ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 143
Cache-Control: max-age=103187
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:48 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 10:33:35 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9247
Expires: Fri, 02 Dec 2022 08:27:55 GMT
Date: Fri, 02 Dec 2022 05:53:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 05:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2137
alt-svc: clear
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/client/login.html
155.94.135.193301 Moved Permanently 325 B URL HTTP/1.1 uspoun.kabete.net/moblie/client/login.html
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 780a2ed48edde74caa7ee9222bc7f471
dbb05ebc342384e8cbae11840a0f360e461a9193
937e922a9bba9c5fb8bd55e3de3bf2bb379ccf7bec5bffae0a503ce57280a228
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /moblie/client/login.html HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 05:53:48 GMT
Server: Apache
Location: https://uspoun.kabete.net/moblie/client/login.html
Content-Length: 325
Connection: close
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6278
Expires: Fri, 02 Dec 2022 07:38:26 GMT
Date: Fri, 02 Dec 2022 05:53:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JxExJYMQWrf62XGa2eMuyUUwCpn630EP4RlyQMgPsd7cpAY6iCr3lMvDnwj0Jjl/5L3cDOT8khg=
x-amz-request-id: 0WKY4PNK1V0TVQ5H
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:45:59 GMT
age: 469
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 05:53:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 05:11:15 GMT
cache-control: public,max-age=3600
age: 2554
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash 8e7873b3b37cae7ac0c38b20a88bc165
741e846520ae1747cb3f4e61a9ef5016b6489972
84a046fa9ca1cd48960b59ae8e78d7b4cc1c585671ed6e69e73f872d48423aa4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "84A046FA9CA1CD48960B59AE8E78D7B4CC1C585671ED6E69E73F872D48423AA4"
Last-Modified: Thu, 01 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 02 Dec 2022 11:52:52 GMT
Date: Fri, 02 Dec 2022 05:53:49 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 131
Cache-Control: max-age=98111
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:49 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:09:00 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
uspoun.kabete.net/moblie/client/login.html
155.94.135.193200 OK 24 kB URL HTTP/2 uspoun.kabete.net/moblie/client/login.html
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 5427151507d7545c9a315a3c2c38830d
ac089a5313ca1715bc89e1b2cd6ca0c37820b6ba
8ddf19accf13ba3c1e20ebd94ecba2db9af92fa79eb5cd1f19beb22b42a31d4f
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /moblie/client/login.html HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
last-modified: Tue, 11 Oct 2022 14:00:14 GMT
etag: "270c3-5eac2b1f91780-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 24258
content-type: text/html
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kdYAM7nrIVsnfjnttSMX2A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sjRlP+Y5zGMN7xop5qPJPq4wCN4=
uspoun.kabete.net/moblie/usps_files/1.css
155.94.135.193200 OK 0 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/1.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/1.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:58 GMT
etag: "0-5e3533b2aba80"
accept-ranges: bytes
content-length: 0
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/Official_files/mobile.1f88971c.css
155.94.135.193200 OK 2.8 kB URL HTTP/2 uspoun.kabete.net/moblie/Official_files/mobile.1f88971c.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (9033), with no line terminators
Hash 4bf427588a8aab2c4aac55cbbe52b8b9
adee43f735a17b6e2745480afec7b2168e2d4a12
e65e2353ce6e69d518c772f511a19384d6c0ead3fc309328329314bb207edc7f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/Official_files/mobile.1f88971c.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:02:38 GMT
etag: "2349-5e35332d27f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2785
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/Official_files/app.7886dfa6.css
155.94.135.193200 OK 11 kB URL HTTP/2 uspoun.kabete.net/moblie/Official_files/app.7886dfa6.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (758)
Hash 445ea458ce8b72350b22765cce055565
4e1bfa05f4e90f832a1df1c805ba32758d499429
ede3db9f23bf5174e1d19307dff32c2934cdfeb494295bfee50fc93b8450e451
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/Official_files/app.7886dfa6.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 22:33:20 GMT
etag: "1030d-5e8827b904c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10668
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/calendar.css
155.94.135.193200 OK 2.6 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/calendar.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (14589), with no line terminators
Hash 08db95a016165b8d14a144668b7e064a
92d6357bc5733087226e84420a95a6d40f9662e1
25afbe8a97386e1a035d5f7110657ba82542d0674d774639a9a43876512680a8
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/calendar.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:02 GMT
etag: "38fd-5e3533b67c380-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2579
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/datepicker3.css
155.94.135.193200 OK 2.4 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/datepicker3.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (20872)
Hash 69bd638091a5922cfa5aa06da089175c
57577cbe76db20ad3f29fa5baa749dfca948aef3
a48751d686c78929ac1303b169da95d32ef0e829680208be0c46382776830fb2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/datepicker3.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:08 GMT
etag: "527d-5e3533bc35100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2424
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/footer-sb.css
155.94.135.193200 OK 948 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/footer-sb.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (3179), with CRLF line terminators
Hash f3acd9a18becfb87676e409420d5a927
93725131bbdc90c3f69c03b885e4cad0ff0f6700
cef7622380ea31cdcbfbb1dd95a85919ccdfef03945534aa620d9c0a8f5b1b8b
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/footer-sb.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:26 GMT
etag: "c6d-5e3533cd5f980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 948
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/footer.css
155.94.135.193200 OK 974 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/footer.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (2933), with no line terminators
Hash b611fdf100b35a33f41b3ce5481140ea
6a1dbe40f2e5794b049429f90704e654202e9c6a
7d9057f5e50850fcf2328dc405d8ee26149524f4afcbaf419f83e0b3e7aa52a9
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/footer.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:28 GMT
etag: "b75-5e3533cf47e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 974
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/jquery-ui.min.css
155.94.135.193200 OK 7.9 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/jquery-ui.min.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (29153)
Hash d0b1b8be584578e4bde9bc331c7d7a64
fed7ab452c4bf18b2d11bcbd5ed0a8ebdba17713
ed5b594904979a2edeb8c4d060837d42c3c1e4e805c94f6a869210e3c319d0bc
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/jquery-ui.min.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:32 GMT
etag: "7d15-5e3533d318700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7864
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/bootstrap.min.css
155.94.135.193200 OK 20 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/bootstrap.min.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (65371)
Hash ff866d37a12705c2ef496e8b9f4c517c
20ca7fa9f3fc1922460cb27aefdde2f5310df05d
bc1f26dc4f463aca5a197e7dbbca884c4217278092f93a92e8472bbf627d8d58
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/bootstrap.min.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:00 GMT
etag: "1d903-5e3533b493f00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 19694
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/usps_files/OneLinkusps.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/main-sb.css
155.94.135.193200 OK 2.2 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/main-sb.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (625)
Hash bc9f0de09b3510e38c71cef4f30fa8d8
2bd506f4c976482a8e30a9a8dced8b12ad2e6e82
a25222538f844009bc37a0da1e6c8da50035ea382747576f188be04921cb42c4
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/main-sb.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:34 GMT
etag: "1a26-5e3533d500b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2162
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/tracking-cross-sell.css
155.94.135.193200 OK 1.0 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/tracking-cross-sell.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (3075), with no line terminators
Hash 797100b379ef4b459b884be14bbb6e4f
0683d9a3ead422cbf0e163d0ae0d61e51d6f1236
bbf22e1882686844926ae028f381e94def083d8b511f80edc3cfb5d8ccfa781f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/tracking-cross-sell.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:42 GMT
etag: "c03-5e3533dca1d80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1048
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
155.94.135.193200 OK 6.8 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (44325), with CRLF line terminators
Hash 10f6965dcdc79f9fb34960cc36801c1d
40e09e9917300b16f44267fc7ad702dfb28ae8f3
e0e176266ce6704c15b948d9597fe86087afe65e06c8a4a1a9f549da195ca9c0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/megamenu-v4.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:40 GMT
etag: "ad27-5e3533dab9900-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6806
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download
155.94.135.193200 OK 2.8 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/megamenu-v3.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (13400), with no line terminators
Hash 37602b3130747f9e9b3f8ad770d2ab4e
283c158d06b9e0992135313fb29eb79526b9bc48
62272d1de13717290607e7164f3c382862d23bf37333dc833d982f0904234f9e
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/megamenu-v3.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:14 GMT
etag: "3458-5e353388b5780-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2827
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/modernizr.js.download
155.94.135.193200 OK 4.6 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/modernizr.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document, ASCII text, with very long lines (11084)
Hash a0b0bf9e066eb801303d09a4082dea72
ccc296b79d0e8254a382b389755b3c9ed1ad52e9
04d25a1e92428333cace4e7a3037522058950accdc0128e2689fc918e45cf8ff
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/modernizr.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:18 GMT
etag: "2bfd-5e35338c86080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4629
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/location.svg
155.94.135.193200 OK 1.2 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/location.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 34a7de74809276c444c11adc2ee2548a
b5bbe7d68582af73cbeed0d626204c5e77498599
e1bcd09ac1d25e2966c793dad31851895239753f917ca753a6f04d508c41b760
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/location.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:30 GMT
etag: "a1a-5e35340a68980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1209
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/search.svg
155.94.135.193200 OK 795 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/search.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bc6bba680b71bc912c455bd5621c5720
d48c35dec62877452b6345daf910ceea514acc2f
1204068f265bc491b31eb55cd585ab507116877de4d4d5abc0e613824cbc00b0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/search.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:38 GMT
etag: "5b9-5e35341209b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 795
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/schedule-redelivery.css
155.94.135.193200 OK 4.7 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/schedule-redelivery.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (23129), with no line terminators
Hash 6d4a63727be8138473bfc839153d5fcb
e14edfde9efd3edb856d673df1355c487c0d0c6f
36bf665d88643e1b7ab98cb52350a7b1e3e5ae0fae2033c50f1c3ffc4ab15925
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/schedule-redelivery.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:38 GMT
etag: "5a59-5e3533d8d1480-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4719
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/ge-login.js.download
155.94.135.193200 OK 2.6 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/ge-login.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with CRLF line terminators
Hash 4c7265763ff2731e02c782829a979f5d
2579083d2f5bdea1c7b9ef5fddaf854dcc6a0ed1
57560cfeb4032dbbd17b434184e7b863fb308682698bb1f911435fee15071244
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/ge-login.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:42 GMT
etag: "2460-5e35336a30f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2624
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/tracking.svg
155.94.135.193200 OK 844 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/tracking.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash df358064d9a3e5fdf09fb9cc04559199
fa3e1c6d16a1aa2c2a12fc7eaf39f8e84d08312c
0e984ade03c77408d3ec03bc8b027a67745a3534f37e8c55f72fd48e72289ce5
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/tracking.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:50 GMT
etag: "619-5e35341d7b680-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 844
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/holdmail.svg
155.94.135.193200 OK 768 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/holdmail.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 105347570302f32dbda804910de6cbd6
28bb230d50c51c108fdd3f2276d0e8fa2ca1bd82
1906c7cbea0ffb86914aaff0f63b344ce036c5fa0bdd25d7e898b24f07ee2de8
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/holdmail.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:26 GMT
etag: "5a8-5e35340698080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 768
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/schedule_pickup.svg
155.94.135.193200 OK 923 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/schedule_pickup.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6e782ed8ead72b9c2b30eb8ea98187ec
6a3fa08e1d9337920d087bbc7a959b9d4d326898
933ea7499f489e16c2a30f006945636869ddc2b47bb330fb2fec0f57c44939c0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/schedule_pickup.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:38 GMT
etag: "6ef-5e35341209b80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 923
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/header-init-search.js.download
155.94.135.193200 OK 0 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/header-init-search.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/header-init-search.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:44 GMT
etag: "0-5e35336c19400"
accept-ranges: bytes
content-length: 0
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/megamenu-additions.js.download
155.94.135.193200 OK 0 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/megamenu-additions.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/megamenu-additions.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:12 GMT
etag: "0-5e353386cd300"
accept-ranges: bytes
content-length: 0
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/main.css
155.94.135.193200 OK 15 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/main.css
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash 501908e461a81d21f9843dabe4d5a271
21934daf97007312e0df53c08c2de03539078854
d5a09840ea90cd3c968b3e14cd2f67a4bde157151472b3ac7f332ec8221de22d
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/main.css HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:05:36 GMT
etag: "17d4d-5e3533d6e9000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 14986
content-type: text/css
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash afbc8c0df661e965fd4e02fe44f7acc8
ccf7a766f7fb2d9e487af05facb422abbca6e648
0e776e483041e86cf3f44df4b71f50a9172bb17b929835c65d737b66866a942a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4856
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 05:53:50 GMT
Last-Modified: Fri, 02 Dec 2022 04:32:54 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 516333
accept-ranges: bytes
set-cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=; path=/; expires=Fri, 02-Dec-22 06:23:50 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdefcfb61c06-OSL
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/logo_mobile.svg
155.94.135.193200 OK 908 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/logo_mobile.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bd23bec0b762655a1f6245c929b8d424
640178557a946360d7a160acc1c4ea52ff313258
919beb8f1a11326db3f1464fd7b2ae92ec2061a3a7091ceeae8d8a1f5c8092ae
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/logo_mobile.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:34 GMT
etag: "80c-5e35340e39280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 908
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/change_address.svg
155.94.135.193200 OK 935 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/change_address.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8b5a8192d6d9bab07ba9363d48031e8d
9bfb0814d54c9e35c66f3b6231ab6662a2596b20
b5f023b16827792c716e84ed62f9dbe1b87bf68bf3052ab20ab82ccd4ac4b2ac
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/change_address.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:10 GMT
etag: "74d-5e3533f755c80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 935
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/featured_clicknship.svg
155.94.135.193200 OK 493 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/featured_clicknship.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash b93c4c39b88fca2acefa761a420a96e3
bf6507826fae68fd0c9bab378ebad29d32f00465
7f343f565aa96c3ae50cfd1180d0583b043e6d233326da227a0695afee85c6df
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/featured_clicknship.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:12 GMT
etag: "436-5e3533f93e100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 493
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/js/login.js
155.94.135.193200 OK 457 B URL HTTP/2 uspoun.kabete.net/moblie/js/login.js
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with CRLF line terminators
Hash 90dd7529ab056fc37e613a8fcef05041
951a37e7580368cb5bd841e291190332aff71720
c50ee8c88d76c60618363ba5fa2e626ec7659aad5901267923a91d09eed5210b
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/js/login.js HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Sep 2022 20:13:10 GMT
etag: "567-5e8808649e180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 457
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/find_zip.svg
155.94.135.193200 OK 793 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/find_zip.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7138d9e048926785f5a7609e6af8b5ff
891564b452b04a8762af39bab5db29319b793b71
f115211fc7a8c69e069820271283f2cf84c3e071e050bbc44778d7e15b8c4e4f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/find_zip.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:12 GMT
etag: "5bf-5e3533f93e100-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 793
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/free_boxes.svg
155.94.135.193200 OK 643 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/free_boxes.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 40b492a5e65c0654e8b162cad3795475
1d89fce0b15dfb9e85b171a98dfd7701336ec363
f95845daaef3450ec7b6d0d14a6f9125cef5552e4fae068338512924a27a76c5
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/free_boxes.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:14 GMT
etag: "42a-5e3533fb26580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 643
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/mailman.svg
155.94.135.193200 OK 904 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/mailman.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80c18361aa7dd736d5442b5086e5bf9a
30e94a82cff4154161f1d45c395b43c44da2d74c
5429d099110a77d4f8eace62000c9af90636aa326e21c98b7ec1efc33a4bc4dc
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:34 GMT
etag: "723-5e35340e39280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 904
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/stamps.svg
155.94.135.193200 OK 551 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/stamps.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 473959a921d63844bfca913bdd647b86
0c3dcff1f1590f7e849a243024bbf750334f27c7
1e96b78b600d7a126ce207ba09b15fc7d139d27f3da90cdaf2cbf9c3a7c13f67
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/stamps.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:48 GMT
etag: "44f-5e35341b93200-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 551
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/calculate_price.svg
155.94.135.193200 OK 772 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/calculate_price.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7da320f36dbec5db0155f8acf3c3e01f
0992c0aea45598de82500c3355a8592de1dbf1b2
f24aada878541d572bbe98fd32775e988625e502d12a0f02de7912347812ed8c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/calculate_price.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:08 GMT
etag: "8fe-5e3533f56d800-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 772
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/po_box.svg
155.94.135.193200 OK 848 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/po_box.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1d88a7c92e6c58ab328fb0f274d71799
dfc51974e2f17968b8e7e86e2ac8496735fbfce1
b10c2e5eb3a7281e8bd0f21c6bcdbf8b6a593e3ec063242e98ac465d53d353ac
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/po_box.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:36 GMT
etag: "667-5e35341021700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 848
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/hamburger.svg
155.94.135.193200 OK 293 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/hamburger.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 9b7c44ed4f110f521a0723c72a8eb564
93880a1ac4f3db644c1cde233e1655515f0fe155
063ed60e1fad716b6c2d38c717f346301bfaee106a6e72a943527398322c9892
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/hamburger.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:24 GMT
etag: "222-5e353404afc00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 293
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/require.js.download
155.94.135.193200 OK 6.5 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/require.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (17192)
Hash b7402932e76206919f77fe7184228ebb
2e4fadd893e441ecf4086ce228c006c7bd870df7
dd524063d1894dc6509adda5a55a8aa6243754f2f93a600f6126ad7c8e54cda3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/require.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:04:28 GMT
etag: "440f-5e3533960f700-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6533
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/idxs-icon.svg
155.94.135.193200 OK 994 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/idxs-icon.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b2f48141e232b9a85fa780de927674d
31eac9a04c67f35d98e5f24339a8d3bcafcdfb0a
f3ffd2480beaf40e90a52c7a5626edfc58ea0f3433994e0a30a7a31de4e037e3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/idxs-icon.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:28 GMT
etag: "754-5e35340880500-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 994
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/Official_files/icon.f31093ed.svg
155.94.135.193200 OK 1.2 kB URL HTTP/2 uspoun.kabete.net/moblie/Official_files/icon.f31093ed.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1211)
Hash a13e6621a6e4de745f29637f91514206
341f7f56b979220a220d0ef108d952675e235a49
ef7031ece24d45aed883e4255ff84dc1001fa1b5dbad8bab390420aba47dbf41
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/Official_files/icon.f31093ed.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:02:48 GMT
etag: "b05-5e353336b1600-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1195
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/logo-sb.svg
155.94.135.193200 OK 1.6 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/logo-sb.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c8cd694091256e9e622db809e3604157
0876363e046c8fd1cc641a74477847bca1e3f325
4c1f2d664fb8e66307932ba589cd6a50eaed3b33a300bd1aa51ec9014ebe5f5f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/logo-sb.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:32 GMT
etag: "de5-5e35340c50e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1610
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/social-facebook_1.png
155.94.135.193200 OK 1.9 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/social-facebook_1.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/social-facebook_1.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:40 GMT
etag: "751-5e353413f2000"
accept-ranges: bytes
content-length: 1873
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/social-youtube_3.png
155.94.135.193200 OK 2.5 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/social-youtube_3.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/social-youtube_3.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:46 GMT
etag: "99d-5e353419aad80"
accept-ranges: bytes
content-length: 2461
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/social-pinterest_6.png
155.94.135.193200 OK 2.3 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/social-pinterest_6.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/social-pinterest_6.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:42 GMT
etag: "915-5e353415da480"
accept-ranges: bytes
content-length: 2325
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/social-twitter_2.png
155.94.135.193200 OK 1.8 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/social-twitter_2.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/social-twitter_2.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:44 GMT
etag: "732-5e353417c2900"
accept-ranges: bytes
content-length: 1842
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/go-now(1).png
155.94.135.193200 OK 8.0 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/go-now(1).png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/go-now(1).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:16 GMT
etag: "1f5a-5e3533fd0ea00"
accept-ranges: bytes
content-length: 8026
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download
155.94.135.193200 OK 31 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/jquery-3.5.1.js(1).download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b975568f7eb9ecf41804cb1bbc96dfcc
4be3d286559ff9a84da23644dd863c15dc7a6a1d
4a65ef10076dbfe50ddf6396716410e744ed681c7b4a8c4f5fed42feca72f06f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /moblie/usps_files/jquery-3.5.1.js(1).download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:03:50 GMT
etag: "15d84-5e353371d2180-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 30913
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/go-now.png
155.94.135.193200 OK 20 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/go-now.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/go-now.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:20 GMT
etag: "4f6e-5e353400df300"
accept-ranges: bytes
content-length: 20334
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/go-now(3).png
155.94.135.193200 OK 20 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/go-now(3).png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/go-now(3).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:18 GMT
etag: "4e01-5e3533fef6e80"
accept-ranges: bytes
content-length: 19969
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/go-now(4).png
155.94.135.193200 OK 22 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/go-now(4).png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/go-now(4).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:20 GMT
etag: "5675-5e353400df300"
accept-ranges: bytes
content-length: 22133
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/go-now(2).png
155.94.135.193200 OK 32 kB URL HTTP/2 uspoun.kabete.net/moblie/usps_files/go-now(2).png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 195 x 167, 8-bit/color RGBA, non-interlaced\012- data
Hash 572fc82e3845cdfb11843e27b9d0b11c
94227977268983b68c97418e90bd20b138f6a297
6ed17d6f02e09f54d461213f9887c177d32f4fb0d4eb4209bb90a5c839865d90
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/usps_files/go-now(2).png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:06:16 GMT
etag: "7d97-5e3533fd0ea00"
accept-ranges: bytes
content-length: 32151
content-type: image/png
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/usps_files/mailman.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/usps_files/mailman.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /usps_files/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/header/images/utility-header/mailman.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/header/images/utility-header/mailman.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/header/images/package-intercept.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/header/images/package-intercept.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/header/images/schedule-redelivery.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/header/images/schedule-redelivery.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/calculate_price.svg
192.229.221.165200 OK 772 B URL HTTP/2 www.usps.com/assets/images/home/calculate_price.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17039
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/stamps.svg
192.229.221.165200 OK 551 B URL HTTP/2 www.usps.com/assets/images/home/stamps.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8
GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 77203
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/schedule_pickup.svg
192.229.221.165200 OK 923 B URL HTTP/2 www.usps.com/assets/images/home/schedule_pickup.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16974
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_languages.png
192.229.221.165200 OK 1.5 kB URL HTTP/2 www.usps.com/assets/images/home/utility_languages.png
IP 192.229.221.165:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 16844
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/find_zip.svg
192.229.221.165200 OK 793 B URL HTTP/2 www.usps.com/assets/images/home/find_zip.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16409
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/search.svg
192.229.221.165200 OK 795 B URL HTTP/2 www.usps.com/assets/images/home/search.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ccfe748c6040d78e356b03d1a731585e
3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe
GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16410
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/tracking.svg
192.229.221.165200 OK 844 B URL HTTP/2 www.usps.com/assets/images/home/tracking.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181
GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33286
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/header/images/loyalty.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/header/images/loyalty.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/loyalty.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/holdmail.svg
192.229.221.165200 OK 768 B URL HTTP/2 www.usps.com/assets/images/home/holdmail.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17071
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/change_address.svg
192.229.221.165200 OK 935 B URL HTTP/2 www.usps.com/assets/images/home/change_address.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17069
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/po_box.svg
192.229.221.165200 OK 848 B URL HTTP/2 www.usps.com/assets/images/home/po_box.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17018
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/shipping-supplies.svg
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/test/nav/images/shipping-supplies.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99
GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16601
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/location.svg
192.229.221.165200 OK 1.2 kB URL HTTP/2 www.usps.com/assets/images/home/location.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f
GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16597
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/cards-and-envelopes.svg
192.229.221.165200 OK 1.1 kB URL HTTP/2 www.usps.com/test/nav/images/cards-and-envelopes.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f
GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65281
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/gifts.svg
192.229.221.165200 OK 590 B URL HTTP/2 www.usps.com/test/nav/images/gifts.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4
GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16678
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/images/utility-header/search.svg
192.229.221.165200 OK 795 B URL HTTP/2 www.usps.com/global-elements/header/images/utility-header/search.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9
GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16398
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/business.svg
192.229.221.165200 OK 689 B URL HTTP/2 www.usps.com/test/nav/images/business.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb
GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17015
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/collectors.svg
192.229.221.165200 OK 561 B URL HTTP/2 www.usps.com/test/nav/images/collectors.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e
GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16988
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/printcustomsforms.svg
192.229.221.165200 OK 1.0 kB URL HTTP/2 www.usps.com/assets/images/home/printcustomsforms.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2535), with no line terminators
Hash 88057e6794cb9a5a40e09d15a69a21e3
41054cda6b3e74eecb1f0cc02059322261ab39f0
421420743a01fdf018473f8de8edb18a8758b965b8b2eceb521db11b603ac7b2
GET /assets/images/home/printcustomsforms.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 85824
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "9e7-5cfbe96b910c0+gzip"
last-modified: Mon, 01 Nov 2021 18:46:03 GMT
server: ECAcc (dcb/7FCD)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1031
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_customer_service.png
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/assets/images/home/utility_customer_service.png
IP 192.229.221.165:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca
GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 16512
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/chinese_characters.gif
192.229.221.165200 OK 2.2 kB URL HTTP/2 www.usps.com/assets/images/home/chinese_characters.gif
IP 192.229.221.165:0
File type GIF image data, version 89a, 44 x 102\012- data
Hash 6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd
GET /assets/images/home/chinese_characters.gif HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 5794
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/gif
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "87d-547e11c4438c0"
last-modified: Mon, 06 Feb 2017 18:50:51 GMT
nncoection: close
server: ECAcc (dcb/7FA2)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 2173
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/featured_clicknship.svg
192.229.221.165200 OK 493 B URL HTTP/2 www.usps.com/assets/images/home/featured_clicknship.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 17121
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Fri, 02 Dec 2022 05:53:50 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/usps_files/OneLinkusps.js.download
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/usps_files/OneLinkusps.js.download HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 302676
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdf3f9b21c06-OSL
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/images/nav-red-chevron.svg
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/images/nav-red-chevron.svg
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/images/nav-red-chevron.svg HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/global-elements/footer/images/footer-logo.png
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/global-elements/footer/images/footer-logo.png
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JZAFwGz7kAWplsA1qeraQTjirrZb29JTnUPii5BcPg5tzxcBLtt0WA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:24:25 GMT
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
age: 26966
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
184.51.252.197200 OK 503 B IP 184.51.252.197:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8113
Expires: Fri, 02 Dec 2022 08:09:04 GMT
Date: Fri, 02 Dec 2022 05:53:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 28938
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/js/vue.js
155.94.135.193200 OK 97 kB URL HTTP/2 uspoun.kabete.net/moblie/js/vue.js
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash 9a2a59b97a9e53ad1fb8c957852e8ba7
906020c667b307318fcdd37925edd121ed6d6279
652285aacf6dd9c8c65aa3596902aff8666ddc9ba218ea2e1aaa9ff6f81a2a09
Analyzer Verdict Alert fortinet Phishing
GET /moblie/js/vue.js HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Apr 2021 20:12:48 GMT
etag: "53882-5c0f9e2cc9000-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript
date: Fri, 02 Dec 2022 05:53:49 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 29155
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bBj-TXtavCuORZ9qBoZeVj-GXeRljAeW-98HY7lTk5_VRSKF4_07VQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 04:22:38 GMT
age: 5473
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 29944
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:50 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/client/favicon.ico
155.94.135.193200 OK 5.5 kB URL HTTP/2 uspoun.kabete.net/moblie/client/favicon.ico
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 22c4870923e0f7ddc1ea7da681309e53
901d2af5294c75c623809804138fa3fe88d9cdad
83f51fdc82874452f15022eece208e629759e495c8cd9e98eb30bfb4e4883d0b
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /moblie/client/favicon.ico HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/client/login.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Jul 2022 23:38:14 GMT
etag: "7d26-5e353b2234580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 5515
content-type: image/x-icon
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2
uspoun.kabete.net/moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
155.94.135.193404 Not Found 264 B URL HTTP/2 uspoun.kabete.net/moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP 155.94.135.193:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4a5b6f4d81e26a8c963692c188b2834
c371e7448d1ca2eee4715da9d960bb2315ff7ecb
3ccef7c6c5191ce11e98a839cd097f8ffc83343eb4e1f72dfcd0985c861c6ca4
Analyzer Verdict Alert fortinet Phishing
GET /moblie/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: uspoun.kabete.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/moblie/usps_files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-length: 264
content-type: text/html; charset=iso-8859-1
date: Fri, 02 Dec 2022 05:53:51 GMT
server: Apache
X-Firefox-Spdy: h2
fast.fonts.net/t/trackingCode.js
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/trackingCode.js
IP 104.17.225.78:0
GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspoun.kabete.net/
Cookie: __cf_bm=Y8ho1OVTXYrS55XekagPA0Y7w5VgI_EOoshfKYolrV0-1669960430-0-AdFz32lq4jik0g24969IGKsfOGC7HczfD8TiY2CGZd67S56PqrQe78vGGFO7+mBQ31UebUAApbzpWPkZDiffRPI=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 05:53:50 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 330
expires: Fri, 02 Dec 2022 05:58:50 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7731cdf299231c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2