842552c91c855bd1af1b7ed0e6
1e3e46349c13c39073d04361d19f92b6f6bca252
1b7f91d55b8a18c968775f26a506590c1606226c2805b9fdc6f3c6ad3d81ed8e
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/deco_bars.svg HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d799b8975b523-OSL
Content-Encoding: gzip
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/google_play.jpg
66.235.200.146200 OK 12 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/google_play.jpg
IP 66.235.200.146:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 270x80, components 3\012- data
Hash 71405560fcf941f01e531e8564ad9e3f
a970b8084d6e7cdd714dbd1add272ac630cd9fe9
bda17ffead5e3809b288330e7aa2d2b689c45cfadcef8249416d07afe34477a7
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/google_play.jpg HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: image/jpeg
Content-Length: 11827
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d799b89e40b51-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/apple_store.jpg
66.235.200.146200 OK 11 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/apple_store.jpg
IP 66.235.200.146:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 250x82, components 3\012- data
Hash 498c4a8cc089ec2fc0b87f460924b9b4
324b0ef1cf07829216653bf3fca04add4ebf553f
509066150aa1da2b163e681cff62f67f0becd0bb65cded95be964371835798f6
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/apple_store.jpg HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: image/jpeg
Content-Length: 11255
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d799b8cbeb4f3-OSL
axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/deco_triangles.svg
66.235.200.146200 OK 452 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/deco_triangles.svg
IP 66.235.200.146:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e304d44185f8b4ea8b0da53610afd5a5
c8ef1a1d927d84a5084ef2a3c2579c5db3f3bf79
539001edde525d9f03ffb5b8b6dbcb4afd5081c6d7ade792b844ca3663125d7f
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/assets/recibir_paquete_files/deco_triangles.svg HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:49 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 24 May 2022 00:59:06 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d799b8a33b4f1-OSL
Content-Encoding: gzip
axo.wdp.mybluehost.me/correos/index.php?redirection=
66.235.200.146302 Found 2 B URL HTTP/1.1 axo.wdp.mybluehost.me/correos/index.php?redirection=
IP 66.235.200.146:0
File type ASCII text, with CRLF line terminators
Hash 81051bcc2cf1bedf378224b0a93e2877
ba8ab5a0280b953aa97435ff8946cbcbb2755a27
7eb70257593da06f682a3ddda54a9d260d4fc514f645237f5ca74b08f8da61a6
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /correos/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: Recibir_paquete.php
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d799b8b00b4eb-OSL
axo.wdp.mybluehost.me/correos/Recibir_paquete.php
66.235.200.146200 OK 71 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/Recibir_paquete.php
IP 66.235.200.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (363), with CRLF line terminators
Hash 6730c1b6ff82d25a7abf50f4805f08c4
862c3501bb8b47eceda1ba27d762b8e8f0ea0bdf
4cd16e55cdc5fe92cc8de91a1735def1d65e8d8d08c8c329ab2e61ee055a4daf
GET /correos/Recibir_paquete.php HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Wed, 07 Dec 2022 13:05:50 GMT
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d799bef2db4e8-OSL
Content-Encoding: gzip
axo.wdp.mybluehost.me/correos/Recibir_paquete.php
66.235.200.146200 OK 71 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/Recibir_paquete.php
IP 66.235.200.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (363), with CRLF line terminators
Hash 24ec9226a01d9fe31a9bd109ba01127d
6270b1437c0c9434523f5cd11f99ccb63eeaf753
053d58c2c2d1e35141fd871e4f3f624e2b05f7bfd97363f8a5b38a6f436c67c4
GET /correos/Recibir_paquete.php HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
Last-Modified: Wed, 07 Dec 2022 13:05:51 GMT
CF-Cache-Status: MISS
Server: cloudflare
CF-RAY: 775d79a50cd40b51-OSL
Content-Encoding: gzip
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2 HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79a88af6b523-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2 HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79a88f5fb4eb-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1648744842199.woff2 HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79a89d4eb4f3-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2 HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79a87d4eb4f1-OSL
axo.wdp.mybluehost.me/correos/assets/pic_image/package.jpg
66.235.200.146200 OK 148 kB URL HTTP/1.1 axo.wdp.mybluehost.me/correos/assets/pic_image/package.jpg
IP 66.235.200.146:0
File type PNG image data, 671 x 354, 8-bit/color RGBA, non-interlaced\012- data
Size 148 kB (147502 bytes)
Hash 74e77f3b45d40fe9469d481a2c6d5172
7d3cf56aad927b1b4ce412faaf98dbd597e49738
6a8cfb4f1469ba08baad0f7ce62e3a775c0feeb39a2d8a4db508ac91123d3312
GET /correos/assets/pic_image/package.jpg HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: image/jpeg
Content-Length: 147502
Connection: keep-alive
Last-Modified: Mon, 14 Nov 2022 07:54:38 GMT
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79a87842b4e8-OSL
axo.wdp.mybluehost.me/libs/granite/csrf/token.json
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/libs/granite/csrf/token.json
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /libs/granite/csrf/token.json HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79ababc50b51-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79abffe4b523-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79af7fc9b4f1-OSL
axo.wdp.mybluehost.me/libs/granite/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/libs/granite/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /libs/granite/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79af4a51b4e8-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79af7c8eb523-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79af79d0b4eb-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79af7fde0b51-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b309b2b523-OSL
axo.wdp.mybluehost.me/libs/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/libs/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /libs/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b2df4bb4e8-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b32b2d0b51-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b30c79b4f1-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b30e20b4eb-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b6be8c0b51-OSL
axo.wdp.mybluehost.me/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/Recibir_paquete.php
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://www.santander.co.uk/
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b67c50b4e8-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b6be13b523-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b6bb18b4eb-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/clientlib-base/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79b6ba5bb4f1-OSL
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 7e31a8a96184e0b16ccc458ed81212e7
2adf5d5fc08bfbc71a89ba16295faa5a359d1189
b363cd3d4bb1d8327e69ed5316f4bd65d79676eb9e3b45971c24db5774b417d1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "B363CD3D4BB1D8327E69ED5316F4BD65D79676EB9E3B45971C24DB5774B417D1"
Last-Modified: Wed, 07 Dec 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3524
Expires: Wed, 07 Dec 2022 14:04:38 GMT
Date: Wed, 07 Dec 2022 13:05:54 GMT
Connection: keep-alive
www.santander.co.uk/
104.110.6.149200 OK 12 kB IP 104.110.6.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (54301)
Hash 527098f95ab3d0f61d0edf0a1d43879c
3bd35a68391915ac6af08b6d9806003def164c82
a49152fc6d3a5b448e2b973c660f28e356a08faef4b76ff5e57a6cd582f0001a
GET / HTTP/1.1
Host: www.santander.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) like Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://axo.wdp.mybluehost.me
Referer: http://axo.wdp.mybluehost.me/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
X-UA-Compatible: IE=edge
Content-Language: en
Last-Modified: Wed, 07 Dec 2022 09:28:37 GMT
ETag: W/"1670405317"
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: default-src 'none'; child-src 'self' 'unsafe-inline' https://www.googleadservices.com https://*.fls.doubleclick.net/ https://*.santander.co.uk https://santander.demdex.net; script-src 'self' 'unsafe-inline' https://md-scp.kampyle.com https://track.omguk.com https://cdn.usersnap.com https://screencapture.kampyle.com https://nebula-cdn.kampyle.com https://resources.digital-cloud-uk.medallia.eu https://pagead2.googlesyndication.com https://sc-static.net https://js-cdn.dynatrace.com https://activitymap.adobe.com https://cdn-ukwest.onetrust.com https://googleads.g.doubleclick.net https://lptag.liveperson.net https://lo.v.liveperson.net https://lo.msg.liveperson.net https://accdn.lpsnmedia.net https://lpcdn.lpsnmedia.net https://www.googletagservices.com https://ad.doubleclick.net https://connect.facebook.net https://*.fls.doubleclick.net/ https://www.googleadservices.com https://www.googletagmanager.com https://assets.adobedtm.com https://dpm.demdex.net https://www.google.com https://google.com https://*.santander.co.uk; connect-src 'self' 'unsafe-inline' https://md-scp.kampyle.com https://resources.digital-cloud-uk.medallia.eu https://santanderuk.tt.omtrdc.net https://udc-neb.kampyle.com https://*.bf.dynatrace.com https://privacyportal-uk.onetrust.com https://cdn-ukwest.onetrust.com https://googleads4.g.doubleclick.net wss://lo.msg.liveperson.net https://dpm.demdex.net https://*.santander.co.uk; img-src 'self' https://lpcdn.lpsnmedia.net 'unsafe-inline' https://*.santander.co.uk data: https:; style-src 'self' 'unsafe-inline' https://md-scp.kampyle.com; font-src 'self'; frame-src 'self' 'unsafe-inline' https://www.youtube-nocookie.com https://activitymap.adobe.com https://resources.digital-cloud-uk.medallia.eu https://lo.tokenizer.liveperson.net https://lo.msghist.liveperson.net https://lo.msg.liveperson.net https://lpcdn.lpsnmedia.net https://lo.idp.liveperson.net https://server.lon.liveperson.net https://authorize.omniture.com https://sitecatalyst.omniture.com https://www.youtube.com https://santander.demdex.net https://*.fls.doubleclick.net; object-src 'self'; media-src https://lpcdn.lpsnmedia.net; worker-src blob:;
Referrer-Policy: strict-origin-when-cross-origin
Content-Encoding: gzip
Content-Length: 12178
Expires: Wed, 07 Dec 2022 13:05:54 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 07 Dec 2022 13:05:54 GMT
Connection: keep-alive
Vary: Accept-Encoding
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79ba3a3fb4e8-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79ba4b0ab523-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79ba3a040b51-OSL
axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
66.235.200.146302 Found 0 B URL HTTP/1.1 axo.wdp.mybluehost.me/etc.clientlibs/correos/clientlibs/index.php?redirection=
IP 66.235.200.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Correos
GET /etc.clientlibs/correos/clientlibs/index.php?redirection= HTTP/1.1
Host: axo.wdp.mybluehost.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://axo.wdp.mybluehost.me/correos/assets/recibir_paquete_files/correos-ui-kit.css
Connection: keep-alive
Cookie: PHPSESSID=e7848295b076367707e0aea6764b7639
HTTP/1.1 302 Found
Date: Wed, 07 Dec 2022 13:05:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: ../index.php?redirection=
host-header: c2hhcmVkLmJsdWVob3N0LmNvbQ==
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775d79ba4eccb4f1-OSL