corroes.site44.com/
3.230.29.177200 OK 7.2 kB IP 3.230.29.177:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8991)
Hash ec80caa416dd25f55b32423722a8e8fb
a6867a558c1b16032021a5ffe2f10f95c16e1160
7820c82ed435ad2c946d78cede42d465128fea49f40765b39f0207cb932a5777
GET / HTTP/1.1
Host: corroes.site44.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Sat, 05 Nov 2022 22:17:23 GMT
Date: Sun, 06 Nov 2022 04:33:32 GMT
Keep-Alive: timeout=5
Vary: Accept-Encoding
Content-Encoding: gzip
ETag: W/"34610e8feb7c0f12ea8029d913522f65"
X-Varnish: 20786438 21484477
Age: 69613
Via: 1.1 varnish-v4
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=22569
Content-Length: 7209
Connection: keep-alive
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9e164a845d32db8fa51fdb5b1aa218d9
169099b4d2f8e119ab6cf6fca279b6fb535b1759
402ffbf1404cf05c0516c5a8cd5344bd53537ac5150d387730a90c81c17dc9e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "402FFBF1404CF05C0516C5A8CD5344BD53537AC5150D387730A90C81C17DC9E4"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2259
Expires: Mon, 07 Nov 2022 00:31:24 GMT
Date: Sun, 06 Nov 2022 23:53:45 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05978511215be8462d0b69e33b3a91a3
61535ba131d547f1c5108d9e7763ee3fc8d8c824
cfdbf0f9e88e3c1ae8eb03e46c352633a75d4b2edbfbd57c1c6b52ff1623a109
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 139
Cache-Control: max-age=124777
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 23:53:45 GMT
Etag: "63678ce7-1d7"
Expires: Tue, 08 Nov 2022 10:33:22 GMT
Last-Modified: Sun, 06 Nov 2022 10:31:03 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d8c32b2fb818533a5b3fe5c69157bde9
93594fd3fc50d9d444c28660eabba1edbe4f0588
df8b8ce7a83d11fbe075c8780103c509654f288b5d757d64b696d861a11f3c7f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF8B8CE7A83D11FBE075C8780103C509654F288B5D757D64B696D861A11F3C7F"
Last-Modified: Sun, 06 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18919
Expires: Mon, 07 Nov 2022 05:09:04 GMT
Date: Sun, 06 Nov 2022 23:53:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sLskOgQMkGETJuYK21WvbSxii4qaOi7raGD6la8vvBtUC3Ztm3xiubgn6oovNyJBORWKAgBjgpU=
x-amz-request-id: 10X4Y77WANY7HQVC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 23:10:38 GMT
age: 2587
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 23:53:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
corroes.site44.com/favicon.ico
3.230.29.177200 OK 1.2 kB URL HTTP/1.1 corroes.site44.com/favicon.ico
IP 3.230.29.177:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 96f9b849bdad00d82156acff16f63e9d
5a70a773c772121f5aabc9d61b44b494c5f7bfc7
3e44591d11ce07576de4c2c210b62199c752e73087593bd719073d158cf07a1d
GET /favicon.ico HTTP/1.1
Host: corroes.site44.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://corroes.site44.com/
HTTP/1.1 200 OK
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 08 May 2012 04:40:28 GMT
Date: Sun, 06 Nov 2022 23:44:55 GMT
Keep-Alive: timeout=5
X-Varnish: 20786441 23697194
Age: 530
Via: 1.1 varnish-v4
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=86400
Connection: keep-alive
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d862f992e9902530594e7aca425f129b
25b414fe833d30b52928535d659a1ee281b82e3a
0c6286152fe8bb5fdf1505f2001d530a65ee53aa6d9601bbb1eecb683036071d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4454
Cache-Control: max-age=124039
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 23:53:46 GMT
Etag: "6367792b-1d7"
Expires: Tue, 08 Nov 2022 10:21:05 GMT
Last-Modified: Sun, 06 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UyDunTmWvgljICWEgdnlaA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: A3EEBmXLhIQgzyA1aATvU8zFVt0=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 437dd13f8d4d23a3cc96729298df5e3f
9811c10578ee2209a81f40308e3182487a9e8314
0e0f9cb7cbff923f23bfb36fad8896f26f89dbb980a2a1a599172381f4acf074
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 23:53:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 06 Nov 2022 21:28:13 GMT
Expires: Sun, 13 Nov 2022 21:28:12 GMT
Etag: "9811c10578ee2209a81f40308e3182487a9e8314"
Cache-Control: max-age=595465,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7661c023bc83b515-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2502
Expires: Mon, 07 Nov 2022 00:35:29 GMT
Date: Sun, 06 Nov 2022 23:53:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2502
Expires: Mon, 07 Nov 2022 00:35:29 GMT
Date: Sun, 06 Nov 2022 23:53:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2502
Expires: Mon, 07 Nov 2022 00:35:29 GMT
Date: Sun, 06 Nov 2022 23:53:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bf1a5e65cd048b761eac5cb0b52048a
f64cface851717dee160a5c6fad975cc34fe4cd2
8b849bbe5d73c02bd82c39e5970ef02d46bf36ccfed31b51db437d85d12c004b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B849BBE5D73C02BD82C39E5970EF02D46BF36CCFED31B51DB437D85D12C004B"
Last-Modified: Sat, 05 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2502
Expires: Mon, 07 Nov 2022 00:35:29 GMT
Date: Sun, 06 Nov 2022 23:53:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1257248e-fe28-4957-b9ab-69ac80322250.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1257248e-fe28-4957-b9ab-69ac80322250.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 247a287e6f9c64b82090a10f9dcc67ce
2920c3a58ecf25799069c33cf304edbb6bc03e90
3c4452c5e175ffdb68cf2ebe9dc83560eed52f11cd456fea4a4ad0001f950280
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1257248e-fe28-4957-b9ab-69ac80322250.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9187
x-amzn-requestid: 268dc5ff-71b7-4570-8104-0647250cef4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGXhrGsZoAMF4MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63659fa4-487e71380605f6e16bc05e28;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 23:26:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Kf6GV5vE8xIBFwFhV4WOYkEOMawiiKvcrB9XIAQWa-xo43PDlNYVCw==
via: 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 22:05:57 GMT
age: 6470
etag: "2920c3a58ecf25799069c33cf304edbb6bc03e90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13dd0fa0-60cd-4a93-b673-6d1c4b963e3c.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13dd0fa0-60cd-4a93-b673-6d1c4b963e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 98ba06818a9e583ae9d633917ad1b311
3bbbfcb3e35f1827a7a5a0da29f9042262b706dc
c6fa191b753430aa1ae982c36cdb9bb43af17258513f6a51db8a17c7d8cc4f9f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13dd0fa0-60cd-4a93-b673-6d1c4b963e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9698
x-amzn-requestid: abd3018e-ef1b-4bea-96c3-f2acfe09e5f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bMtgiFEwIAMFYYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63682936-4f3d5f8420cf69054c250ea8;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dAJc78sGe0SRE5jXuMH4xDEkSkJfbkcq0RycQ0aKDSCl-p0x7QY2nA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 21:51:02 GMT
age: 7365
etag: "3bbbfcb3e35f1827a7a5a0da29f9042262b706dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3fDf4aoep5tTAusisXhIdAf0A6SbpM5fYtYaiXtNSb0-VRJo5nu8Vg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 09:11:34 GMT
age: 52933
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa958db65-71f7-4c79-9753-9af1fe88477b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa958db65-71f7-4c79-9753-9af1fe88477b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7a5e060b41bd5313b1cf828c1d5ecbcc
e63e4bee84953491236a8261ef07b5a4743fa891
e8750b0156ed980f11682d92f5c60ce2783518b37f156e74340617a74d826813
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa958db65-71f7-4c79-9753-9af1fe88477b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13224
x-amzn-requestid: d6c8a626-313d-4add-9467-eb946a38262a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a9iPHEkgoAMF1Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362172d-1be7a03a1b288dec56281915;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 07:07:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: R2vHbrKm_n2kWK3bG4htWAIqi1YNjNjaX8LG5AWWHPlKnaWi6JAGzA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 20:12:14 GMT
age: 13293
etag: "e63e4bee84953491236a8261ef07b5a4743fa891"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6db454c-443b-4ca6-982a-3856bcc96e03.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6db454c-443b-4ca6-982a-3856bcc96e03.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 261f11f1f3c32679559e7ca92868bca9
0cb101f9081261eaadc55593acedeae23a530114
15e6d3cb9b100bce9ebcc537939f56703f6a9018bcbcc76bebc2cdac1b92f363
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6db454c-443b-4ca6-982a-3856bcc96e03.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6907
x-amzn-requestid: b6f67609-796a-4beb-b51b-e241fb4f7b13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bMtWGE3yIAMF1FA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636828f3-6520fdac16744a3d237d0746;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 21:36:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uC3eqDqX2p4N8YJpNFjG1RZgd-seTCgcNrla3-hm66RDZPigEc2ubA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 21:51:00 GMT
etag: "0cb101f9081261eaadc55593acedeae23a530114"
content-type: image/jpeg
age: 7367
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a1807de-0827-4b70-915b-ad833da18839.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a1807de-0827-4b70-915b-ad833da18839.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 255d7f3f2b49a85dc2c42d3ce1a8abdd
f6232ea2d63baea5f833eea79533670eb8ba6ac8
a07986c4065f6fd151a10c6162899704eb543aa3e51d19eb6bf363af4d8caf92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a1807de-0827-4b70-915b-ad833da18839.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10979
x-amzn-requestid: a7537de0-c4ff-4a64-942b-8440e52f4987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bA1k1FUaIAMFtQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63636951-69c3b3d435da8a336317eac2;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 07:10:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8MQPiUHBKo3HXrUG7J6gVpQwUQAxp_pEVct-bMLCcPb5GxPHlZixQ==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 16:40:44 GMT
age: 25983
etag: "f6232ea2d63baea5f833eea79533670eb8ba6ac8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/
63.250.43.133302 Found 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/
IP 63.250.43.133:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/ HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sun, 06 Nov 2022 23:53:47 GMT
content-type: text/html; charset=UTF-8
location: Bienvenido a Correos.es - El Portal Online de Correos.html
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
age: 0
x-cache: MISS
content-length: 0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 33cd16f0c2e8e5b739ae9cca79d209e0
5c3fc73b47532a6321b07f95810e5363edc8d2e0
ab4f3a598be98852001b4f5b57911dead2dc30a1845a0011781abdf4e03642c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB4F3A598BE98852001B4F5B57911DEAD2DC30A1845A0011781ABDF4E03642C7"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4884
Expires: Mon, 07 Nov 2022 01:15:12 GMT
Date: Sun, 06 Nov 2022 23:53:48 GMT
Connection: keep-alive
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
63.250.43.133200 OK 53 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
IP 63.250.43.133:0
File type PHP script text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (58707)
Hash 9d4f91aa67dc4a94c3e25bc99ccafcb8
0d5f851817fcf5e80fc6119bf67997912354d6ae
e718519c6b7b52dbd3a17a26ced2f04623fd95b4a2ce154d1d04607e64f3450c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:41 GMT
content-type: text/html
last-modified: Sat, 05 Nov 2022 21:39:47 GMT
vary: Accept-Encoding
etag: W/"6366d823-8a526"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
content-length: 53207
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
uimarketpro.com/js/31d93afad6b167cce0ac3580169a7ce4.js?referrer=https://www.google.com/
18.202.7.144200 OK 28 kB URL HTTP/1.1 uimarketpro.com/js/31d93afad6b167cce0ac3580169a7ce4.js?referrer=https://www.google.com/
IP 18.202.7.144:0
File type ASCII text, with very long lines (62823)
Hash 2a89cee57cb2642e8ac9b50d54549cd3
5b8da0e466fadade991a5f4666373bd2769bc4c8
f2c530354b7c73e02e632504eab2e5c822f2ca5fe67e3486ba6478b6ce717ea6
GET /js/31d93afad6b167cce0ac3580169a7ce4.js?referrer=https://www.google.com/ HTTP/1.1
Host: uimarketpro.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 06 Nov 2022 23:53:48 GMT
Content-Type: application/javascript
Last-Modified: Wed, 22 Jun 2022 13:23:30 GMT
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding
ETag: W/"62b317d2-f568"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, OPTIONS, GET
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
63.250.43.133200 OK 18 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
IP 63.250.43.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e58df9cec56c886bd5325c4199f1d977
e28a2bbf9b128a710f8fe74769df90cc1ed6ae59
f31949bf870133dec95482487d27998b6ae73fe98c1bfb8e3280f5c51e269615
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: text/css
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
vary: Accept-Encoding
etag: W/"6366c5a6-1fb46"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
content-length: 18526
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.css
63.250.43.133200 OK 2.1 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.css
IP 63.250.43.133:0
File type ASCII text, with very long lines (1469)
Hash 2162e2ed5c6a5b5c3427e560ede12f61
d3987bb89d0f60fbeeb3b004be43d3e9da524db2
5f4a3e24bb0df65b3c2e36b0b1676d909df86bb259dcde764cd55ece1d381089
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: text/css
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
vary: Accept-Encoding
etag: W/"6366c5a6-1456"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
content-length: 2084
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:48 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:48 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 34 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (32759)
Hash 4635bffccc756e9a52eae8011adb9137
8c6d308daac07e23764c6dcf2f0d305931dfddb7
92c5b25edbc4647c55be848b92ea22fd4618cc3252a2364025262e18a7430f84
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 33481
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-82c9"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 372 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Hash 51d697b6110e35dc0a87a172487ee4aa
dc6b25c5414b9b559774e9320987fbe325192a44
5e472f1a234f9be27a0c865ff5c8d8ca674c09b3960bdd63e0d0f6ea8e1a02ac
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 372
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-174"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_triangles.svg
63.250.43.133200 OK 451 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_triangles.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9f484954ec83afedf792b8a54262b528
e6bbe505e712c396e0dca15915f68fa897f5ed77
e9fd41da5588466d5e7fda079a6555b926a422449e22e61e13c8356411fce3a8
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_triangles.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-4bb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 451
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 64 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (58777)
Hash 0b8a8dee8199692e9dedee3e516c35ca
4d8b6bc1842d1f91e617e556ca5918810615fe3b
e547fe50a764e43c4a31eee65d715869f35c7ad8d781584453561b87c4fcf7f3
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 64055
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-fa37"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/LogoCornamusa.svg
63.250.43.133200 OK 1.2 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/LogoCornamusa.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2761), with CRLF line terminators
Hash 947ef162543253ab828a76e306ea0578
c8134fbb3c6c1cad9b667a21f4e54eaf283577d7
4afd52dd55956a5e253f5290f5c2140fd1712cb165c58839e595e41e95686487
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/LogoCornamusa.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-d50"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 1239
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/usuario.png
63.250.43.133200 OK 2.3 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/usuario.png
IP 63.250.43.133:0
File type PNG image data, 40 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 24b1f6b9e40c680c7669234cb261e9c1
9d5f261cf1f8cf60204c5aa4eeb4b7c890ef5948
263ba4741dba44c404dc7175d9223bd179a9c05c879e0b23ccd6ef44fdf3cbbb
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/usuario.png HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/png
content-length: 2285
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-8ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_bars.svg
63.250.43.133200 OK 390 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_bars.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82304b9a0023912a7a5ecf6bc3423a4d
74cdfe76217be9aef762ccc76c807b54bc627a35
0fbc2616c8ad67b276f458ff1896e233a0f803314318197dc00a13d53d026097
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/deco_bars.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-391"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 390
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/apple_store.jpg
63.250.43.133200 OK 11 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/apple_store.jpg
IP 63.250.43.133:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 250x82, components 3\012- data
Hash 498c4a8cc089ec2fc0b87f460924b9b4
324b0ef1cf07829216653bf3fca04add4ebf553f
509066150aa1da2b163e681cff62f67f0becd0bb65cded95be964371835798f6
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/apple_store.jpg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/jpeg
content-length: 11255
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-2bf7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/google_play.jpg
63.250.43.133200 OK 12 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/google_play.jpg
IP 63.250.43.133:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 270x80, components 3\012- data
Hash 71405560fcf941f01e531e8564ad9e3f
a970b8084d6e7cdd714dbd1add272ac630cd9fe9
bda17ffead5e3809b288330e7aa2d2b689c45cfadcef8249416d07afe34477a7
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/google_play.jpg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/jpeg
content-length: 11827
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-2e33"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/huawei.svg
63.250.43.133200 OK 9.9 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/huawei.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (2050), with CRLF line terminators
Hash ec48cd7f9e55e5a0fed3748fe377362f
c4cf5d3a82a05996133e8afd441e064734d17c43
9d18a83a0fa960887ca5b4f86d261c7c52c32bfc74c3dd610a3b87bc4fc38d99
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/huawei.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-62a7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 9858
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/mastercard.svg
63.250.43.133200 OK 6.9 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/mastercard.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1312), with CRLF line terminators
Hash fc7f0e07f6e0efb9ca91a3a1404e00b3
c7d7c9cfe004695b784b6e207dcf77b2ac66c47a
3304180cc11e7f15a02f3012522f1dbee84e849a7f2dbfa6244a7a50b03db972
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/mastercard.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-46ce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 6903
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/paypal.svg
63.250.43.133200 OK 2.6 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/paypal.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1241), with CRLF line terminators
Hash 3b5cc9c768101ad99dec6f71fb89e017
dfb773903162cf322d3e65a1909d568e05c5eb3c
3481cd3cd3131f6ce35aa4753d7a326f7e0b8e9ecf0cc048d467d9211a6afc86
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/paypal.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-196c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 2629
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/maestro.svg
63.250.43.133200 OK 5.1 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/maestro.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1301), with CRLF line terminators
Hash 22041b12bca6f171fef02997650fd6f1
8a1d301c18d8ed7f72b94e2ad72b7b4848cea8a7
94ee583cf1e89e57d0e2090fdf6d49fc23c7b1affb7b12ff0ad0e605238bf20e
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/maestro.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-3200"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 5069
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/visa.svg
63.250.43.133200 OK 1.4 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/visa.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (989), with CRLF line terminators
Hash a95d85570b0c3df7a53065a80171afa6
af7a613fe88309714f3c96d30d5c78c8957a2ce2
f70678ce5ee585470eec043aea512b8009bbc82d58855458cafa9f7a3bb48cbc
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/visa.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-c92"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 1442
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ico-splash.svg
63.250.43.133200 OK 776 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ico-splash.svg
IP 63.250.43.133:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1299), with CRLF line terminators
Hash 6a39d90eaa5689d12961123917cc3660
b73924456cbacc2f92c2c3b066b4ac869f05dc5e
e4dbe445c7c478bc0ae4fded706a24c2a0596ca9f8f4e3cc8db3dee466723b1a
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ico-splash.svg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/svg+xml
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
vary: Accept-Encoding
etag: W/"6366c5a8-5d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
content-length: 776
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/EAwards.png
63.250.43.133200 OK 6.1 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/EAwards.png
IP 63.250.43.133:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 67a30e9b7d955f7b0e7e7cc4f46f6bea
26a488d3727605f5c0918ce247112cda3e81cf26
a612c443b0ef94f8b2d4ab4b13fa53b0b91a27bf0626269ac62981a2ba3a595a
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/EAwards.png HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/png
content-length: 6080
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-17c0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 1.1 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (544)
Hash ed8e3f9c92c02f27ac1f60e6503eb3e8
b292b50ffe2cc1266df6594385b5abc115c828b2
1a8c9179d1d4fef9308485f10fc5a296254604b7b02f449f0c325d704fe9d1fc
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 1137
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-471"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/container.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 752 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/container.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (514)
Hash 64e934d0a16266574945c8fb92e68316
56cd0c08e7bf1a5f363ec4bdafb6c926814713ea
c69737729bfeffad46e66417ed01bff74a95b62b5265abafe011777f5d87f09f
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/container.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 752
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-2f0"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ario2020.png
63.250.43.133200 OK 33 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ario2020.png
IP 63.250.43.133:0
File type PNG image data, 400 x 350, 8-bit/color RGBA, interlaced\012- data
Hash 3719fadf2f228ad6608aabced589b630
da67e6e65c24bf6dee6ba33a8bf339ab8e3dee0e
15ad4c1d5c432561e857f8e94c00ef57abf90c5eb82ae0457f51b1fccde3d5f3
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/ario2020.png HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: image/png
content-length: 32574
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-7f3e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.js.t%C3%A9l%C3%A9chargement
63.250.43.133404 Not Found 9.0 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Hash bbb1af67d5b972b13f3f2e60e73af460
adb4e2796125999b1934d79f0d79534225c057c7
4f277821b7973cd64dcf33ba40e0a80ce480dfadc36ba9b3b1d1f60f42135e0b
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://golden-corroes-be96ec.ingress-erytho.ewp.live/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MX9JL63
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MX9JL63
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 191d461ef0ec24156036633f54d193db
84bf66164a453168267d73db9a8a3e738cd0109c
ae1da55da37180056645671895e8ac42a37d9fc479885c983bc43ace57d8a87d
GET /gtm.js?id=GTM-MX9JL63 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 06 Nov 2022 23:53:49 GMT
expires: Sun, 06 Nov 2022 23:53:49 GMT
cache-control: private, max-age=900
last-modified: Sun, 06 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37631
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 12a1f191d3251cadd0fce23ca14e1a5d
a95b5c8eafe5d0ae8d78c77d4965ba1c486ec864
95b318059b6735c7221e60eabe0489c228c705c47a5f6adc8f829ac0f3c5f77c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 23:53:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 116 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 116 kB (116493 bytes)
Hash e0fef7e0002a10e45372f39807e482e2
dffece4f9abd4c4eefb45236f90da7b9e8a08d6e
accd4c6aff2b5fa851e17c9772f88ec791fff1d9501db61b799073fdee2568af
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 104323
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-19783"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-dependencies.css HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 34 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (32759)
Hash 4635bffccc756e9a52eae8011adb9137
8c6d308daac07e23764c6dcf2f0d305931dfddb7
92c5b25edbc4647c55be848b92ea22fd4618cc3252a2364025262e18a7430f84
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 33481
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-82c9"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 64 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (58777)
Hash 0b8a8dee8199692e9dedee3e516c35ca
4d8b6bc1842d1f91e617e556ca5918810615fe3b
e547fe50a764e43c4a31eee65d715869f35c7ad8d781584453561b87c4fcf7f3
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 64055
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-fa37"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/gtm.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 119 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/gtm.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (47102)
Size 119 kB (119323 bytes)
Hash d49987f8eacdba52af29d9c28d42e03a
da5fac3a87091290a1237b6562116f826a8a0c04
8742be9215b4e6305dc837c34c409a427b4fb3493511ff1a39bc24fb675d5efe
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/gtm.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 83223
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-14517"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 372 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Hash 51d697b6110e35dc0a87a172487ee4aa
dc6b25c5414b9b559774e9320987fbe325192a44
5e472f1a234f9be27a0c865ff5c8d8ca674c09b3960bdd63e0d0f6ea8e1a02ac
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 372
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-174"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/31d93afad6b167cce0ac3580169a7ce4.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 88 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/31d93afad6b167cce0ac3580169a7ce4.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (55185)
Hash b44b70395428d35c59383c91d82a7691
a90221c7750218716c9bec606b0120fd78151ab3
4e938f795d01f5ea76d919b1cc7cb1e4d86f6dfc6555cc54b0a2ef0d112f077a
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/31d93afad6b167cce0ac3580169a7ce4.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 62824
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-f568"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Login_MiOficina.jpg
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Login_MiOficina.jpg
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /CORSAS/cor/Login_MiOficina.jpg HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff2 HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff2 HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff2 HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:49 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 165 kB URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type ASCII text, with very long lines (49666)
Size 165 kB (165444 bytes)
Hash 9937344825c5c7a3c88627e3415d855c
1f03c025f18f6fa4d436c267243e66899f32bcc0
c5cddbb4c869c1a72508de82b5157f7b67808ba5438a47ada46a5799aa0bdb12
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 244154
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-3b9ba"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.woff
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.woff
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.woff HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:50 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-bold-webfont.woff HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:50 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-regular-webfont.woff HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:50 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/cartero-light-webfont.woff HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:50 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.ttf
63.250.43.133404 Not Found 146 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.ttf
IP 63.250.43.133:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /etc.clientlibs/correos/clientlibs/clientlib-base/resources/assets/fonts/correos-icons.1655128335527.ttf HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/correos-ui-kit.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:50 GMT
content-type: text/html
content-length: 146
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement
63.250.43.133429 Too Many Requests 117 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type HTML document, ASCII text
Hash 2dccf9a2e169c68dd4f3bd5ea163e45e
4ddcf984285a5c544ed1132f5f6efd7a5d01b470
ae138caf8767f7be2fe6f47f1663b0e2e28d903264707aa9b6f73bb7b223902c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 429 Too Many Requests
content-length: 117
cache-control: no-cache
content-type: text/html
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement
63.250.43.133429 Too Many Requests 117 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type HTML document, ASCII text
Hash 2dccf9a2e169c68dd4f3bd5ea163e45e
4ddcf984285a5c544ed1132f5f6efd7a5d01b470
ae138caf8767f7be2fe6f47f1663b0e2e28d903264707aa9b6f73bb7b223902c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 429 Too Many Requests
content-length: 117
cache-control: no-cache
content-type: text/html
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement
63.250.43.133429 Too Many Requests 117 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type HTML document, ASCII text
Hash 2dccf9a2e169c68dd4f3bd5ea163e45e
4ddcf984285a5c544ed1132f5f6efd7a5d01b470
ae138caf8767f7be2fe6f47f1663b0e2e28d903264707aa9b6f73bb7b223902c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 429 Too Many Requests
content-length: 117
cache-control: no-cache
content-type: text/html
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement
63.250.43.133429 Too Many Requests 117 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type HTML document, ASCII text
Hash 2dccf9a2e169c68dd4f3bd5ea163e45e
4ddcf984285a5c544ed1132f5f6efd7a5d01b470
ae138caf8767f7be2fe6f47f1663b0e2e28d903264707aa9b6f73bb7b223902c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 429 Too Many Requests
content-length: 117
cache-control: no-cache
content-type: text/html
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash a90e5e9881ca2ceb761e2bbdac2117cc
75719c1c90b3cd710a31802f7317cdb2faf6dbae
09ae7502fc9bb4dfdf2735da228ce5f91cdeb16dd1b777f9cce888105c467a81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160952
Date: Sun, 06 Nov 2022 23:53:53 GMT
Etag: "63681ac9-1d7"
Expires: Tue, 08 Nov 2022 20:36:25 GMT
Last-Modified: Sun, 06 Nov 2022 20:36:25 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pxoV9jxHM79jiptuu84redRNHtUNslqC0UeMI_0D96ljsmkWH1JztQ==
www.correos.es/content/dam/correos/imagenes/iconos/CORREOS-favicon.ico
54.230.111.115200 OK 18 kB URL HTTP/2 www.correos.es/content/dam/correos/imagenes/iconos/CORREOS-favicon.ico
IP 54.230.111.115:0
File type MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Hash f73085e029c5a02fc8203fbe9e2f0a44
34bf21870c8d6e304c13cdf5adefa57821abd34f
46829a75450c4665c2d0b7ae641fb49b287423d471446465b1c330d116bb3eb0
GET /content/dam/correos/imagenes/iconos/CORREOS-favicon.ico HTTP/1.1
Host: www.correos.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/x-icon
content-length: 17992
date: Sun, 06 Nov 2022 23:51:23 GMT
server: Apache
x-server: server2
x-content-type-options: nosniff
last-modified: Mon, 15 Mar 2021 12:56:37 GMT
etag: "1adc5-5bd92c7b5ab40-gzip"
accept-ranges: bytes
content-encoding: gzip
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3WIM0W1eq0BpUdMHw3TvHK0NKepctBBDy2B_HV81MXDg-fbkcdR-XQ==
age: 869962
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement
63.250.43.133429 Too Many Requests 117 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
File type HTML document, ASCII text
Hash 2dccf9a2e169c68dd4f3bd5ea163e45e
4ddcf984285a5c544ed1132f5f6efd7a5d01b470
ae138caf8767f7be2fe6f47f1663b0e2e28d903264707aa9b6f73bb7b223902c
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-provider-correosid.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 429 Too Many Requests
content-length: 117
cache-control: no-cache
content-type: text/html
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/identity.js(1).t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 64055
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-fa37"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js(1).t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 102077
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-18ebd"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-base.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 128839
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-1f747"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement
63.250.43.133404 Not Found 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/clientlib-site.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sun, 06 Nov 2022 23:53:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://golden-corroes-be96ec.ingress-erytho.ewp.live/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
age: 0
x-cache: MISS
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/fbevents.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 102077
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-18ebd"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/launch-22ce7a1a18b2.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 244154
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-3b9ba"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422 HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 294444
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-47e2c"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55626
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 294444
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-47e2c"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.min.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.min.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/AppMeasurement.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 33481
last-modified: Sat, 05 Nov 2022 20:20:54 GMT
etag: "6366c5a6-82c9"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/RC1a1c48c0265b429692b066dca69dafb4-source.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 372
last-modified: Sat, 05 Nov 2022 20:20:56 GMT
etag: "6366c5a8-174"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422
63.250.43.133200 OK 0 B URL HTTP/2 golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422
IP 63.250.43.133:0
Analyzer Verdict Alert fortinet Phishing
GET /CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos_files/786617442172422 HTTP/1.1
Host: golden-corroes-be96ec.ingress-erytho.ewp.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://golden-corroes-be96ec.ingress-erytho.ewp.live/CORSAS/cor/Bienvenido%20a%20Correos.es%20-%20El%20Portal%20Online%20de%20Correos.html
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 08:26:42 GMT
content-type: application/octet-stream
content-length: 294444
last-modified: Sat, 05 Nov 2022 20:20:53 GMT
etag: "6366c5a5-47e2c"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
x-cacheable: YES
age: 55625
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2