hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
188.114.97.1200 OK 11 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Hash edd82dc34e23464aff83bf16310ad562
7a62b1edeaf7808f98bc23b056ebe0cb4009b8ac
d124e0833e5f5834309bd10c2849371f12fa8da322e5ec5ff03279da2b508a55
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /usps/verification.html HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OQ1HgJtLeJ1H53kDLh6oLHZr2aMkMkbujKm%2BRy3YnqNqcf7ImCKHEt5ZgTd%2BmN60WPZFACyC1oMClFvjtD8TFpsuh6p3COoD9DDuWiHoBguiO4m2x9I%2FrRrKTCZbi2HXCLSXrFjXFPwoqVFMa8xk%2BRNrXKsEXZr8ww%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11623f6e38b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 034b06325b334948200ef1d79d4ddeb7
b9a3c93cff37cbaaf20cca79b965b1a21c525ce8
417ce2093027b05cc34199c75e6b29f155c4dd3150651b6b3dbe8564098c4143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "417CE2093027B05CC34199C75E6B29F155C4DD3150651B6B3DBE8564098C4143"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6371
Expires: Sat, 01 Apr 2023 15:51:04 GMT
Date: Sat, 01 Apr 2023 14:04:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6274
Expires: Sat, 01 Apr 2023 15:49:27 GMT
Date: Sat, 01 Apr 2023 14:04:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Alert, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 13:28:28 GMT
content-type: application/json
age: 2185
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2881
Expires: Sat, 01 Apr 2023 14:52:54 GMT
Date: Sat, 01 Apr 2023 14:04:53 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 25dA6VtFUZJc0fTOwiXRGl0j97izjk6S49kkxb0zyxgaOVFN8F9XVrj1rGK2WCE7tp7qSbUXl54=
x-amz-request-id: 3CPSXM3CE6BJGFKV
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 13:12:36 GMT
age: 3137
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 14:04:53 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/main.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/main.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pxHEFjQp6fqj6N1A8TV%2BV3asZ9x5XyOllkBqthd9zMxTtra1lrJL6dE6WVq8ShPXIRWFkj%2BFPTy6CScWAZ7LTlbystW829z989daDECbcrGAsSe62xZ%2FaFtzVrYuSv7xxetqcgBije9niOQJHPMsilbjjGWaFT6X%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b11624279a5b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-twitter_2.png
192.229.221.165200 OK 1.8 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP 192.229.221.165:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56737
content-type: image/png
date: Sat, 01 Apr 2023 14:04:53 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
192.229.221.165200 OK 2.3 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56737
content-type: image/png
date: Sat, 01 Apr 2023 14:04:53 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-facebook_1.png
192.229.221.165200 OK 1.9 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56737
content-type: image/png
date: Sat, 01 Apr 2023 14:04:53 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
192.229.221.165200 OK 2.5 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP 192.229.221.165:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 46642
content-type: image/png
date: Sat, 01 Apr 2023 14:04:53 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/megamenu-v2.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/megamenu-v2.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qzjMJv0Y3VDxCE9i%2B6mz2BaveDBFLIy9T6dnfsGqBJ3nDlyNydkTH%2BcMcHbENbsLabKCm6tw8lzmlyaPXwsLJmpUXBoh2i0b4PZ8GfLG%2Fl%2FTCYBdimNoTGnLIFI25UxL090CJJdma%2F5oFgZX5FLBGvRfWYEPjs%2FcNw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162427e830b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/bootstrap.min.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/bootstrap.min.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ODGd5Tch5UZi8ahctwUHYY3MZwyE7k0yAPPx5doMwQ1XA4FgVPruHXicYod8O%2B95XnBaL9d8lxoMG74jDLbtk%2BpME8ExVDaro0uRQBY1m6y7wf2Ot6ViQJdDjyBdWi52b9%2FU6U2AUECuVe%2FkVsMMpmFVeEsDRGjtrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162427b3eb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9e9f6891559058a4f43596719386a231
8b9bdfb379748c09759d43d9771a71269c0391d3
d1a9523b4094f8ce15ca02124033623203e20b8e375172c1f84491d6b4c0ea6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D1A9523B4094F8CE15CA02124033623203E20B8E375172C1F84491D6B4C0EA6C"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2904
Expires: Sat, 01 Apr 2023 14:53:17 GMT
Date: Sat, 01 Apr 2023 14:04:53 GMT
Connection: keep-alive
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/footer-sb.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/footer-sb.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fj71jyvqFcBwEsOxhHuVJLcqiT%2BhvFJAlPl1waxs%2FSBUb8VETB3Ypo6voDzLq9iTPFli4uOCPWRT59CTKZp9eu5gd2LlxVum1w063Q2WOHvpmTOVqd7uo678XYuaHJ7lp7Xfq3Dv7RWQxl75UCycbHfO%2FsBX8VyCPA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162436b38b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/jquery-3.2.1.js
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pWNhe1chAMWytHIXZRjdCW0CkmTscJd6TgujsfTyT9EuBnrJK07Iy2UCaoBNWkEFYH6vmHxd0eVtpaJ1J1WhtiF76ZDoum%2Ft3VQc7fTtRfZpqKe%2BnV652KfB%2FdxU8ghZCKJhlJjl7gM1%2FaZzLt9YiRoNEIkv9pEHbg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162429cedb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/layer/layer.js
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/layer/layer.js
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pfZSMhe%2FNRPvIyXyenSpiu6yO%2FtqUUfbIo9gK8GgPLMOBVt%2BMhZ3203cNaVV045Nu9vsveE1ChcFFEreZRlH7zLx%2BTMiS1178KEXhLYgkqHLsc7CVBBJrIMsBDToobDjvX2vyi5N8rDkmNXytWfDzf2ieG3P96VYYw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162429b29b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/main-sb.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/main-sb.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YXGNGKkb8t%2BsY5GMgvaj0IaQtfXlcSd98jMbVhzaXFs1Y5SkZwgM97xILosAi5DKjM3vmFF2RcPb2K0fYz6S1ekbfs055fJHTVz9e4RDa%2FnY3tyIK5xH5Xt51MrOr3B0nPXtOUAMVAhQzH9FzqAd3ELn0Ff1kxXDaw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116242af56b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 13:17:27 GMT
age: 2846
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/find_zip.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/find_zip.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 55acd720399706b4592ed33467bad0aa
7054d7cf55986c55a8c1164280d5aea670e3c166
82f4625d6065a2cc754945268caa4ec5ccc3070f13a952e970e628b0e8286c16
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ust1gbrqmZM2OObiFTg9i5tyvGzfwJd%2BpwWsY4I6W4bfiqdOn79JyhUWF1i0LNqo380I%2FK3DcbmWFPd6zEetHosJhPts2riuYJUPaVJb4TlFAGLu%2BxI29J1mOIO%2Bk8r5NiryGKlvRmSeP5tZi57BPlxBqte6hCLyiA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b116244598fb527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/footer-sb.css
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/footer-sb.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zVzT9ux5J3Q3PpgXa6SCRY2Sy5Q7cisPacR%2BaUjXsg9w%2BLC3X1322cxLQWW91lMBk7xWFx%2B7aL0qjpNinpMl3wf1Jj%2Fh55ZeLHW6erSkUaouUTg7za4esbOkazPNACj23kkrqNdy%2B45SVC82Vah7YXEdrULvnNj6A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162455ad2b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/schedule_pickup.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash caefa6da1fcc9925f27c62ed281ddc5e
259b2709cb58617d9686ecbbfed1e0ad4ad36854
e623d5a6a019c5d6f5223475299266849e7d531d7cc65bc815be6be3987ba9de
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:53 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IALf%2BwPrG9%2F2u3FDrVF9z5kRBYmMlzUHZLyk3MXGLR%2FbunWv9ImN9Ev%2BKUffMdB7VHqmNrzanf8GiJbEdl2UyLCLdxf2gMPXJGAiX3zeZSWgENNCuqUqsdYoL2ZqfkA4rp0Fi5G0EFbZaHgQysXgYi%2FZzWU%2BswWdWA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162445df1b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2ks/AN2jiI+Jk6dXJ0etTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FjE83dyFLR6wkgPpUZDwWXzfSNo=
Date: Sat, 01 Apr 2023 14:04:53 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/location.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/location.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 10b9f76fb7fe5784b4e04fdc6de890e1
7e2c1804d7ad9fc1a43f19d88bdddb4c4536544f
04fa9f551f8350143edf1c4c2fc2ee14d5383c69ad8655f7f4b49fb33df8442d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/location.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2FmHs%2F4S6Y%2BQQFOncRJ5cht%2Bg5Mo2m9m5V7mZrh732HuzPRGbKVEbMWzGzimnPMOLW2iVboSKwBIZ1iEHaEBwLFV4kY4q1O0tTBUFeeYQ5nGk0W%2BBKnJJB0kyQo7nn5Of7VKVxp6ZEExVBXTfZ4mrURGjPsn0oJMUA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162445f51b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/tracking.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/tracking.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash bb430da50f7c7a8ea6ec73a3bf9ae374
7abee43068dd2c8f128ebfe8d1816ab53bc40f0a
267bf4041607a9e342fc4e0f576bc1722e65864bdb9a2624d64f52ddf37b108a
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/tracking.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PJ8sMAaPf3cjmJiBhRJOxXJE7GEJj0W0al%2FJOuyjtc30EbmvOdYQD9ELtpHJQWRPhUwIpA63S9YAKp%2FkwR%2BYY5qWUaZbiJVHrhuxP7fkB19RSsReVpAtXI%2FkiWsSDK8YjphyIDHGsyc9yZwNWVOxkUcegE1RC2NUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b116244587b0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/stamps.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/stamps.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 430e9a0d44ca339f0b8de08f90b73352
5c90a10d58ac338f7c28cddeb22e737c6cebbcfd
e902cd7f59bd080e358b6f2dbe9fbec8cbfbf39801d99d4840d892065d65610d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/stamps.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3rUk0BdsI5PwhrNHfmBe%2B7d7I9iyHI1pABde%2Bz6dFYZqUOfaMKUwiUj4fE2InHDQb4BgaKwG3k058Kf1fNVbAh2%2B3dYpxjCqVSKyiRSUWanE4%2F7DoV%2FDGoBwjNDYJt92xO41TJFJ%2BnmSXfwZVeWTn4QHO5aILkeYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162445e96b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/mailman.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/mailman.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 7bfe9ac5f38d4849050bc8bba9a763b1
903f09cdc888f95388c05f7e3e4f5b5e1da047bb
41d13027d20ee0795e4bd414b019027c93618a68b2676e521f2f5483829e6908
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/mailman.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x7GrsOyz2cZt1zwgIQCEi9rp2tiL1EKVBTQVmXamLUmVXM7UQu90qFln%2BXDAVdQlE043%2F%2FRpBybYG95kgQcxC76ezHQyUdpuQELldNUYRpehOaj2UIYH%2B8FvcAGdkt2zq364Zs8z3cHbIGeo5U2s8323PcYZsIeBdw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162445c86b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/logo-sb.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/logo-sb.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 1b7814aef375cf14876d45d591b52772
97a030c346faa9a567d67d774723d9af948c57ba
b40271f5a8ef617c3043280b9075397317f3196f3d71d9268e4e682dd327dba2
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZ%2FPvi4%2BC4GCAukNTgf825aEFFxZngvDM3bvvAiS9%2F8IdeGTob4njUY%2BEXK934Rl%2BYEqSKGEEJG64iwzqUFU9A8O8GXsRmoHmycm1rV7m5ESjHiSpn9puDHxyPnSsa38pGubpHDUV14D0GSm%2B23oUHV8hrutDZ1kxA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162456ae4b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/logo_mobile.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/logo_mobile.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 58bb9441dc868d76f28cbd52e4467c93
eb13bcd6a6b813d46953a28fd621eb11809a75ed
416f302a5cb0b30267f76030a7b49d68d51c264e04d125e62214bdeee3297770
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djdmrJ0gLdwltE2xPea02ltuCw73j1CmIOtE6rLtJXud3WvlUCtTU2IePOhFDCc8CRS7Gw0j3qNNAc1dYmW2RPCWIAs3x6DXZONV2FzHfaB1CB4rdkTgQ2X9gV4vvM0otX7VPF0IbhqVUeT8s0X0Y1X3klME9Asx9w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11624649d6b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/search.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/search.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 218168deafee6151b25fcd83c1b95fc0
4eb56082d98962a164cf18dce0ca1bd7042d21a4
808fa08d7bf4ce8ae1f9618b3915df1981d2a4652e24524ffd9869989fdcd448
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/search.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XHtbrOC%2FPnXHpjfXABUcM%2BoQgpipZPuyf7BKO4oe6UAPZJ0h0AEic5nN%2FlnaYquF6F0Rcs%2F8PFxUKJH3CJttr9HbejyUlAZrEgh1mm0gk4FgM1Yo7XgXGq1EiKVLno6liSGd2QQm5AI1E%2BySpWD0MYn7j1c193eWrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162464a7f0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/calculate_price.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/calculate_price.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 87e89019b2ad1c1d2735a38c3f957711
9b55d60c4a50240be118124754b7522a04ba0df9
e647a451cd90d54e27dddbc1e3fecbff066382125141cbfa30e8ad29b050b171
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/calculate_price.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DsTXmy%2FLe4nbPdIUfUcmC4NS2VlpYsIPAj%2BjiIQNfetyq6EmjJNzZmMC6rPdSICj7lW26sT%2FgBoHI2tOSfjDJTE%2BBDxUQJVwHKaQEkT%2By47IXExG8ZjcMV0qWUV50yN416EzHSLXlCcl6vFTZsk7e5xynntp5%2FHNxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162465944b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/holdmail.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/holdmail.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 65bab8d7a2681bcedeeffa37fa94656d
06f46c5166e48b41c26425f66f172f926cf1aec0
88c7dc310b8e156b1c003c3f349c7c5a09f5a87d06f78cdac322ea8da939d179
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uSVXruGEixukDbHhP25qsI%2Bh5MDwopuDmzXJuLV4yQUIclyB0v3JXaZWH30o3uq9pFmqvvyVHDWjCdnlQmdIuk6duN3kbDnjqAOV0Fs0je%2Fccpkq%2F6wFx2YRuZuRxNLZJsllR1OREb5GtD1WNMr%2B92swjIuoF9tWPA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162465f6ab4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/change_address.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/change_address.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash f15f0ce075de6ff12904626a16f3845d
9032679edf3a1885773fdb3257c61c7f741dbab9
997944e6033954c896bc29a2d9404ee88ef9844bac878e16e006920b7a6fbef9
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/change_address.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=It692r%2F3s1T2vBkrZZXygwBvv8y0CYroS0RkZekW8FnWRMfOgSGoGQwk2bgkxwD7sOyBKdVmB1oIZ9mpPKoAY1I%2FEsYgJMPy3eFw0yOEAGKXH%2FE9Y%2Ffu5Oe6EQ0YvO9NJj1NEuLccDSDKKF61QLZ0k%2FIYDXsnjAufA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162476cde1c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/po_box.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/po_box.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 071146944fb92d5aea3722eb38eba5c4
12acdad32f1053138fcf20980fb7d696c0d1d1ab
b0ade6c11804019a9805bdd201b42b8d7bde4331727912e87c0ce7f6ef8e10ae
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/po_box.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rL%2BktH9co%2BjeMdibl6krmYHczMl4QPjQOGF0TVQXNxN3rWaLdO%2FgBGrhe9duzR5dVQpuBEcbCdLRuL3f%2FWq7HaF3q%2B8sDNspJZy5QjCASy5foYguVnzB4sCyYPr0HTkfNXcPCBOLRYvhm9nd82IgkviEo4K7%2F1InRw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162476d84b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/free_boxes.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/free_boxes.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash f73c9877357ed7ede5daeab8f6b91187
cfafcfc99ea782dceef6d96c157df144a84790d8
2bbac0cfb07be73c0ac65f030d3ddd97bfb21ef1f7f08510430094abb32d18de
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YlSxFhvc7hhnKQMFmwK3Sgbqx6NvDFo4vMPTjsfpbM%2FkgZ8wKFSHxtZrCCSxWGrQatYpxvKYFs3wtu60hI1xfr4L%2FhBd1mk3yyv4REDWr2rz%2B4CK5alJNHv%2FeF5uJd2X5KPFSTc9WM18Zhv%2FCNqaS6h7ek42QesEDw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162480bddb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now.png
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now.png
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now.png HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZnaaVefLT8Rkn%2FF9dg7Ny8p%2BlRJEY1T5VBdsMiO6U6zTpooKHy5UnIvHdJ%2F9PTi04yjvyJROemdmkrl%2FLgQw2aaOkWrWaMM2BQtaCyaMOFU6EuUuUh31%2BIe6afkGEqMw2Fu6%2F4OfjLRtMGY7DDRx%2BKiH3zLMJBAfNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162483c05b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(1).png
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(1).png
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OIayuCsZ0a5eZ4nrbQF7beZMetq%2FpTpScJlzAwlQboXX8Z5xKfMm6r9BgvLUi6G2LVnpkdOKPZOcfYRbeUF5Hh%2Fd0Jp7Sm2sTBbr81Z0ZrSTmW%2BtcHjGmojrm99HT1bBUDxvB98pYR0bR4J9OBF5PK%2FWEvxzoloVYA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162483a49b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/featured_clicknship.svg
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 07c77cda0bd721c8eed0f586cc5bffa5
a6e817db1189ef6535f2578f5035b34c8d55c1b4
c11a02a8fd77c7292def95bd3911242068ab1381000c4f21d6e5f39391029909
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CkgYmUnggsZFgDerPtQM%2FoQMJjeEX2unP%2BMJE4YYjeA3581aMqKFqC6MYQSU8mdRZdl3z5RGCV3cXSvNGLE6Ci6cHX4IwII%2BtWCGOY4NmqXZuvtM90nOFpgaCNVqXJN7obW1W1NLTRmi4ad8BfWJEBHI3N1OtX%2BewA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162482c320b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(2).png
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(2).png
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iY1dK%2B%2FSlnxa1bUenGG9ggfG3dJ6ZxMe5yNoSRSDQdALqpo3yZ%2BuHed5sFlpFSv8U2XOf0kUAjoaLUelMePxcxXbswTMC5Qz7ZGt97WuNE1m9THA%2BFfxDot4OyfbIpnP6ZRSyx6XYwGZKBfZwgH29Pgb7GSeNQ0ANA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1162487e041c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(3).png
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(3).png
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=llFShvdIHK53tR%2F5NwDCYp0bt4gpFSdDqnlWr6SFIGjV0S4dsoz7x2lbMp6QpMyNVZ%2B2VCU5Kp4Q252tfDxGvUach6v0GN%2BIfFmwmv%2FepTMB2WT9FyLYTCd7ZoBeBP2IUCFeY5P9wLjtL%2BlIKxfT0RII783MFg%2Fs8g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b11624948d2b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(4).png
188.114.97.1404 Not Found 109 B URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/go-now(4).png
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k9NQXR%2F31uA0llwGFcas6RMA8bocUaUv1iLxGtpZQxK5J6cIdNkO9R9hts1QTN3cNAJMGikHKxs2mSH%2BvBkdNOr3D1Y9I71RsSS8DukmAM%2FYnhFv%2B81LA7QuEQWhV%2F81QJDNFFQEUk0PayiitViiTXqdmYE0QpR%2FPA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116249de33b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/favicon.ico
188.114.97.1404 Not Found 5.0 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/favicon.ico
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 280186b9f85e3b6925a11e6c6d2255f4
0a7d59c047e0a70a16190fb0618e3958aa664d40
a9391e34b2fd19e67a68de879483339ed956e9801ebabc36d7094d9e02ec5ca5
GET /usps/static/usps/favicon.ico HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:55 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eQ6%2FD5guLnClmUhTpFk%2BLCHa533FCmuoo11AWmuwrNTZ1Sm%2F2VLE5m%2FHinXU7xU0HQFdbRyFDZvvRbeSOGgg88f0J26VJyOBWbm14EQy8Y8aT55kv2EvlyV1vwZNqvuIjYGBLTE8n9M4e3%2BElv7eFLqnMHgKRCPKxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11624adfdb0b51-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Sat, 01 Apr 2023 16:09:30 GMT
Date: Sat, 01 Apr 2023 14:04:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Sat, 01 Apr 2023 16:09:30 GMT
Date: Sat, 01 Apr 2023 14:04:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Sat, 01 Apr 2023 16:09:30 GMT
Date: Sat, 01 Apr 2023 14:04:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7475
Expires: Sat, 01 Apr 2023 16:09:30 GMT
Date: Sat, 01 Apr 2023 14:04:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8_m0xs9JUsoheDqkfPQdh3kzcE3zhX2Io1kl_Y4sDqLr2_03TiK2eA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:35 GMT
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
age: 58460
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: k7ZzBBGmbX5OCG_u8RwOqyLQBvohNe643wpsd3Srg2hoxh55aqSV6A==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
age: 59167
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/hamburger.svg
188.114.97.1404 Not Found 11 kB URL HTTP/1.1 hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/static/usps/hamburger.svg
IP 188.114.97.1:0
Hash d276141ff3c85184f6d1d361e45e0ba0
11b967bfc33541080d41f381aea4685aa9960e16
8632abc252b873359408dd8f817f00d17f76c09e5914b3a6088371768143a42f
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hdrsssjxuxnmdeairaeyxwtyjp.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IrpjINqoUgs%2BSKUrI3h1001TJfvG2ykGpxe0yUDA5XnzJcrVeQJxi2ay6RWxSIGvBD%2Fn5g3PkSeI73f4p0xxr9x4Ky6n14lfEVZiBFsE2jK%2Fy04EHXqfn7qJKr8Yx6bRONes1AXaGagRU6%2BKavOCXyy02Hbow86ppg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1162457f66b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 526d70f5-3eab-410e-97d4-e489e152bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cl6tIFhxoAMFa-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64257186-14e697b924e79d1e5bc6d040;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 11:24:54 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qKEs-bdLIfTk7TjXU0kLNzqEBDhhUXkX_osB-9p5LdfJfUbo8LwyuQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 01:27:32 GMT
age: 45443
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Bn3MbOV7qxTzTjDiOpS3qgs61KZJTe8bY6sHQa_68HPqyLaL-ZsI3Q==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:38 GMT
age: 58457
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: TzZpij5xeF-mrrMvpNNPJQA62GcNd0qPNAh_7IAme7SI3WwmZ4itcg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
age: 58621
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2