upsservicecenter.com/26c485cbb5b8f4543b102ff491bcd15a/?token=597a69d7db7b1ace116b56d1418136d882adec152c14054cf42e52f9b4016ffc6d27ed645701d6623460180b931ee87aa9a630ba54ef45b75180cf2983d936d3/
140.82.54.186302 Found 0 B URL User Request GET HTTP/1.1 upsservicecenter.com/26c485cbb5b8f4543b102ff491bcd15a/?token=597a69d7db7b1ace116b56d1418136d882adec152c14054cf42e52f9b4016ffc6d27ed645701d6623460180b931ee87aa9a630ba54ef45b75180cf2983d936d3/
IP 140.82.54.186:443
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /26c485cbb5b8f4543b102ff491bcd15a/?token=597a69d7db7b1ace116b56d1418136d882adec152c14054cf42e52f9b4016ffc6d27ed645701d6623460180b931ee87aa9a630ba54ef45b75180cf2983d936d3/ HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 23 Aug 2023 08:01:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15; path=/
Location: ../index.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
upsservicecenter.com/index.php
140.82.54.186302 Found 2 B URL User Request GET HTTP/1.1 upsservicecenter.com/index.php
IP 140.82.54.186:443
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
Hash d784fa8b6d98d27699781bd9a7cf19f0
dd122581c8cd44d0227f9c305581ffcb4b6f1b46
e16f1596201850fd4a63680b27f603cb64e67176159be3d8ed78a4403fdb1700
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /index.php HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 23 Aug 2023 08:01:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: 5c5f5705228bd52beeae430b714ec8ee?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Content-Length: 2
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
140.82.54.186301 Moved Permanently 405 B URL User Request GET HTTP/1.1 upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
IP 140.82.54.186:443
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4ad99e81fcb0f65deab0bf7f214f76ac
bdc1da155d1f52814d10391ca5b85eb3b0a88770
af55747853cc37fc27e326fdedb31cd94f3674aa88294fe99fca6d35a8a5fd3c
GET /5c5f5705228bd52beeae430b714ec8ee?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415 HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 23 Aug 2023 08:01:11 GMT
Server: Apache
Location: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Content-Length: 405
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
140.82.54.186200 OK 12 kB URL User Request GET HTTP/1.1 upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
IP 140.82.54.186:443
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (420)
Hash d3621d7b94c53c279f639ce52cc60b10
1b2da482afa7fd7a369150aacd42163d46730534
48d8893e10131f021d14d0e89abad315c69a64891d08d2cea063f3641d80cf0c
GET /5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415 HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Aug 2023 08:01:11 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
upsservicecenter.com/content/marktplaats/client.min.css
140.82.54.186404 Not Found 315 B URL GET HTTP/1.1 upsservicecenter.com/content/marktplaats/client.min.css
IP 140.82.54.186:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /content/marktplaats/client.min.css HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 23 Aug 2023 08:01:12 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
upsservicecenter.com/content/marktplaats/normalize.112272e5.css
140.82.54.186404 Not Found 315 B URL GET HTTP/1.1 upsservicecenter.com/content/marktplaats/normalize.112272e5.css
IP 140.82.54.186:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /content/marktplaats/normalize.112272e5.css HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 23 Aug 2023 08:01:12 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 74eed3f5ba40ed8254fd560147072a3c
7e8836b3b7b3bdd43fc16c13f520912d9588901f
6c961d618eadd1e94ff53dd884d9c65078a8c7116c02a567c3b24d6ca81ad271
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Aug 2023 08:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 74eed3f5ba40ed8254fd560147072a3c
7e8836b3b7b3bdd43fc16c13f520912d9588901f
6c961d618eadd1e94ff53dd884d9c65078a8c7116c02a567c3b24d6ca81ad271
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Aug 2023 08:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/util.js
142.250.74.138200 OK 54 kB URL GET HTTP/2 maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/util.js
IP 142.250.74.138:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67
ValidityMon, 31 Jul 2023 08:22:19 GMT - Mon, 23 Oct 2023 08:22:18 GMT
File type ASCII text, with very long lines (3412)
Hash 16b73dc0de9683fb153b38cf6b5a6e6d
22261377b57577dcd8046a8970ef5c80aefdf5dc
d9f2fabff1b5fdcf2833cdcca025f1ec73c4889c41410e8a018cb1a84bb6ac79
GET /maps-api-v3/api/js/38/11/intl/nl_ALL/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 53998
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 02:00:00 GMT
expires: Thu, 22 Aug 2024 02:00:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Nov 2019 22:32:04 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 21672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/common.js
142.250.74.138200 OK 29 kB URL GET HTTP/2 maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/common.js
IP 142.250.74.138:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67
ValidityMon, 31 Jul 2023 08:22:19 GMT - Mon, 23 Oct 2023 08:22:18 GMT
File type ASCII text, with very long lines (1601)
Hash 2005cff13e09393e76f625c7c3e6d0b7
47d240c168d611f38c102cf2b6320ea582e69e46
50c76b6340f567a536017cdf52bef65fdbbec4d637253e823543059ac68c2fd1
GET /maps-api-v3/api/js/38/11/intl/nl_ALL/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 28568
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 02:00:00 GMT
expires: Thu, 22 Aug 2024 02:00:00 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Nov 2019 22:32:04 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 21672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 74eed3f5ba40ed8254fd560147072a3c
7e8836b3b7b3bdd43fc16c13f520912d9588901f
6c961d618eadd1e94ff53dd884d9c65078a8c7116c02a567c3b24d6ca81ad271
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 23 Aug 2023 08:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash 0a17b75790acda4c0d04e6505993c606
6f64877f90c1f593e385f49cefe7985ce426b0a9
2d5cc5f48b01cc890fe02b518697b01705983ebd9d89961b2e9dcdbe770cee49
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Aug 2023 08:01:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 19 Aug 2023 17:43:14 GMT
Expires: Sat, 26 Aug 2023 17:43:13 GMT
Etag: "6f64877f90c1f593e385f49cefe7985ce426b0a9"
Cache-Control: max-age=293520,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7fb1d384abbbb50c-OSL
devilsms.live/css/usps/main.css
199.188.200.254200 OK 30 kB URL GET HTTP/2 devilsms.live/css/usps/main.css
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type assembler source, ASCII text, with very long lines (348), with CRLF line terminators
Hash 36277e4fba035d5002b28b28b3656109
244ec24c6b302f36a3a174fc3bf225c3b906603b
877c9ecef0ce6e991b965a744c396fb8f8f3968aefa053c966b1a8e806d77c5a
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/main.css HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 30 Aug 2023 08:01:12 GMT
content-type: text/css
last-modified: Wed, 20 Oct 2021 03:52:19 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30024
date: Wed, 23 Aug 2023 08:01:12 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/images/logo-mini-sb.png
140.82.54.186200 OK 24 kB URL GET HTTP/1.1 upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/images/logo-mini-sb.png
IP 140.82.54.186:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type PNG image data, 135 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 43707dd65a8c8ec7754b7b45fd483488
f258a5de57dfa37baf13296da6055e8f8881d742
585262db6911000f59795831f9db7bb41477bcafb135c82b51b0473363134fcf
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /5c5f5705228bd52beeae430b714ec8ee/images/logo-mini-sb.png HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 23 Aug 2023 08:01:12 GMT
Server: Apache
Last-Modified: Wed, 23 Aug 2023 08:01:11 GMT
Accept-Ranges: bytes
Content-Length: 23625
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
devilsms.live/css/usps/Roboto-Regular-webfont.woff2
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Regular-webfont.woff2
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Regular-webfont.woff2 HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Roboto-Light-webfont.woff2
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Light-webfont.woff2
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Light-webfont.woff2 HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Marktplaats.Sprite.svg
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Marktplaats.Sprite.svg
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Marktplaats.Sprite.svg HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/css/usps/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Roboto-Light-webfont.woff
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Light-webfont.woff
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Light-webfont.woff HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Roboto-Regular-webfont.woff
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Regular-webfont.woff
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Regular-webfont.woff HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Roboto-Light-webfont.ttf?v1
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Light-webfont.ttf?v1
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Light-webfont.ttf?v1 HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
devilsms.live/css/usps/Roboto-Regular-webfont.ttf?v1
199.188.200.254404 Not Found 1.2 kB URL GET HTTP/2 devilsms.live/css/usps/Roboto-Regular-webfont.ttf?v1
IP 199.188.200.254:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuerSectigo Limited
Subjectdevilsms.live
Fingerprint72:C0:D3:B1:19:FB:CD:8A:B3:B2:6D:62:78:A9:37:61:9F:B9:AA:6C
ValidityThu, 18 Aug 2022 00:00:00 GMT - Sat, 16 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /css/usps/Roboto-Regular-webfont.ttf?v1 HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upsservicecenter.com
DNT: 1
Connection: keep-alive
Referer: https://devilsms.live/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 23 Aug 2023 08:01:13 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
upsservicecenter.com/content/marktplaats/favicon-192x192.png
140.82.54.186404 Not Found 315 B URL GET HTTP/1.1 upsservicecenter.com/content/marktplaats/favicon-192x192.png
IP 140.82.54.186:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /content/marktplaats/favicon-192x192.png HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 23 Aug 2023 08:01:13 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
upsservicecenter.com/content/marktplaats/favicon.ico
140.82.54.186404 Not Found 315 B URL GET HTTP/1.1 upsservicecenter.com/content/marktplaats/favicon.ico
IP 140.82.54.186:443
Requested by https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Certificate IssuercPanel, Inc.
Subjectupsservicecenter.com
FingerprintEE:A5:8E:7A:CD:B5:BA:83:DD:F9:8C:92:ED:D8:AF:BF:69:E0:50:78
ValidityTue, 22 Aug 2023 00:00:00 GMT - Mon, 20 Nov 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /content/marktplaats/favicon.ico HTTP/1.1
Host: upsservicecenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upsservicecenter.com/5c5f5705228bd52beeae430b714ec8ee/?token=95abaf3b06e0c73eeb55335058a2eeef66083109c139f3d8b6d21b9aaacd7cb5d2190eff2127da8d8faf27c8f8cda3f392afc114f7cfc443f4a6dbbb3ac78415
Cookie: PHPSESSID=5b7d206ac047b963cc60a59f6dbe6b15
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 23 Aug 2023 08:01:13 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1