Report - willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/

Report Overview

Visited public
2024-04-03 01:00:39
Tags
usps logistics phishing
Submit Tags
URL
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Finishing URL
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
IP / ASN
154.0.167.183
#37611 Afrihost
Title
USPS.com® - USPS Tracking® Results
Phishing - US Postal Service

Detections

urlquery

125

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fast.fonts.net	2905	1999-03-03	2013-07-13 06:08:03	2024-04-01 20:37:33	470 B	847 B	104.16.249.67
www.usps.com	11794	1997-07-10	2012-05-24 09:47:05	2024-03-30 14:58:02	14 kB	81 kB	192.229.221.165
tools.usps.com	12881	1997-07-10	2013-04-18 14:00:39	2024-03-28 00:37:37	467 B	1.3 kB	192.229.221.165
willievisser.com	unknown	unknown	No data	No data	42 kB	417 kB	154.0.167.183

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	From	Size	First Seen	Last Seen
	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js	ScriptElement	74 B	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2403 Hash ea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js	ScriptElement	2.2 kB	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 18:00 Times Seen353 Hash 418d20c9da7f39976dcd043467cd9c05 242c058aa62349fe3fa781ce9ef622f882c73d6a 55bf60330b23f3982e77dd63d9796997da15a61bddec70142f2c7eefed880c66 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js	ScriptElement	1.0 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2391 Hash 90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/	ScriptElement	613 B	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/ IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 18:00 Times Seen393 Hash cc297ba2a283a306536c7b47d28e5327 9bc60fc2d3f9eed2d2501080ebbdc726380975c0 3dd4de6bec3e1e7deb446cda4c080d2c9355a6a49b2cac87ad9cd6cf932d4fd2 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-additions.js	ScriptElement	1.3 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-additions.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2380 Hash 847cc8bd91110ff714275c5a29fbd404 cff690cc070f9539cc1c325ed150b819018e8df7 a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu.js	ScriptElement	14 kB	2023-03-07	2025-07-02
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-02 15:25 Times Seen1083 Hash f91cb845e3581dd07e23db07e02c2366 ffb9ee2cad8c59914fcc3000ba8153a167036738 df75a5a617c9d258b4127a64b9c19a4c2c8b95b2036b97530a3d513c672cf110 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/OneLinkUsps.js	ScriptElement	3.6 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/OneLinkUsps.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2375 Hash b60628830a1d34363f98c9443b856555 ba386fdd91d2db7fb6749982caa78bef59028077 68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require.js	ScriptElement	17 kB	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-11 18:00 Times Seen2258 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/header-init-search.js	ScriptElement	904 B	2023-03-07	2025-07-02
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/header-init-search.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-02 15:25 Times Seen2324 Hash d8cb563907e68e9649948c6f521efe60 f5b7cf8123929db8162a2af51d07dd11c21fbac3 fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a Loading...

	www.usps.com/global-elements/lib/script/helpers.js	ScriptElement	695 B	2023-03-07	2025-07-03
Pretty URL www.usps.com/global-elements/lib/script/helpers.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2403 Hash 5372347b4f98f60b33579180ef6a3567 02064f1641c40b35c14a0da9ee310de54ff76cd5 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4 Loading...

	www.usps.com/global-elements/footer/script/jquery-3.5.1.js	ScriptElement	90 kB	2023-03-07	2025-07-02
Pretty URL www.usps.com/global-elements/footer/script/jquery-3.5.1.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-02 22:21 Times Seen4398 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/metrics-all.js	ScriptElement	11 kB	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/metrics-all.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 18:00 Times Seen349 Hash 65ab5df156a2a51b278f9967fc154f28 db841daeeb75283b73216a616f52489f6f3bebc3 c7a923623e0ef6cf3ec2c4afa6b3f757ee1f183ac9503e7295629fff50a27597 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/optimize.js	ScriptElement	93 kB	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/optimize.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 18:00 Times Seen352 Hash 8a59b241d202a479a0b46f967afcfefa 2e3e28efbc1d20256eabb526bc59b2ac17dc90f7 611e8b291568bc69886b5cf92f1cf782092132d85098e851013bcff53c3f5c92 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/	ScriptElement	24 B	2023-03-07	2025-07-02
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/ IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-02 15:25 Times Seen1123 Hash 56d62f55706e2e153678329e7bcd94d8 c00d14b88b1fa94b12c0aafb761e676e73758fc9 6949901ccecaa8c8c40ac181981a5a291b81648a0a5ab42223db4875bdd5235c Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.2.1.js	ScriptElement	87 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.2.1.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 05:34 Times Seen40356 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/ge-login.js	ScriptElement	9.3 kB	2023-03-07	2025-06-11
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/ge-login.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-06-11 18:00 Times Seen360 Hash 252bc5d05d5ac9f132978968489a9b37 49cfe0b8d8d08038bf070f11addd9ab53c9ae67e 12de71624f55c7c5e1f462fdfde80f207c449f478917d21c82e65f5b9672cbfd Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/modernizr.js	ScriptElement	11 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/modernizr.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen1734 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

	www.usps.com/global-elements/header/script/search-fe.js	ScriptElement	2.3 kB	2023-03-07	2025-07-03
Pretty URL www.usps.com/global-elements/header/script/search-fe.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen2393 Hash f7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/	ScriptElement	25 B	2023-03-07	2025-07-02
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/ IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-02 15:25 Times Seen1136 Hash f467b64f19191da4e5c8ac5b4edb02b2 7abcaf406c9ff382bd7f7c75c7653fbff03f0410 33c959a2c76326692f3647ba8d01dc64c6374357f098dea1db067a974843b526 Loading...

	willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js	ScriptElement	85 kB	2023-03-07	2025-07-03
Pretty URL willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js IP 154.0.167.183 ASN #37611 Afrihost Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-03 00:33 Times Seen1718 Hash 8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062 Loading...

HTTP Transactions (103)

URL IP Response Size

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/

154.0.167.183

200 OK

9.7 kB

URL User Request GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
IP
154.0.167.183:443
ASN
#37611 Afrihost

Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1057)
Size
9.7 kB (9746 bytes)
Hash
1c7831675d1e3d46eb2e1229469ff004
f19789821b67c7c8ba6c8542dcf3af022d6dd152
b2507458518e4014cba196856fa348b61408ab38e1c50f25e88ae3429a0cba7f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/ HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:12 GMT
Server: Apache
X-Powered-By: PHP/7.4.1
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9746
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js

154.0.167.183

200 OK

30 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (65453)
Size
30 kB (29612 bytes)
Hash
8234c1aca62c1e09cc00f7fb5908d309
831062e805247046abdbab52149b03604119fd11
e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:13 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "14b60-61283e082a759-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 29612
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/datepicker3.css

154.0.167.183

200 OK

2.4 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/datepicker3.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (20872)
Size
2.4 kB (2424 bytes)
Hash
3f191e9506e3df8a493126d277bf2155
3cfd9acd0a02ba1a770b31b665599cd18544c1c7
b02fa0b7acc5f314a89a9e9c493ba6f13500cc9fb8374a3111ab6fa67500be3d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/datepicker3.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "527d-61283e0825550-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2424
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/metrics-all.js

154.0.167.183

200 OK

3.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/metrics-all.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
3.2 kB (3215 bytes)
Hash
65ab5df156a2a51b278f9967fc154f28
db841daeeb75283b73216a616f52489f6f3bebc3
c7a923623e0ef6cf3ec2c4afa6b3f757ee1f183ac9503e7295629fff50a27597

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/metrics-all.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "2bde-61283e082bae1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3215
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer.css

154.0.167.183

200 OK

974 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (2933), with no line terminators
Size
974 B (974 bytes)
Hash
530d53f217d1c2dcd18267587f66d557
2011593916b3fd3cbc0cf618807d7e7b1467fa68
918439d31704a7efd16b3c23a42ea7e48f21fb008096b45d217444f3e28e1fc5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "b75-61283e0828c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 974
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css

154.0.167.183

200 OK

13 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (49380), with CRLF line terminators
Size
13 kB (13316 bytes)
Hash
7d15375181a241207e9c42a1d8101cda
9643ecfa8d6b3958c3cb02c2d5a2df0a1e3a7de0
9c5ce7229f264a3bc86d1bf6482cc721484f24afef2d070d5b14083f4d6425f5

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "1370f-61283e082b6f9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 13316
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calendar.css

154.0.167.183

200 OK

2.6 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calendar.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (14589), with no line terminators
Size
2.6 kB (2579 bytes)
Hash
21b96abf877a23a0f752c929993c8129
ede223c9648da1d6ad38f463fa71e934b2daa4b7
b6b538331a7716ca132d0fbbdc31e51a5c17047c14474e3f738f70472f08473d

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calendar.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "38fd-61283e0825168-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2579
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0

104.16.249.67

200 OK

0 B

URL GET HTTP/2
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP
104.16.249.67:443
ASN
#13335 CLOUDFLARENET

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB9:2B:82:F1:50:51:EA:B4:39:81:75:2F:6E:8B:8B:94:55:81:C3:47
ValidityFri, 05 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 03 Apr 2024 01:00:14 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 503196
accept-ranges: bytes
set-cookie: __cf_bm=NNmGFYaCNgCUaN9BfFNpGdK2z_q4_FskcF0K2X_DVZc-1712106014-1.0.1.1-YrF.c3FFoSbP4Q7ip8eiuNzUANf2EnQCKtrfeFEOnSbgq1z2X7RcKW1TMEUAS.YWngwjM6VDeCZo73lXtiMRfA; path=/; expires=Wed, 03-Apr-24 01:30:14 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 86e51ede0bd2568b-OSL
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking-cross-sell.css

154.0.167.183

200 OK

1.0 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking-cross-sell.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (3075), with no line terminators
Size
1.0 kB (1048 bytes)
Hash
2c6c2bae5d602f55892faeaa1a4ff974
3c5fba164e02726bf62e8d5f7f70984e8208dd5e
0c49eb2734535aca911b921f734594a8bc288ffd69ac85beef19da552a105dde

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking-cross-sell.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "c03-61283e082ce69-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1048
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/optimize.js

154.0.167.183

200 OK

35 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/optimize.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1972)
Size
35 kB (34969 bytes)
Hash
8a59b241d202a479a0b46f967afcfefa
2e3e28efbc1d20256eabb526bc59b2ac17dc90f7
611e8b291568bc69886b5cf92f1cf782092132d85098e851013bcff53c3f5c92

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/optimize.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "16b8d-61283e082c2b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 34969
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/bootstrap.min.css

154.0.167.183

200 OK

20 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/bootstrap.min.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (65371)
Size
20 kB (19694 bytes)
Hash
148113d0fc5638a9c63faa0852746a28
376560faf7b32f3768f9cceb0813cdc6125d6269
18961a60d0e8347696fb7f0b322232eef10638dcb029f9d3961f9db7e0a787cc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/bootstrap.min.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "1d903-61283e0825168-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 19694
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-ui.min.css

154.0.167.183

200 OK

7.9 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-ui.min.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (29153), with CRLF line terminators
Size
7.9 kB (7869 bytes)
Hash
f317653127e1c9f7f5e3cb37fe9db946
35ca56f8f7395d30c95d97a8c00ede0c7cd03af9
cd4e2cd505b71a38c564a21fec47a02c21555e2b1f91ba7b6d4cbdb04de4e082

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-ui.min.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "7d19-61283e0829f89-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7869
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule-redelivery.css

154.0.167.183

200 OK

4.7 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule-redelivery.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (23038), with no line terminators
Size
4.7 kB (4697 bytes)
Hash
bdfffbb68be1fd26eb09e327bed45351
d197097d59665e71528a1b4d76073526e857ef1b
f4e8195415de924f3045e054704c9ef253097a3d7e1e556a43083132b17467ac

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule-redelivery.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "59fe-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4697
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js

154.0.167.183

200 OK

92 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "4a-61283e082c699-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 92
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js

154.0.167.183

200 OK

358 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
5372347b4f98f60b33579180ef6a3567
02064f1641c40b35c14a0da9ee310de54ff76cd5
7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "2b7-61283e08293d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 358
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js

154.0.167.183

200 OK

912 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2235), with no line terminators
Size
912 B (912 bytes)
Hash
418d20c9da7f39976dcd043467cd9c05
242c058aa62349fe3fa781ce9ef622f882c73d6a
55bf60330b23f3982e77dd63d9796997da15a61bddec70142f2c7eefed880c66

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "8bb-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 912
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js

154.0.167.183

200 OK

468 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
90d8fb00194d91e9dd20281817c285d6
e7e37421b14a39e0d3787988a52a45d27ec3761f
479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "410-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 468
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js(1).download

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js(1).download
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery.min.js(1).download HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css

154.0.167.183

200 OK

6.9 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (44725), with no line terminators
Size
6.9 kB (6934 bytes)
Hash
e91ca0335745f99e25cbbf36fcfde992
993e87cedb80bbfe5a847fe9f4d957bfe8795549
8853e074638a2a37e8a4afe149f17dd1ce9c4d76d5c9e1614f59507c359f3927

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "aeb5-61283e082b6f9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6934
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.2.1.js

154.0.167.183

200 OK

30 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.2.1.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (32058)
Size
30 kB (30138 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.2.1.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "15283-61283e0829ba1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30138
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/modernizr.js

154.0.167.183

200 OK

4.6 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/modernizr.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (11084)
Size
4.6 kB (4629 bytes)
Hash
66e83c4165a234cdda478a9c55cb90db
22e9211030a1f612ef4acd010185181bde967307
779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/modernizr.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "2bfd-61283e082bae1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4629
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.5.1.js

154.0.167.183

200 OK

31 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.5.1.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30913 bytes)
Hash
9ac39dc31635a363e377eda0f6fbe03f
29fa5ad995e9ec866ece1d3d0b698fc556580eee
9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/jquery-3.5.1.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "15d84-61283e0829f89-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30913
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu.js

154.0.167.183

200 OK

3.0 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (3410), with CRLF line terminators
Size
3.0 kB (2994 bytes)
Hash
f91cb845e3581dd07e23db07e02c2366
ffb9ee2cad8c59914fcc3000ba8153a167036738
df75a5a617c9d258b4127a64b9c19a4c2c8b95b2036b97530a3d513c672cf110

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:14 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "3651-61283e082bae1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2994
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/OneLinkUsps.js

154.0.167.183

200 OK

1.1 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/OneLinkUsps.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1067 bytes)
Hash
b60628830a1d34363f98c9443b856555
ba386fdd91d2db7fb6749982caa78bef59028077
68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/OneLinkUsps.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "e37-61283e082bae1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1067
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/ge-login.js

154.0.167.183

200 OK

2.6 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/ge-login.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with CRLF line terminators
Size
2.6 kB (2617 bytes)
Hash
252bc5d05d5ac9f132978968489a9b37
49cfe0b8d8d08038bf070f11addd9ab53c9ae67e
12de71624f55c7c5e1f462fdfde80f207c449f478917d21c82e65f5b9672cbfd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/ge-login.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "245d-61283e0828c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2617
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require.js

154.0.167.183

200 OK

6.5 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (17192)
Size
6.5 kB (6533 bytes)
Hash
16e572a4f80526df4bc3cc7ff056a9a8
f23b5c2fd52e855245e3d2586cd911051561e64c
75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "440f-61283e082c699-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6533
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/header-init-search.js

154.0.167.183

200 OK

333 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/header-init-search.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with CRLF line terminators
Size
333 B (333 bytes)
Hash
d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/header-init-search.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "388-61283e08293d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 333
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-additions.js

154.0.167.183

200 OK

530 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-additions.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
530 B (530 bytes)
Hash
847cc8bd91110ff714275c5a29fbd404
cff690cc070f9539cc1c325ed150b819018e8df7
a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-additions.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "541-61283e082b6f9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 530
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/qt.css

154.0.167.183

200 OK

9.9 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/qt.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Size
9.9 kB (9892 bytes)
Hash
ea7441cf1694e85f90f0b0f6e4e4f607
d7b4c31f8d76d0cf4da99e2f2dbab97c4f441b33
1925ce0c88a54751f2da5f3e2d1d2fb0af80296c205c41e940bb34765944387a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/qt.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "c800-61283e082c699-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 9892
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main-sb.css

154.0.167.183

200 OK

2.8 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main-sb.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (8795)
Size
2.8 kB (2801 bytes)
Hash
ff67eac943614ef903c2e84419a60f4c
565109b98747417724dafa5462a731c692178381
0863d2c590d46ad4b990232414eef23349ee4316ac4ccbf6f4618329539fb65a

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main-sb.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "225c-61283e082b311-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2801
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer-sb.css

154.0.167.183

200 OK

948 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer-sb.css
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with very long lines (3179), with CRLF line terminators
Size
948 B (948 bytes)
Hash
0466c7414c19b685bafe055bcd1d9d7b
29eb107ca7c4de31aaf2a9df8d9c8294d2c234ae
ccaebfd542fba2c3af8d9397e265345e7c7bec22c7c94f190ef7047e38479830

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer-sb.css HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "c6d-61283e0827490-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 948
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js

154.0.167.183

200 OK

92 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/require-jquery.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "4a-61283e082c699-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 92
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js

154.0.167.183

200 OK

912 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (2235), with no line terminators
Size
912 B (912 bytes)
Hash
418d20c9da7f39976dcd043467cd9c05
242c058aa62349fe3fa781ce9ef622f882c73d6a
55bf60330b23f3982e77dd63d9796997da15a61bddec70142f2c7eefed880c66

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search-fe.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "8bb-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 912
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js

154.0.167.183

200 OK

358 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
5372347b4f98f60b33579180ef6a3567
02064f1641c40b35c14a0da9ee310de54ff76cd5
7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/helpers.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "2b7-61283e08293d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 358
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js

154.0.167.183

200 OK

468 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
90d8fb00194d91e9dd20281817c285d6
e7e37421b14a39e0d3787988a52a45d27ec3761f
479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/resize-manager.js HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "410-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 468
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

GET www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F7BB)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/schedule_pickup.svg

192.229.221.165

200 OK

923 B

URL GET HTTP/2
www.usps.com/assets/images/home/schedule_pickup.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
923 B (923 bytes)
Hash
d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616

HTTP Headers

GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59963
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/2695)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(1).png

154.0.167.183

200 OK

8.0 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(1).png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced
Size
8.0 kB (8026 bytes)
Hash
49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(1).png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "1f5a-61283e0828c00"
Accept-Ranges: bytes
Content-Length: 8026
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(2).png

154.0.167.183

200 OK

27 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(2).png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced
Size
27 kB (26972 bytes)
Hash
b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(2).png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "695c-61283e0828fe8"
Accept-Ranges: bytes
Content-Length: 26972
Vary: User-Agent
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

GET www.usps.com/test/nav/images/cards-and-envelopes.svg

192.229.221.165

200 OK

1.1 kB

URL GET HTTP/2
www.usps.com/test/nav/images/cards-and-envelopes.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.1 kB (1056 bytes)
Hash
ef48ce62cb3d361e1d8b2938c40e71dd
f2c96ac70aab81500fa0d12f5ab61f07b79b8a54
893b5448cdde44b4db29800aeed45e278b1e640ea4585a5f4a5e4725e64bae84

HTTP Headers

GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59411
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dce/26DF)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/search.svg

192.229.221.165

200 OK

795 B

URL GET HTTP/2
www.usps.com/assets/images/home/search.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
795 B (795 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

HTTP Headers

GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59327
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/26EA)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(3).png

154.0.167.183

200 OK

20 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(3).png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(3).png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "4e01-61283e0828fe8"
Accept-Ranges: bytes
Content-Length: 19969
Vary: User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo-sb.svg

154.0.167.183

200 OK

1.6 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo-sb.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
1.6 kB (1610 bytes)
Hash
0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo-sb.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "de5-61283e082af29-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1610
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml

GET www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F7B7)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F747)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now.png

154.0.167.183

200 OK

20 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now.png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced
Size
20 kB (20334 bytes)
Hash
d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now.png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "4f6e-61283e08293d1"
Accept-Ranges: bytes
Content-Length: 20334
Vary: User-Agent
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

GET www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf

192.229.221.165

403 Forbidden

345 B

URL GET HTTP/2
www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
XML 1.0 document, ASCII text
Size
345 B (345 bytes)
Hash
a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794

HTTP Headers

GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://willievisser.com
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html
date: Wed, 03 Apr 2024 01:00:15 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking.svg

154.0.167.183

200 OK

844 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
844 B (844 bytes)
Hash
2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/tracking.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "619-61283e082ce69-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 844
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml

GET www.usps.com/global-elements/lib/script/require-jquery.js

192.229.221.165

200 OK

74 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/require-jquery.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

HTTP Headers

GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 59912
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
server: ECAcc (dce/268C)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2

GET www.usps.com/global-elements/lib/script/helpers.js

192.229.221.165

200 OK

358 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/helpers.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
5372347b4f98f60b33579180ef6a3567
02064f1641c40b35c14a0da9ee310de54ff76cd5
7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4

HTTP Headers

GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59919
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dce/26C8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2

GET www.usps.com/global-elements/header/script/search-fe.js

192.229.221.165

200 OK

930 B

URL GET HTTP/2
www.usps.com/global-elements/header/script/search-fe.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2264), with no line terminators
Size
930 B (930 bytes)
Hash
f7f70265f5cf47386622e433317412cb
e1b28284e51c848685c7ea6d19ff551284c58e8a
766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b

HTTP Headers

GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59928
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dce/26A2)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/images/nav-red-chevron.svg

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/images/nav-red-chevron.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/images/nav-red-chevron.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(4).png

154.0.167.183

200 OK

22 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(4).png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced
Size
22 kB (22133 bytes)
Hash
22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/go-now(4).png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "5675-61283e08293d1"
Accept-Ranges: bytes
Content-Length: 22133
Vary: User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

GET tools.usps.com/global-elements/header/images/utility-header/mailman.svg

192.229.221.165

200 OK

904 B

URL GET HTTP/2
tools.usps.com/global-elements/header/images/utility-header/mailman.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
904 B (904 bytes)
Hash
1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-encoding: gzip
age: 53348
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dce/268C)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 904
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/utility_customer_service.png

192.229.221.165

200 OK

1.3 kB

URL GET HTTP/2
www.usps.com/assets/images/home/utility_customer_service.png
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1307 bytes)
Hash
3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca

HTTP Headers

GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 59968
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dce/2695)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2

GET www.usps.com/global-elements/header/images/utility-header/search.svg

192.229.221.165

200 OK

795 B

URL GET HTTP/2
www.usps.com/global-elements/header/images/utility-header/search.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
795 B (795 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

HTTP Headers

GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59303
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dce/2688)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/utility_languages.png

192.229.221.165

200 OK

1.5 kB

URL GET HTTP/2
www.usps.com/assets/images/home/utility_languages.png
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
Size
1.5 kB (1456 bytes)
Hash
410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826

HTTP Headers

GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 59295
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dce/26AC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/featured_clicknship.svg

192.229.221.165

200 OK

493 B

URL GET HTTP/2
www.usps.com/assets/images/home/featured_clicknship.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
493 B (493 bytes)
Hash
375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2

HTTP Headers

GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59339
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dce/26C5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/location.svg

192.229.221.165

200 OK

1.2 kB

URL GET HTTP/2
www.usps.com/assets/images/home/location.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1209 bytes)
Hash
9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539

HTTP Headers

GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59982
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
nncoection: close
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/po_box.svg

192.229.221.165

200 OK

848 B

URL GET HTTP/2
www.usps.com/assets/images/home/po_box.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
848 B (848 bytes)
Hash
d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0

HTTP Headers

GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59919
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dce/26C8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/calculate_price.svg

192.229.221.165

200 OK

772 B

URL GET HTTP/2
www.usps.com/assets/images/home/calculate_price.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
772 B (772 bytes)
Hash
6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

HTTP Headers

GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59317
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dce/26E1)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/find_zip.svg

192.229.221.165

200 OK

793 B

URL GET HTTP/2
www.usps.com/assets/images/home/find_zip.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
793 B (793 bytes)
Hash
e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001

HTTP Headers

GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59878
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dce/26CF)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2

GET www.usps.com/test/nav/images/gifts.svg

192.229.221.165

200 OK

590 B

URL GET HTTP/2
www.usps.com/test/nav/images/gifts.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
590 B (590 bytes)
Hash
df6fcab6c4caf86e8a1401a4fc36f885
860352cea6899553cb4e7111097b35bd007c65e7
986ebc6c0f0c4b5bdb2513352dbbf3f501a36abd1dcd0c17a9c215efd95191a7

HTTP Headers

GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59937
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dce/26E0)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/stamps.svg

192.229.221.165

200 OK

551 B

URL GET HTTP/2
www.usps.com/assets/images/home/stamps.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
551 B (551 bytes)
Hash
2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

HTTP Headers

GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59952
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/26A6)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html

GET www.usps.com/assets/images/home/tracking.svg

192.229.221.165

200 OK

844 B

URL GET HTTP/2
www.usps.com/assets/images/home/tracking.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
844 B (844 bytes)
Hash
2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593

HTTP Headers

GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59930
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dce/2689)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:15 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html

GET www.usps.com/test/nav/images/shipping-supplies.svg

192.229.221.165

200 OK

1.3 kB

URL GET HTTP/2
www.usps.com/test/nav/images/shipping-supplies.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.3 kB (1282 bytes)
Hash
5c5579a50964d4972d1954bff4ee232d
c78b384713cf7a8a5515a54f17c6e70ebdde98fc
c12815f27ecdfd09b2920c1eea21ae7abb8e107349d6bb8b39707a0cd9a3e591

HTTP Headers

GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59352
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dce/26B0)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/change_address.svg

192.229.221.165

200 OK

935 B

URL GET HTTP/2
www.usps.com/assets/images/home/change_address.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
935 B (935 bytes)
Hash
3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

HTTP Headers

GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59930
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dce/26E4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2

GET www.usps.com/assets/images/home/holdmail.svg

192.229.221.165

200 OK

768 B

URL GET HTTP/2
www.usps.com/assets/images/home/holdmail.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
768 B (768 bytes)
Hash
4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa

HTTP Headers

GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59974
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dce/26D6)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2

GET www.usps.com/test/nav/images/collectors.svg

192.229.221.165

200 OK

561 B

URL GET HTTP/2
www.usps.com/test/nav/images/collectors.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
561 B (561 bytes)
Hash
9105cfa1479096038365d18beb23cb1f
648c5b01118cf059eede56d9dae1713ab26d965c
b2728704f99e68b8edfa2b8efcb1f40e77d3abd5f6f04388c9a09232b1711043

HTTP Headers

GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59937
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dce/26C9)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2

GET www.usps.com/test/nav/images/business.svg

192.229.221.165

200 OK

689 B

URL GET HTTP/2
www.usps.com/test/nav/images/business.svg
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
689 B (689 bytes)
Hash
0d366834f312798111ebe3990766f8f4
e3ce708bf0b0b1924156674aca900898d407331c
da2e0f69eb8ea4aa9ffe45c2ad6d330eb7922e0e14f8aaca4e577be0fb8b4bea

HTTP Headers

GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59929
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dce/268F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2

GET www.usps.com/global-elements/footer/script/jquery-3.5.1.js

192.229.221.165

200 OK

31 kB

URL GET HTTP/2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30950 bytes)
Hash
9ac39dc31635a363e377eda0f6fbe03f
29fa5ad995e9ec866ece1d3d0b698fc556580eee
9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59973
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 03 Apr 2024 01:00:15 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2

GET willievisser.com/global-elements/footer/images/footer-logo.png

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/global-elements/footer/images/footer-logo.png
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/mailman.svg

154.0.167.183

200 OK

904 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/mailman.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
904 B (904 bytes)
Hash
1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/mailman.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "723-61283e082b311-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 904
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/location.svg

154.0.167.183

200 OK

1.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/location.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1209 bytes)
Hash
9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/location.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "a1a-61283e082af29-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1209
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml

GET www.usps.com/global-elements/lib/script/resize-manager.js

192.229.221.165

200 OK

468 B

URL GET HTTP/2
www.usps.com/global-elements/lib/script/resize-manager.js
IP
192.229.221.165:443
ASN
#15133 EDGECAST

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerDigiCert Inc
Subject*.usps.com
Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39
ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
90d8fb00194d91e9dd20281817c285d6
e7e37421b14a39e0d3787988a52a45d27ec3761f
479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887

HTTP Headers

GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 59946
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 03 Apr 2024 01:00:16 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dce/26B9)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/stamps.svg

154.0.167.183

200 OK

551 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/stamps.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
551 B (551 bytes)
Hash
2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/stamps.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "44f-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 551
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff

154.0.167.183

200 OK

4.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
4.2 kB (4213 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780"
Accept-Ranges: bytes
Content-Length: 4213
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calculate_price.svg

154.0.167.183

200 OK

772 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calculate_price.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
772 B (772 bytes)
Hash
6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/calculate_price.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "8fe-61283e0825168-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 772
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/find_zip.svg

154.0.167.183

200 OK

793 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/find_zip.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
793 B (793 bytes)
Hash
e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/find_zip.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "5bf-61283e0827490-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 793
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/holdmail.svg

154.0.167.183

200 OK

768 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/holdmail.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
768 B (768 bytes)
Hash
4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/holdmail.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "5a8-61283e08293d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/change_address.svg

154.0.167.183

200 OK

935 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/change_address.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
935 B (935 bytes)
Hash
3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/change_address.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "74d-61283e0825168-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 935
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/po_box.svg

154.0.167.183

200 OK

848 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/po_box.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
848 B (848 bytes)
Hash
d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/po_box.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "667-61283e082c2b1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 848
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule_pickup.svg

154.0.167.183

200 OK

923 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule_pickup.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
923 B (923 bytes)
Hash
d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/schedule_pickup.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "6ef-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 923
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/free_boxes.svg

154.0.167.183

200 OK

643 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/free_boxes.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
643 B (643 bytes)
Hash
dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/free_boxes.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "42a-61283e0828c00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 643
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/featured_clicknship.svg

154.0.167.183

200 OK

493 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/featured_clicknship.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
493 B (493 bytes)
Hash
375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/featured_clicknship.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "436-61283e08268d8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 493
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/global-elements/header/images/utility-header/mailman.svg

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/global-elements/header/images/utility-header/mailman.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=86
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/global-elements/header/images/package-intercept.svg

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/global-elements/header/images/package-intercept.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/global-elements/header/images/schedule-redelivery.svg

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/global-elements/header/images/schedule-redelivery.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/hamburger.svg

154.0.167.183

200 OK

293 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/hamburger.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
293 B (293 bytes)
Hash
37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/hamburger.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "222-61283e08293d1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 293
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo_mobile.svg

154.0.167.183

200 OK

908 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo_mobile.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
908 B (908 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/logo_mobile.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "80c-61283e082af29-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 908
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search.svg

154.0.167.183

200 OK

795 B

URL GET HTTP/1.1
willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search.svg
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
SVG Scalable Vector Graphics image
Size
795 B (795 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/files/search.svg HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:16 GMT
Server: Apache
Last-Modified: Thu, 29 Feb 2024 11:51:16 GMT
ETag: "5b9-61283e082ca81-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 795
Keep-Alive: timeout=5, max=85
Connection: Keep-Alive
Content-Type: image/svg+xml

GET willievisser.com/favicon.ico

154.0.167.183

200 OK

2.2 kB

URL GET HTTP/1.1
willievisser.com/favicon.ico
IP
154.0.167.183:443
ASN
#37611 Afrihost

Requested by
https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Certificate
IssuerLet's Encrypt
Subjectwww.willievisser.com
Fingerprint3B:AE:77:1A:41:76:5D:4C:81:8C:9B:DA:BB:00:7E:DB:B4:49:F9:DF
ValidityThu, 21 Mar 2024 22:12:14 GMT - Wed, 19 Jun 2024 22:12:13 GMT

File type
HTML document, ASCII text, with very long lines (2044)
Size
2.2 kB (2153 bytes)
Hash
8296d791081aec46d85fa59785853df6
b1a830d171b51801c44dca0627482e8256dcd4c3
815a134d28c07ec46b29f6d1c11d1815d6d2a4a4b362d39868941b2d1ecfc8a2

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - US Postal Service

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: willievisser.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://willievisser.com/wp-content/plugins/three-column-screen-layout/fllow-tracking-number/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 03 Apr 2024 01:00:17 GMT
Server: Apache
Last-Modified: Tue, 16 May 2023 10:58:54 GMT
ETag: "1075-5fbcd7509d780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2153
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by