Report - us-ps.us/

Report Overview

Submitted URL
us-ps.us/
IP
185.162.89.66
ASN
#8100 ASN-QUADRANET-GLOBAL
Submitted
2022-10-19 09:56:57
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
88

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.27
us-ps.us	unknown			26 kB	1.1 MB	185.162.89.66
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	329 B	797 B	93.184.220.29
fast.fonts.net	2905	2013-07-13T06:08:03Z	2023-03-09T10:13:10Z	936 B	2.2 kB	104.17.225.78
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	61 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.6 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	35.160.97.225
www.usps.com	11794	2012-05-24T09:47:05Z	2023-03-09T10:42:02Z	9.5 kB	79 kB	192.229.221.165

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service
2022-10-18	medium	us-ps.us/	United States Postal Service

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (26)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 21:09:23 Times Seen36967388 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	us-ps.us/	438 B	2023-03-07	2024-04-18
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59:46 Last Seen2024-04-18 06:14:33 Times Seen762 Hash 3b88e93f1337e4825d99445a8f950d26 c3a507e6a822dda291cfeba9c386e55bd0ebb2e5 5c7242c420b339d1704ad3337e82cc08b9c95c5dc4152ce81abb27ab0590a1f4 Loading...

	www.usps.com/global-elements/lib/script/resize-manager.js	1.0 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/resize-manager.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen8843 Hash 90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887 Loading...

	www.usps.com/global-elements/lib/script/require-jquery.js	74 B	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/require-jquery.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen9108 Hash ea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9 Loading...

	www.usps.com/global-elements/footer/script/jquery-3.5.1.js	90 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/footer/script/jquery-3.5.1.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen12826 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	us-ps.us/	22 B	2023-03-07	2024-04-18
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:41:02 Last Seen2024-04-18 06:14:32 Times Seen687 Hash 602d65d7b771be8a7ec5dd50d2b9a026 3e43b44d56a5c6f7ba02cb1c0bf57342c59973c8 cc61439ba82cd768a848e159f6f79bd6521ce223ecf7282b5ab1797bdc22c779 Loading...

	us-ps.us/global-elements/lib/script/requirejs/require.js	17 kB	2023-03-07	2024-04-19
Pretty URL us-ps.us/global-elements/lib/script/requirejs/require.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen6770 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	us-ps.us/assets/script/home/megamenu-additions.js	1.3 kB	2023-03-07	2023-12-08
Pretty URL us-ps.us/assets/script/home/megamenu-additions.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:03:45 Last Seen2023-12-08 04:24:11 Times Seen17 Hash 886aa36e08c87091e6b23a0f9bb70959 5ec3f29d5b8ab147cf4429a4e80cfe15fe6004eb 2207314de8b336263f898967324e5a4dcaf2287fb9ba449066867d61da4215fe Loading...

	us-ps.us/	41 B	2023-03-07	2024-04-18
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:03 Last Seen2024-04-18 15:45:55 Times Seen7134 Hash 2ec370ca0eaf3069dce13df24243d863 64c1919bbb18a6d851d1b7772f830320b8ab5cc1 6a31a3a39783d09cc53dd9e9baeb4a4fa49be602eef90f6bbb9f78af02688064 Loading...

	us-ps.us/global-elements/header/script/header-init-search.js	886 B	2023-03-07	2023-08-29
Pretty URL us-ps.us/global-elements/header/script/header-init-search.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:03:45 Last Seen2023-08-29 14:05:18 Times Seen11 Hash 16b3077754c7f6bab01490d7cd0d8bd0 4a0a2c2377f73fc15d3f3f2f742fd39751bb6df3 06546b7034f2d26f95acdca62cd67d28af65680357ea935940316a237d9163df Loading...

	us-ps.us/	341 B	2023-03-07	2023-11-20
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:01:08 Last Seen2023-11-20 15:55:54 Times Seen35 Hash c8ec26c12021caf7e397537cd9b582bd 7e460a0707f06342f62e65946cf75900c211cf7f 1657601a0f4e2d17776961caf2c72da224ca0f0e1abd68546cb1a293821e8335 Loading...

	us-ps.us/assets/script/welcome/welcome.js	1.1 kB	2023-03-10	2023-08-13
Pretty URL us-ps.us/assets/script/welcome/welcome.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:30:52 Last Seen2023-08-13 05:56:22 Times Seen9 Hash 5ac4859d1f4a48f3d135bd57cb999c7e 899e70561ab39fa4e5fbd7ad36e185cc82a031e0 e78f8bf12674bb4ea7fd65ad5e15cd195346a22047a92801c28935960f73836a Loading...

	fast.fonts.net/t/trackingCode.js	650 B	2023-03-07	2024-04-18
Pretty URL fast.fonts.net/t/trackingCode.js IP 104.17.225.78 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:52 Last Seen2024-04-18 06:14:33 Times Seen2008 Hash 32dd789522cc6923c80141fcf5d3a614 366b7e3fd63176e559d8b8c5f59be6fd3388cf5a 5c3c9df8b8f0a80f863c53dec5cbca7dedbdcc7697c6c6359520950774653960 Loading...

	us-ps.us/assets/script/welcome/popper.min.js	19 kB	2023-03-07	2024-04-15
Pretty URL us-ps.us/assets/script/welcome/popper.min.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23:39 Last Seen2024-04-15 23:53:50 Times Seen1489 Hash 068d64fd1715635226e7a4b91017c6cf ca344d4feda098dc568fea9591be7beefcc6b2aa 072214cac2642148ff8266b18c82fdc64428932369da84dec0562cf01ca58d32 Loading...

	us-ps.us/ContentTemplates/common/scripts/OneLinkUsps.js	3.5 kB	2023-03-07	2023-12-08
Pretty URL us-ps.us/ContentTemplates/common/scripts/OneLinkUsps.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:03:45 Last Seen2023-12-08 04:24:11 Times Seen9 Hash 1fa614204d246904aca8d6250093ea17 f06f05cf3c346ae96e6986b83908468a86fd42be 4f0181c7820edab3f4683cf1107391b0cec0060313d30738dee32b9d235478bd Loading...

	us-ps.us/assets/script/welcome/bootstrap.js	58 kB	2023-03-07	2024-04-19
Pretty URL us-ps.us/assets/script/welcome/bootstrap.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:33 Last Seen2024-04-19 11:01:29 Times Seen19521 Hash e1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b Loading...

	us-ps.us/	22 B	2023-03-07	2023-11-20
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:01:08 Last Seen2023-11-20 15:55:54 Times Seen34 Hash 62da62c57f48ac96f19dc57eeb7ee90e 0a1df8f1a441154ac55ea1b6474359086680704f eef1c0dcff62df4ec9bba97bf83aee4cdac29317cefb10b57772c91030532f3e Loading...

	us-ps.us/global-elements/header/script/megamenu-v3.js	13 kB	2023-03-07	2024-04-18
Pretty URL us-ps.us/global-elements/header/script/megamenu-v3.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:41:02 Last Seen2024-04-18 06:14:36 Times Seen2985 Hash b62e27b15837b70e7dab99846ac90ab3 9a49415c5e47149a5324705eaf78b4b68ce10edf 50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781 Loading...

	us-ps.us/global-elements/header/script/ge-login.js	9.1 kB	2023-03-07	2023-12-08
Pretty URL us-ps.us/global-elements/header/script/ge-login.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:03:45 Last Seen2023-12-08 04:24:11 Times Seen8 Hash a0e102b8c12d58657f6e1bd850ae93e6 c543a59fb8d3720eb55de9df565c0c552b9a904f 7377d932e1f0714a33a5a088a2a24ac8dd1a721a0b4190f229999162fb199c30 Loading...

	us-ps.us/global-elements/lib/script/modernizr/modernizr.js	11 kB	2023-03-07	2024-04-19
Pretty URL us-ps.us/global-elements/lib/script/modernizr/modernizr.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen5446 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

	us-ps.us/global-elements/footer/script/jquery-3.5.1.js	90 kB	2023-03-07	2024-04-19
Pretty URL us-ps.us/global-elements/footer/script/jquery-3.5.1.js IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:27 Last Seen2024-04-19 17:40:50 Times Seen4710 Hash 12b69d0ae6c6f0c42942ae6da2896e84 d2cc8d43ce1c854b1172e42b1209502ad563db83 6150a35c0f486c46cadf0e230e2aa159c7c23ecfbb5611b64ee3f25fcbff341f Loading...

	us-ps.us/	341 B	2023-03-10	2023-05-16
Pretty URL us-ps.us/ IP 185.162.89.66 ASN #8100 ASN-QUADRANET-GLOBAL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:30:52 Last Seen2023-05-16 03:06:47 Times Seen4 Hash ea23ab5f32a9ecde9ca5fff53ab9377c 304aba3d5f07c727e4da18cdaf3dd5b4e3d6916b 39d4143e70f627b7b33a68fc55de1095c2a220b26f6a9a0a314a1bd004d7f4dc Loading...

	www.usps.com/global-elements/header/script/search-fe.js	2.3 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/header/script/search-fe.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen8119 Hash f7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b Loading...

	www.usps.com/global-elements/lib/script/helpers.js	695 B	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/helpers.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen9084 Hash 5372347b4f98f60b33579180ef6a3567 02064f1641c40b35c14a0da9ee310de54ff76cd5 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 591472b2388f139ba72263a46ff3d619	381 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:18:52 Last Seen2024-04-18 06:14:36 Times Seen1862 Hash 591472b2388f139ba72263a46ff3d619 51af3d9df4a627071d03481542efe344da6c969f 534cebb2ad439f5a67eef8084ce23509bb3bb872ea8cab7a41ebe1cbb7a95a2d Loading...

		Size	First Seen	Last Seen
	#1 Write - 3a824154b16ed7dab899bf000b80eeee	4 B	2023-03-07	2024-02-13
Pretty Observations First Seen2023-03-07 01:02:03 Last Seen2024-02-13 04:29:14 Times Seen34 Hash 3a824154b16ed7dab899bf000b80eeee e575dccc71140754dd85beda5965b6a358150309 b1ab1e892617f210425f658cf1d361b5489028c8771b56d845fe1c62c1fbc8b0 Loading...

HTTP Transactions (111)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
66155b620c27c14aced991b34be0d1a0
2d489f39edc932199e2d8e03b40c1a5c95b993d2
1a500079242f4472c1e8dafd352c6c6078a7228a1993208d2fe1e27dd00644ea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A500079242F4472C1E8DAFD352C6C6078A7228A1993208D2FE1E27DD00644EA"
Last-Modified: Mon, 17 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5559
Expires: Wed, 19 Oct 2022 11:29:25 GMT
Date: Wed, 19 Oct 2022 09:56:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.27

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 19 Oct 2022 09:29:24 GMT
Expires: Wed, 19 Oct 2022 10:03:21 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: __vb86tt6c9zGvewc2HUJiLc4JP0eYL_V5m8bZFkk4usLsqqm1NJvw==
Age: 1642

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
533e1d53f291993ed5886f88a85c6e55
eb4396e8422f71168d32ac6ff3ef49496f625e62
0d1b73b2a228fe76bf14688e603741025a40803971e05570f873b28788334b33

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D1B73B2A228FE76BF14688E603741025A40803971E05570F873B28788334B33"
Last-Modified: Mon, 17 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19112
Expires: Wed, 19 Oct 2022 15:15:18 GMT
Date: Wed, 19 Oct 2022 09:56:46 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: FjYx0JVOA5BY07aR7vwDav94g++PGZ0cwdGOklUvXQa3/nSSQZmKYYKz1u0sCXv2Oxzz1ZL2HJQ=
x-amz-request-id: M4GRC3AX4DSTNVMM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 19 Oct 2022 09:36:15 GMT
age: 1231
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:46 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
79ca0f9f487c81e514098b09bfbf0579
06754fd437f99b543ae40ddd05c4f19dfb49b442
48a7bc7b86592baf77afca2095a20981526381ac7b8e6c5b8b675d5ca74ff867

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48A7BC7B86592BAF77AFCA2095A20981526381AC7B8E6C5B8B675D5CA74FF867"
Last-Modified: Tue, 18 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 19 Oct 2022 15:56:47 GMT
Date: Wed, 19 Oct 2022 09:56:47 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.27

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.27:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 19 Oct 2022 09:43:40 GMT
Cache-Control: max-age=3600
Expires: Wed, 19 Oct 2022 09:59:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1VZwbidGsGwaP9ncPmYiGPptCzyZSyE-wlIw_g6LVIP8XUqr-km_AQ==
Age: 787

us-ps.us/global-elements/header/css/megamenu-v3.css

185.162.89.66

200 OK

6.4 kB

URL HTTP/2
us-ps.us/global-elements/header/css/megamenu-v3.css
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (43935), with no line terminators
Size
6.4 kB (6433 bytes)
Hash
d6cad17a12d6fe9c3f9bc0bc234b9410
db9f51e20244fe3612c0e8715c3cc9f74190b9a9
d32f027d41d7fdf63936f2ec61a25387cac756bc780ef79a81bdf25c25dfb3fd

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/css/megamenu-v3.css HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/css
content-length: 6433
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/css/welcome/bootstrap.css

185.162.89.66

200 OK

21 kB

URL HTTP/2
us-ps.us/assets/css/welcome/bootstrap.css
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (65324)
Size
21 kB (20941 bytes)
Hash
123062a501318cc73759315eaeffca9c
0542dbfd3008893ffcf9cfbd31783b14523adf4e
e37a08be15644b88b5b90bad49a9282d36ececef5f1bd98b74640728bcfa0a3c

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/css/welcome/bootstrap.css HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/css
content-length: 20941
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/logo_mobile.svg

185.162.89.66

200 OK

835 B

URL HTTP/2
us-ps.us/assets/images/home/logo_mobile.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
835 B (835 bytes)
Hash
7d74b7be4010fa0a17e402a2824e0bb7
ae13288df6c323bc4c2c48ce9eaff450c90b61ae
aebf901fccfcef2a7889ff38237974b1d3919fd006e348afff4b1e23f892e513

HTTP Headers

GET /assets/images/home/logo_mobile.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 835
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/hamburger.svg

185.162.89.66

200 OK

251 B

URL HTTP/2
us-ps.us/assets/images/home/hamburger.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
251 B (251 bytes)
Hash
6117d3cf5b5f672ad9663495887f7c39
061ffb7390a757090c8fb4a98377b913e77f9057
92f4c36e86624fbf0798ec53a025dce08a015746547c11dc6c985939f00cedea

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/home/hamburger.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 251
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/images/utility-header/logo-sb.svg

185.162.89.66

200 OK

1.5 kB

URL HTTP/2
us-ps.us/global-elements/header/images/utility-header/logo-sb.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.5 kB (1547 bytes)
Hash
b6346ab29bebfe4d6d07657c6d929042
fc543e7d52bf845c631e278e88934757085bb332
da745e80fee39d3b254597b477423f199b79862c31e8544c38fc54d2427799d4

HTTP Headers

GET /global-elements/header/images/utility-header/logo-sb.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 1547
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/search.svg

185.162.89.66

200 OK

716 B

URL HTTP/2
us-ps.us/assets/images/home/search.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
716 B (716 bytes)
Hash
e2082b3c6a1bc7d78e6dcd8755578133
6020040969afd06b6ad5e4ee664b1e0da4c25bd8
d8c90ffa736b8058ecf0294caa20c986e8fe1db6db8544e05d26188638fa7b44

HTTP Headers

GET /assets/images/home/search.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 716
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
62fc1aa250922e13956facbf8071aebb
111e2978b9e6931f7ba9ee3beac67d1af7bf8c92
1d0de3a88ad67da5ba748190f997994299058b77fff93caa24f4c611b3dec560

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2210
Cache-Control: max-age=168410
Content-Type: application/ocsp-response
Date: Wed, 19 Oct 2022 09:56:47 GMT
Etag: "634fb017-1d7"
Expires: Fri, 21 Oct 2022 08:43:37 GMT
Last-Modified: Wed, 19 Oct 2022 08:06:47 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

us-ps.us/global-elements/header/images/utility-header/mailman.svg

185.162.89.66

200 OK

834 B

URL HTTP/2
us-ps.us/global-elements/header/images/utility-header/mailman.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
834 B (834 bytes)
Hash
d423014c1b59afeba28f902547cb4064
16e3bf3ed8b60386b0bcdcda6597962d7448e933
8bd2b2bdd887ab7b38dd4d5ac269295b94cabac1b4bb9975e5975771ac1aed4e

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 834
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/tracking.svg

185.162.89.66

200 OK

772 B

URL HTTP/2
us-ps.us/assets/images/home/tracking.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
772 B (772 bytes)
Hash
7d0d4149522492207b2d7104f4a376c9
ea0c47dcb957fd4f8d37b1fc81dc1cd5114fb410
f34df479cfb91b154b51febdc537b03fe5ad8b192b135a581e593bc218d01feb

HTTP Headers

GET /assets/images/home/tracking.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 772
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/www.googleoptimize.com/optimize20ac.js?id=GTM-T35N9RL

185.162.89.66

404 Not Found

708 B

URL HTTP/2
us-ps.us/www.googleoptimize.com/optimize20ac.js?id=GTM-T35N9RL
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
708 B (708 bytes)
Hash
2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa

HTTP Headers

GET /www.googleoptimize.com/optimize20ac.js?id=GTM-T35N9RL HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/html
content-length: 708
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/stamps.svg

185.162.89.66

200 OK

477 B

URL HTTP/2
us-ps.us/assets/images/home/stamps.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
477 B (477 bytes)
Hash
b818992f476bf551037e547d21650456
78377b08914266626c3778714944ca56b9088172
26c87990c6b499cca567653c60d0673c196b44cfa5fcbac571572f42f22c8760

HTTP Headers

GET /assets/images/home/stamps.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 477
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/po_box.svg

185.162.89.66

200 OK

780 B

URL HTTP/2
us-ps.us/assets/images/home/po_box.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
780 B (780 bytes)
Hash
1978eb4d9446f51047057d01bf6e7ec7
bb2ae6a3e9559fc29396868af874abd1376ceeea
980bb36ab327dd55f5dc940408bcb676e200c13c5c31ea893f51d5dda36776ed

HTTP Headers

GET /assets/images/home/po_box.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 780
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/find_zip.svg

185.162.89.66

200 OK

718 B

URL HTTP/2
us-ps.us/assets/images/home/find_zip.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
718 B (718 bytes)
Hash
a11fc97ee73cf873841aa49a91b94a8b
a7071acf21900f7689874bde5f62214dc67cc20d
1e0d27d186bab8bed098380fe7a8f7ebb9358301eee55e7acf6a2dcee050abcd

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/home/find_zip.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 718
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/schedule_pickup.svg

185.162.89.66

200 OK

848 B

URL HTTP/2
us-ps.us/assets/images/home/schedule_pickup.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
848 B (848 bytes)
Hash
d311d9a1b7401974e344ce26ab9e0c54
2cffa59b867b914b8bf013b86c831b4a62d72089
64c6fc927623a2c2201185cfb7af105f93efbcff4a2b5e71c62d5842cf8b4d98

HTTP Headers

GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 848
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/ship/go-now.png

185.162.89.66

200 OK

20 kB

URL HTTP/2
us-ps.us/ship/go-now.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20334 bytes)
Hash
d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /ship/go-now.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 20334
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/manage/go-now.png

185.162.89.66

200 OK

8.0 kB

URL HTTP/2
us-ps.us/manage/go-now.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8026 bytes)
Hash
49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /manage/go-now.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 8026
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/store/go-now.png

185.162.89.66

200 OK

27 kB

URL HTTP/2
us-ps.us/store/go-now.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26972 bytes)
Hash
b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /store/go-now.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 26972
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/location.svg

185.162.89.66

200 OK

1.1 kB

URL HTTP/2
us-ps.us/assets/images/home/location.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1123 bytes)
Hash
30824b5b4e3aa2099c66cf74ca3c4c80
9a40269f0fb3dcd184e2c9aa4f86eb47a672ec11
4dafa929bd1c406f23782b50dcf5ae06134cc9d8cf09569b114125c871bcd39f

HTTP Headers

GET /assets/images/home/location.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 1123
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/featured_clicknship.svg

185.162.89.66

200 OK

448 B

URL HTTP/2
us-ps.us/assets/images/home/featured_clicknship.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
448 B (448 bytes)
Hash
b2d3ea1ee277752c7a64b6f73e8adeda
0eca2b23331088c8b34c0de1501b2f8a07b2afb7
818e6ce78cea3591c4a7378f0089b1f98c22c4b35072592607e714bcb52e8514

HTTP Headers

GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 448
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/calculate_price.svg

185.162.89.66

200 OK

683 B

URL HTTP/2
us-ps.us/assets/images/home/calculate_price.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
683 B (683 bytes)
Hash
176c02fda7c954db7f4e37d08bb2f1b6
ebb1a0d8029e0d37d16a1187d592b4ee4217b97f
306191e495f52b3d7e488e1392fbe196b6da4c01149f71e7f836bfa7e43ec1d0

HTTP Headers

GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 683
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/change_address.svg

185.162.89.66

200 OK

864 B

URL HTTP/2
us-ps.us/assets/images/home/change_address.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
864 B (864 bytes)
Hash
6001ec61f7c5b1429474786a839beab9
48d3431250a2cd9bfcc50d48618758b78db26718
eae3247abea5cfb3e219957eb7f0197e2568621bf39c1b3d6c838c7984bea53a

HTTP Headers

GET /assets/images/home/change_address.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 864
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/holdmail.svg

185.162.89.66

200 OK

704 B

URL HTTP/2
us-ps.us/assets/images/home/holdmail.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
704 B (704 bytes)
Hash
9ab3b3434c8011391e22fc4c43179dbe
cffe9e4c75785af9a0de9ec20a4e46b8998e3d74
eea8e3dcde08e63e97f6943f5ff68adb2e9bbae8ed95084eef61dd998ac02628

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/home/holdmail.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 704
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/ContentTemplates/common/scripts/OneLinkUsps.js

185.162.89.66

200 OK

954 B

URL HTTP/2
us-ps.us/ContentTemplates/common/scripts/OneLinkUsps.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
954 B (954 bytes)
Hash
0fdeb2a4dce988ae5f89895e4f6bd1c5
6985eb13b4836fa43580f14f32b5451a9e2a3dd4
40accbfd25570e380ac4c8204a521dd573088af34a8324122a4be607c537870c

HTTP Headers

GET /ContentTemplates/common/scripts/OneLinkUsps.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 954
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/free_boxes.svg

185.162.89.66

200 OK

579 B

URL HTTP/2
us-ps.us/assets/images/home/free_boxes.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
579 B (579 bytes)
Hash
f0555c7c926ca3be3b9e8cf023ebd3a5
57ebf6072091b5b44188de6c77678f9b4f7b60dc
0d854aab8e2d4dfbd7e660a531a18ef17a20cbe026d55f453a9819297ca88419

HTTP Headers

GET /assets/images/home/free_boxes.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/svg+xml
content-length: 579
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/script/home/megamenu-additions.js

185.162.89.66

200 OK

436 B

URL HTTP/2
us-ps.us/assets/script/home/megamenu-additions.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
436 B (436 bytes)
Hash
2a677f7d941652cf04942ce454396402
3169ddf5f9b820d0a8818596f0c3326fe02ac045
daf6e2ea9186e788007c8d1c634e3bed70b23726b39cabe038f65bcbaa1ce8be

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/script/home/megamenu-additions.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 436
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/lib/script/requirejs/require.js

185.162.89.66

200 OK

6.3 kB

URL HTTP/2
us-ps.us/global-elements/lib/script/requirejs/require.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (17192)
Size
6.3 kB (6287 bytes)
Hash
3f8642ff52ec9e6eafb77f54c66b637f
f2469643d6c6ca35f35e4c40666bc50df3589827
1cc3acfcbfba71fdc0fe846f858ba0448a6e22989ba9296957183cb36f8e45a2

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/lib/script/requirejs/require.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 6287
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/script/megamenu-v3.js

185.162.89.66

200 OK

2.6 kB

URL HTTP/2
us-ps.us/global-elements/header/script/megamenu-v3.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (13400), with no line terminators
Size
2.6 kB (2625 bytes)
Hash
8deacaf8c0f4a6fabb14863d18bfd8ec
22a211e02aa7173852e6c5006268eac9fd018beb
54a5adb54e94c6f4b19095314817331c9a9e7d3fc7d69edb9267dd0b3873d7d3

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/script/megamenu-v3.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 2625
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/css/welcome/welcome-styles.css

185.162.89.66

200 OK

5.1 kB

URL HTTP/2
us-ps.us/assets/css/welcome/welcome-styles.css
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
5.1 kB (5067 bytes)
Hash
2abf101ae81c87877342743e6fa2ff96
31976c5fd598ecfead736a30e631f4f460c3da7d
ccf687fc954507f86dfa5cb0f73b195e62af83a1bb3e4700aaa08fac4ec1a1e0

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/css/welcome/welcome-styles.css HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/css
content-length: 5067
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/script/ge-login.js

185.162.89.66

200 OK

2.4 kB

URL HTTP/2
us-ps.us/global-elements/header/script/ge-login.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
2.4 kB (2389 bytes)
Hash
9a97abeaafa0bad710a381154ca7842f
19a0b65b6056a89f6e35623e530837a5050622b5
9f153346cde6f45819220ef101b4c50a494cad6f9ce7c0b38c514739b434cb6a

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/script/ge-login.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 2389
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/lib/script/modernizr/modernizr.js

185.162.89.66

200 OK

4.4 kB

URL HTTP/2
us-ps.us/global-elements/lib/script/modernizr/modernizr.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document, ASCII text, with very long lines (11084)
Size
4.4 kB (4358 bytes)
Hash
0eb0525f7fc858fb0842cbc277086fc4
6373df708c4ff2ab7343357d85e1deba946eb2d9
7c173c95dcb3c29ab3a3d48962fd3258ca12a85f71e3a6126708bcc56bac0fdb

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/lib/script/modernizr/modernizr.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 4358
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/business/go-now.png

185.162.89.66

200 OK

20 kB

URL HTTP/2
us-ps.us/business/go-now.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /business/go-now.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 19969
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.160.97.225

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.97.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QsPnw5lBo3/q4490w9UvIg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: T+2c7zFAFXLbH75wIm5bYD1JK20=

us-ps.us/global-elements/footer/script/jquery-3.5.1.js

185.162.89.66

200 OK

30 kB

URL HTTP/2
us-ps.us/global-elements/footer/script/jquery-3.5.1.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (65451)
Size
30 kB (30278 bytes)
Hash
fe883e56a78276fc79e0747e4ab3822e
e7099bdd23573efe405d887d942662b10582ba95
442d6ce0cfd7c0a8459925b2a503370e65747d45a606b059c4acb14532f1279a

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 30278
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/css/main-sb.css

185.162.89.66

200 OK

2.7 kB

URL HTTP/2
us-ps.us/global-elements/footer/css/main-sb.css
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (8474)
Size
2.7 kB (2721 bytes)
Hash
ce43350a656e25a92e4dab78b8bb37da
498e78554bf7c2a00d1a3776751a8eaa447dfac0
0568571144a348bc0f321117d11d122b8638a851a551135a31212eed3d40ab32

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/css/main-sb.css HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/css
content-length: 2721
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/images/social-facebook_1.png

185.162.89.66

200 OK

1.9 kB

URL HTTP/2
us-ps.us/global-elements/footer/images/social-facebook_1.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1873 bytes)
Hash
5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 1873
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/images/social-pinterest_6.png

185.162.89.66

200 OK

2.3 kB

URL HTTP/2
us-ps.us/global-elements/footer/images/social-pinterest_6.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2325 bytes)
Hash
010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 2325
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/script/welcome/popper.min.js

185.162.89.66

200 OK

6.6 kB

URL HTTP/2
us-ps.us/assets/script/welcome/popper.min.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (18860)
Size
6.6 kB (6573 bytes)
Hash
64a0eabcd6b4fc8d138517f72801f1ea
dc598cac78b7dde77b54ba582ff5be1e7d15d86a
fd14ebad174dabb122d53e48f78bf12a40275795348411cf0b5a93e2407b7bf7

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/script/welcome/popper.min.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 6573
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/images/social-youtube_3.png

185.162.89.66

200 OK

2.5 kB

URL HTTP/2
us-ps.us/global-elements/footer/images/social-youtube_3.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2461 bytes)
Hash
e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 2461
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/

185.162.89.66

200 OK

23 kB

URL HTTP/2
us-ps.us/
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1242)
Size
23 kB (22567 bytes)
Hash
04de2cd33a340f485915ec7a5a3a54b9
53776143f2b84230ced7e2bfb23cb2bb3c7040e5
8e68c9ba8c1d57627c3269acffd163717336f1983aa8af7764b8f57763c2fda6

HTTP Headers

GET / HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/script/header-init-search.js

185.162.89.66

200 OK

280 B

URL HTTP/2
us-ps.us/global-elements/header/script/header-init-search.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
280 B (280 bytes)
Hash
70358e7bf3908270ef5e7e42b13d405f
7baf6d2887acb8a037d3772b6fa7edf4ded014a3
c36c469f63aabb4ebb3501d9579311d055cde23b05b7f93bb2e79cbcbe358af4

HTTP Headers

GET /global-elements/header/script/header-init-search.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 280
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/script/welcome/welcome.js

185.162.89.66

200 OK

368 B

URL HTTP/2
us-ps.us/assets/script/welcome/welcome.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text
Size
368 B (368 bytes)
Hash
2edbbf106f1007383c515a782246c925
d9fa2f4e5abcf564228067c26f5891480b13476a
7da3720578ab22604605d0ce4f95f88953974d39aff5e2098ca61cb2135273fa

HTTP Headers

GET /assets/script/welcome/welcome.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 368
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/featured/august-wilson.jpg

185.162.89.66

200 OK

44 kB

URL HTTP/2
us-ps.us/assets/images/welcome/featured/august-wilson.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 670x450, components 3\012- data
Size
44 kB (44033 bytes)
Hash
4e33cb1cc0d4df159667deebf932e9f8
55cbfe428a31d5e2514e1ad9c0c770c1152a6409
f2ff1a0ef1b5bd8e7a1e1a067cbebbf5d316eace837f707a6b39635229cf3cf6

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/featured/august-wilson.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 44033
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/international/go-now.png

185.162.89.66

200 OK

22 kB

URL HTTP/2
us-ps.us/international/go-now.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22133 bytes)
Hash
22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /international/go-now.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/png
content-length: 22133
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/carousel/supplies-dotcom2.jpg

185.162.89.66

200 OK

44 kB

URL HTTP/2
us-ps.us/assets/images/welcome/carousel/supplies-dotcom2.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 626x277, components 3\012- data
Size
44 kB (44374 bytes)
Hash
9546abdb1b6f5553f487d4a80bf03249
b573a8592c3bb9715acdbbf98a212b0e2d1f97d4
37eb70dc0bd2b6088e31b95655ef58715ab38aa530158d0ab358a10ee75c8986

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/carousel/supplies-dotcom2.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 44374
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/holiday20/featured/small-biz-solutions-striped-apron.jpg

185.162.89.66

200 OK

36 kB

URL HTTP/2
us-ps.us/assets/images/holiday20/featured/small-biz-solutions-striped-apron.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 670x450, components 3\012- data
Size
36 kB (35855 bytes)
Hash
6639fde9b51d938924a22e4302af5695
c022c957a272871ba08a98fed1aebb7288ec9a17
9c34df739bbe18dd61cd51114664f25ed37a9b86bf9686bdba4eaec572dc2c2e

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/holiday20/featured/small-biz-solutions-striped-apron.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 35855
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/calculate_price.svg

192.229.221.165

200 OK

772 B

URL HTTP/2
www.usps.com/assets/images/home/calculate_price.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
772 B (772 bytes)
Hash
42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c

HTTP Headers

GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31617
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/stamps.svg

192.229.221.165

200 OK

551 B

URL HTTP/2
www.usps.com/assets/images/home/stamps.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
551 B (551 bytes)
Hash
780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8

HTTP Headers

GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 5381
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/find_zip.svg

192.229.221.165

200 OK

793 B

URL HTTP/2
www.usps.com/assets/images/home/find_zip.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
793 B (793 bytes)
Hash
4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b

HTTP Headers

GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 30987
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_languages.png

192.229.221.165

200 OK

1.5 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_languages.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1456 bytes)
Hash
410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826

HTTP Headers

GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 31422
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/shipping-supplies.svg

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/test/nav/images/shipping-supplies.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.3 kB (1282 bytes)
Hash
7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99

HTTP Headers

GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31180
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/tracking.svg

192.229.221.165

200 OK

844 B

URL HTTP/2
www.usps.com/assets/images/home/tracking.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
844 B (844 bytes)
Hash
04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181

HTTP Headers

GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 47864
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/holdmail.svg

192.229.221.165

200 OK

768 B

URL HTTP/2
www.usps.com/assets/images/home/holdmail.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
768 B (768 bytes)
Hash
2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069

HTTP Headers

GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31649
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/schedule_pickup.svg

192.229.221.165

200 OK

923 B

URL HTTP/2
www.usps.com/assets/images/home/schedule_pickup.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
923 B (923 bytes)
Hash
9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373

HTTP Headers

GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31552
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/change_address.svg

192.229.221.165

200 OK

935 B

URL HTTP/2
www.usps.com/assets/images/home/change_address.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
935 B (935 bytes)
Hash
6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9

HTTP Headers

GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31647
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/po_box.svg

192.229.221.165

200 OK

848 B

URL HTTP/2
www.usps.com/assets/images/home/po_box.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
848 B (848 bytes)
Hash
a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122

HTTP Headers

GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31596
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/cards-and-envelopes.svg

192.229.221.165

200 OK

1.1 kB

URL HTTP/2
www.usps.com/test/nav/images/cards-and-envelopes.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1056 bytes)
Hash
5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f

HTTP Headers

GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 79862
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/featured_clicknship.svg

192.229.221.165

200 OK

493 B

URL HTTP/2
www.usps.com/assets/images/home/featured_clicknship.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
493 B (493 bytes)
Hash
efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe

HTTP Headers

GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31701
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/collectors.svg

192.229.221.165

200 OK

561 B

URL HTTP/2
www.usps.com/test/nav/images/collectors.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
561 B (561 bytes)
Hash
8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e

HTTP Headers

GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31566
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/chinese_characters.gif

192.229.221.165

200 OK

2.2 kB

URL HTTP/2
www.usps.com/assets/images/home/chinese_characters.gif
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
GIF image data, version 89a, 44 x 102\012- data
Size
2.2 kB (2173 bytes)
Hash
6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd

HTTP Headers

GET /assets/images/home/chinese_characters.gif HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 20373
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/gif
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "87d-547e11c4438c0"
last-modified: Mon, 06 Feb 2017 18:50:51 GMT
nncoection: close
server: ECAcc (dcb/7FA2)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 2173
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/business.svg

192.229.221.165

200 OK

689 B

URL HTTP/2
www.usps.com/test/nav/images/business.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size
689 B (689 bytes)
Hash
3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb

HTTP Headers

GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31593
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/images/utility-header/search.svg

192.229.221.165

200 OK

795 B

URL HTTP/2
www.usps.com/global-elements/header/images/utility-header/search.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
795 B (795 bytes)
Hash
78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9

HTTP Headers

GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 30976
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

www.usps.com/test/nav/images/gifts.svg

192.229.221.165

200 OK

590 B

URL HTTP/2
www.usps.com/test/nav/images/gifts.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
590 B (590 bytes)
Hash
e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4

HTTP Headers

GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31256
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/images/utility-header/mailman.svg

192.229.221.165

200 OK

904 B

URL HTTP/2
www.usps.com/global-elements/header/images/utility-header/mailman.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
904 B (904 bytes)
Hash
e4bb1afb6143cb1307585f007399e0e4
7d28cd35cbdb8427d4a12274c3f455e57f4742e0
06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31649
cneonction: close
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 904
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/location.svg

192.229.221.165

200 OK

1.2 kB

URL HTTP/2
www.usps.com/assets/images/home/location.svg
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.2 kB (1209 bytes)
Hash
9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f

HTTP Headers

GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 31175
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2

www.usps.com/assets/images/home/utility_customer_service.png

192.229.221.165

200 OK

1.3 kB

URL HTTP/2
www.usps.com/assets/images/home/utility_customer_service.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
1.3 kB (1307 bytes)
Hash
3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca

HTTP Headers

GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 31091
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/css/footer-sb.css

185.162.89.66

200 OK

794 B

URL HTTP/2
us-ps.us/global-elements/footer/css/footer-sb.css
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (3073)
Size
794 B (794 bytes)
Hash
92aa5c0316db0d80a4107932a638721e
5f812131925fc9a0c8741984e8138f125bef5d73
a112fbcbbe5621ac022cd793262567f449391b8774f3f6434d8774daabd83c31

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/css/footer-sb.css HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/css
content-length: 794
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/carousel/cards-dotcom22.jpg

185.162.89.66

200 OK

48 kB

URL HTTP/2
us-ps.us/assets/images/welcome/carousel/cards-dotcom22.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 626x277, components 3\012- data
Size
48 kB (48444 bytes)
Hash
2bffc98fa821cd399959065fef235706
6360ece9ea8b2c5688c560643b51d3bbd0cea826
5e53cac569b1269619000f8d33dc187af1d20dd922a27ff537fa3d63d4011549

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/carousel/cards-dotcom22.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 48444
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/script/welcome/jquery.min.js

185.162.89.66

200 OK

30 kB

URL HTTP/2
us-ps.us/assets/script/welcome/jquery.min.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (65451)
Size
30 kB (30045 bytes)
Hash
215d671d0e6c4caef586234f3e0a0e84
ece765a22e02f4a0e25b1f2f57fce5ed851df6a5
2072bf0dd92d47d3381ab535654aba5cd743a4a62d43d6be3079b9cca20ab541

HTTP Headers

GET /assets/script/welcome/jquery.min.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 30045
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/script/welcome/bootstrap.js

185.162.89.66

200 OK

15 kB

URL HTTP/2
us-ps.us/assets/script/welcome/bootstrap.js
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
ASCII text, with very long lines (57791)
Size
15 kB (14764 bytes)
Hash
56b563ea6a4e8a1534ad78d64f535359
15330d7d7e4352d317895143e4bda406cc5929ec
11613db4d76ea4bf9d08f7888227cb833c9456b7c51c8b88ee6272f6eff88a6f

HTTP Headers

GET /assets/script/welcome/bootstrap.js HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: application/javascript
content-length: 14764
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/carousel/stamps-dotcom27.jpg

185.162.89.66

200 OK

42 kB

URL HTTP/2
us-ps.us/assets/images/welcome/carousel/stamps-dotcom27.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 626x277, components 3\012- data
Size
42 kB (41966 bytes)
Hash
85e623481f7b4d0bf9afa8c76ec0de57
12f96c197169633350186affb39af086a1f61964
feedbcace15d03efb046b7a360ae00f1bc0ae624656dc984006a74db88b51d45

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/carousel/stamps-dotcom27.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 41966
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/images/package-intercept.svg

185.162.89.66

404 Not Found

708 B

URL HTTP/2
us-ps.us/global-elements/header/images/package-intercept.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
708 B (708 bytes)
Hash
2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/global-elements/header/css/megamenu-v3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/html
content-length: 708
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/images/schedule-redelivery.svg

185.162.89.66

404 Not Found

708 B

URL HTTP/2
us-ps.us/global-elements/header/images/schedule-redelivery.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
708 B (708 bytes)
Hash
2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/global-elements/header/css/megamenu-v3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/html
content-length: 708
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/featured/featured-packagepickup4.jpg

185.162.89.66

200 OK

56 kB

URL HTTP/2
us-ps.us/assets/images/welcome/featured/featured-packagepickup4.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 670x450, components 3\012- data
Size
56 kB (56465 bytes)
Hash
7c614fa8c20c5f9f3784ad6ceb14c984
0616ac4d37fd4a32973116e3da9022f2dd8453fa
5f7927ecf690a939074700ef5650e296fc6e19f1f1519f2a7366eac377e1b6f2

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/featured/featured-packagepickup4.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 56465
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/featured/id-homepage-featured9.jpg

185.162.89.66

200 OK

97 kB

URL HTTP/2
us-ps.us/assets/images/welcome/featured/id-homepage-featured9.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 670x450, components 3\012- data
Size
97 kB (97226 bytes)
Hash
204b1844e39058a48086a05908908998
60d52c2d3be490e8163db1fb193b076d3811736e
51bbcdb75c01d504efbeba55d35b478c27f42058268ed441cafe7d140fa435c0

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/featured/id-homepage-featured9.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 97226
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/featured/featured-taxes4.jpg

185.162.89.66

200 OK

98 kB

URL HTTP/2
us-ps.us/assets/images/welcome/featured/featured-taxes4.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 670x450, components 3\012- data
Size
98 kB (97922 bytes)
Hash
70bd849ea93e646bdb9c15cd43afe461
f692794bedcd9100e045b9e3d02098d37af911ba
816fc1b36cf85161ca4b9dc10d9d242b3b93807f2a6785d822e4257be8a86d91

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/featured/featured-taxes4.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 97922
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/header/images/icon-personalize-stamped-envelopes.svg

185.162.89.66

404 Not Found

708 B

URL HTTP/2
us-ps.us/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
708 B (708 bytes)
Hash
2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/global-elements/header/css/megamenu-v3.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: text/html
content-length: 708
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612

104.17.225.78

200 OK

0 B

URL HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Cookie: __cf_bm=jZSuSNsjv6r2YSrGzoe2_AtM0J8j.XA4DM7WML3TjZA-1666173408-0-ARcovMaxpDmxOJkCPHE1PRTdZjPqjfa01lXAiJVyRuIjV2oMmFjjhLp/I5iwgxJjDbv93T+qKa8gLHwIwSCm4t8=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 144477
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c8a55ac8240b51-OSL
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/premium/tracking-homepage-hero19.jpg

185.162.89.66

200 OK

116 kB

URL HTTP/2
us-ps.us/assets/images/welcome/premium/tracking-homepage-hero19.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1800x400, components 3\012- data
Size
116 kB (116295 bytes)
Hash
e1c04a3df38dc32240638c6efa2523dd
07817a34a8925ef4034875cfb1306a2bab4c70f1
61d1cbb95061c76f2a5a4bbbe85d26878bbfc14edd6dfd306098105c8983af65

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/premium/tracking-homepage-hero19.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/jpeg
content-length: 116295
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/component-guide/blue-caret.svg

185.162.89.66

200 OK

337 B

URL HTTP/2
us-ps.us/component-guide/blue-caret.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
337 B (337 bytes)
Hash
0a330bf94e55b1d543cf4cbf6fff2a1e
061f3ce0c902f6bdeb3f546cddbce5f41a242ec7
6527a1ce93048c7c1a25e584bc74c4e90b8e57b6759fc92be451512142f52c44

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /component-guide/blue-caret.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/assets/css/welcome/welcome-styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/svg+xml
content-length: 337
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/images/global/info-icon.svg

185.162.89.66

200 OK

517 B

URL HTTP/2
us-ps.us/assets/images/global/info-icon.svg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
517 B (517 bytes)
Hash
288b24eb2fa2bfa432bab33e275f5661
6f35baadbdc853f665b48c0da5006611bd4ee2c0
62d5a9a96a3989d6380aadc39773bcf9313cdc55ed878af240163eb610494ebb

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/global/info-icon.svg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/svg+xml
content-length: 517
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff

185.162.89.66

200 OK

59 kB

URL HTTP/2
us-ps.us/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
Web Open Font Format, TrueType, length 58690, version 1.0\012- data
Size
59 kB (58690 bytes)
Hash
a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://us-ps.us/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: font/woff
content-length: 58690
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff

185.162.89.66

200 OK

47 kB

URL HTTP/2
us-ps.us/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
Web Open Font Format, TrueType, length 46657, version 1.0\012- data
Size
47 kB (46657 bytes)
Hash
3beb1cf49dc702cd4de8618eeb344dd4
080e1b4dc8b43ddb06961a3490857cdb936a8c2a
ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://us-ps.us/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: font/woff
content-length: 46657
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

www.usps.com/global-elements/lib/script/require-jquery.js

192.229.221.165

200 OK

74 B

URL HTTP/2
www.usps.com/global-elements/lib/script/require-jquery.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

HTTP Headers

GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 17456
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/script/search-fe.js

192.229.221.165

200 OK

930 B

URL HTTP/2
www.usps.com/global-elements/header/script/search-fe.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (2264), with no line terminators
Size
930 B (930 bytes)
Hash
044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71

HTTP Headers

GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 58745
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2

fast.fonts.net/t/trackingCode.js

104.17.225.78

200 OK

811 B

URL HTTP/2
fast.fonts.net/t/trackingCode.js
IP
104.17.225.78:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (1345), with no line terminators
Size
811 B (811 bytes)
Hash
1dfa207f25b8d79a5c35ca50d763647c
936e65e257584a594ad50fba61a571fad7fa4ab7
25521fbb5c79d37fca8a42f38683817037c3aafcfcebf4bc557b308a4cb35a65

HTTP Headers

GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 508
expires: Wed, 19 Oct 2022 10:01:48 GMT
set-cookie: __cf_bm=jZSuSNsjv6r2YSrGzoe2_AtM0J8j.XA4DM7WML3TjZA-1666173408-0-ARcovMaxpDmxOJkCPHE1PRTdZjPqjfa01lXAiJVyRuIjV2oMmFjjhLp/I5iwgxJjDbv93T+qKa8gLHwIwSCm4t8=; path=/; expires=Wed, 19-Oct-22 10:26:48 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 75c8a55a8ff80b51-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

us-ps.us/www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H

185.162.89.66

404 Not Found

708 B

URL HTTP/2
us-ps.us/www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
708 B (708 bytes)
Hash
2382378378c002d88b9a507c712c3349
2e894db3808b554abadc8b144338ad9e2ea937ba
37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa

HTTP Headers

GET /www.googletagmanager.com/gtm5445.html?id=GTM-MVCC8H HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: text/html
content-length: 708
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/global-elements/footer/images/footer-logo.png

185.162.89.66

200 OK

5.4 kB

URL HTTP/2
us-ps.us/global-elements/footer/images/footer-logo.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced\012- data
Size
5.4 kB (5390 bytes)
Hash
ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/global-elements/footer/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/png
content-length: 5390
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

www.usps.com/global-elements/footer/script/jquery-3.5.1.js

192.229.221.165

200 OK

31 kB

URL HTTP/2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30950 bytes)
Hash
2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19588
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/scroll-red.png

185.162.89.66

200 OK

1.5 kB

URL HTTP/2
us-ps.us/assets/images/welcome/scroll-red.png
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
1.5 kB (1540 bytes)
Hash
dded8e2e38057ea9183ff095bc2e6ced
e12ce587f18839ed139d59774e5fef8b793dbfd7
a3bb919a80dae6a64cb25fd18e689acae58a81737e21abfbbc851b83c60bf578

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/scroll-red.png HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/assets/css/welcome/welcome-styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/png
content-length: 1540
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

us-ps.us/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff

185.162.89.66

200 OK

52 kB

URL HTTP/2
us-ps.us/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
Web Open Font Format, TrueType, length 51685, version 1.0\012- data
Size
52 kB (51685 bytes)
Hash
a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://us-ps.us/global-elements/footer/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: font/woff
content-length: 51685
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

www.usps.com/global-elements/lib/script/resize-manager.js

192.229.221.165

200 OK

468 B

URL HTTP/2
www.usps.com/global-elements/lib/script/resize-manager.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e

HTTP Headers

GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 45193
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 19 Oct 2022 09:56:48 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2

us-ps.us/assets/images/home/favicon.ico

185.162.89.66

200 OK

32 kB

URL HTTP/2
us-ps.us/assets/images/home/favicon.ico
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
32 kB (32038 bytes)
Hash
3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/home/favicon.ico HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:48 GMT
content-type: image/x-icon
content-length: 32038
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:48 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12054
Expires: Wed, 19 Oct 2022 13:17:43 GMT
Date: Wed, 19 Oct 2022 09:56:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12054
Expires: Wed, 19 Oct 2022 13:17:43 GMT
Date: Wed, 19 Oct 2022 09:56:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12054
Expires: Wed, 19 Oct 2022 13:17:43 GMT
Date: Wed, 19 Oct 2022 09:56:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12054
Expires: Wed, 19 Oct 2022 13:17:43 GMT
Date: Wed, 19 Oct 2022 09:56:49 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcbf142b7958e83961fc03b9676d1fc6
930f67e486f95de63450b6d73d1957aac204fb43
9194e452419c2c850073f3dc2d2b23d759dd793b9a0d881cb7b6d862d54805b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9194E452419C2C850073F3DC2D2B23D759DD793B9A0D881CB7B6D862D54805B1"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12054
Expires: Wed, 19 Oct 2022 13:17:43 GMT
Date: Wed, 19 Oct 2022 09:56:49 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13134 bytes)
Hash
39da57495ea698fe534e5d166081a28f
ce392e596465ef9bacb1ad517a7053b6d9cf34a8
417e0dc9684cf6244b1ef78fb58b18d8eed290b4da174030cd6567229c085b88

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4aa09fc-f62d-4799-a1c4-465488877462.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13134
x-amzn-requestid: 69c84abf-826b-4505-b72b-068af95e12e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z09pjGkuIAMFa7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63450fd6-3966cd917655b77a0c593bbd;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 06:40:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Yw2PvUwQCYySco1JuFpEN32eAOceHvq-d_5SuHyq0XyAqJxgVrJ6BA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:50:30 GMT
age: 43579
etag: "ce392e596465ef9bacb1ad517a7053b6d9cf34a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd863b0-94dc-48ab-a768-cb25fea284e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10168 bytes)
Hash
ae2bf42f05c120363dd9c8bc320cbdf9
3e9d928edb29f9d39feda401519dd82e2e509f1e
78985912f0d45719ebcf303e3056f422390ea79b2a5ab47b19cba87f4f11b8ba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fecd863b0-94dc-48ab-a768-cb25fea284e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: a52a1462-c23f-47a3-a71d-461f70f07dd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFokG7MoAMFsgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1c9d-28faabe059a668aa610da199;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: G-mCNWS-oGtoERRbr1vNbgyaom-3twofIvHj1AcOatx4AHU30Q_92Q==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:42:49 GMT
etag: "3e9d928edb29f9d39feda401519dd82e2e509f1e"
content-type: image/jpeg
age: 44040
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cdcf17-9e2f-4bb5-86ea-922d7258ed44.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6842 bytes)
Hash
8e6dd56d33fda025f69932af82f55d5e
6e6e759da34abd631f612bbf8e8a8819ac88f72f
1142335500fea094b376dd97f3b8d9c981c0e49d7333974a4e9e5003b199bcf7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cdcf17-9e2f-4bb5-86ea-922d7258ed44.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6842
x-amzn-requestid: 42572e50-1b54-4fa5-a097-ecfc883b7283
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFAoFsXoAMFzGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1b9d-3037bbed16620d9903d8d70e;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:33:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3JZIEudKeDI284VpBnSwoIps6WeZZgD9IP84e_HB5kQGxaWy7GFY8g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:51:32 GMT
age: 43517
etag: "6e6e759da34abd631f612bbf8e8a8819ac88f72f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F422a9652-e769-4c08-9ec2-00690294f54d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8646 bytes)
Hash
f35bae393b42a022d312d2060b68dd1c
e02d0d7941d160da8086337ec85a9459d9ab16bf
a1565ad87910c81a9289e88d2bdfc8885f34b935ab81633daea51b9f82ff3280

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F422a9652-e769-4c08-9ec2-00690294f54d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8646
x-amzn-requestid: 909442e4-6b16-43de-9bf7-d0248f40b28c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZhQUBEDoIAMFRww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633d2db3-075c54cc2fdfe35a5fe0af5e;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 07:09:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -RFQLCRRFZa0OWN2C1fylNilpXdAir_790IqMrh39VmEx-lZcCOTgw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:25:29 GMT
age: 45080
etag: "e02d0d7941d160da8086337ec85a9459d9ab16bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F930c4fbc-71e1-4a9f-9906-859379701be9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9129 bytes)
Hash
40f819b2d90eea9b4a6de0a7bf764cce
6528d63d04c30638fa11328d2145c3e36661f11e
998ca60b05b85d184d590a4b1ecc430395249f7bd134a2fbf2fa7e4232f89bd5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F930c4fbc-71e1-4a9f-9906-859379701be9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9129
x-amzn-requestid: eed778be-9b5d-4ebe-b503-f7048da1e311
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aOFouGyMoAMFmrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634f1c9e-19e09ede0124e0ab212167fd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XdlCUEyPlnhQvHS18Ci57rqPZNi_Aq9cYofsFpW98owdeOSGN1MPZQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 18 Oct 2022 21:43:08 GMT
etag: "6528d63d04c30638fa11328d2145c3e36661f11e"
content-type: image/jpeg
age: 44021
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fcbf6c7-2d66-4714-a0e0-01b757ccd392.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7075 bytes)
Hash
3e86d948bf8ed2f5918f8323b043ad5f
41548e231e2358d3453e7630f0d07a645cc25ddc
6602f2a020618234d34a9b6cd107398f0405de6dd14227e265aca84b38eaa5cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fcbf6c7-2d66-4714-a0e0-01b757ccd392.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7075
x-amzn-requestid: d488b43b-0bf2-4788-a087-fa1d0ae0270a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aCOTMF7xIAMF0tQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634a5dad-7c7563b8761a637c1828a5ff;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 07:13:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Yu4JsLfxBHVL00QEgTL9SaoPGZDOJJaW7vzQvp9Zn_GOfrba9Gieiw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 19 Oct 2022 04:38:21 GMT
age: 19108
etag: "41548e231e2358d3453e7630f0d07a645cc25ddc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

us-ps.us/assets/images/welcome/carousel/gifts-dotcom27.jpg

185.162.89.66

200 OK

0 B

URL HTTP/2
us-ps.us/assets/images/welcome/carousel/gifts-dotcom27.jpg
IP
185.162.89.66:0
ASN
#8100 ASN-QUADRANET-GLOBAL

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /assets/images/welcome/carousel/gifts-dotcom27.jpg HTTP/1.1
Host: us-ps.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-ps.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 19 Oct 2022 09:56:47 GMT
content-type: image/jpeg
content-length: 69424
cache-control: public, max-age=604800
expires: Wed, 26 Oct 2022 09:56:47 GMT
last-modified: Thu, 04 Feb 2021 15:26:45 GMT
accept-ranges: bytes
alt-svc: quic=":443"; ma=2592000; v="43,46", h3-Q043=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-25=":443"; ma=2592000, h3-27=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (26)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP