r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13497
Expires: Sat, 03 Dec 2022 20:34:31 GMT
Date: Sat, 03 Dec 2022 16:49:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6453
Cache-Control: max-age=156551
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 16:49:34 GMT
Etag: "638b2570-1d7"
Expires: Mon, 05 Dec 2022 12:18:45 GMT
Last-Modified: Sat, 03 Dec 2022 10:31:12 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13556
Expires: Sat, 03 Dec 2022 20:35:30 GMT
Date: Sat, 03 Dec 2022 16:49:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 16:20:00 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1774
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HwAlQhEfkTc6iAIvx7W0YHxzzqGwluEuup5rBznd/ySfYKM5Akt7j5BgLr6BXELuXX8W8GQms64=
x-amz-request-id: PW6JJ96VCWHWYX6F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 16:47:11 GMT
age: 143
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 16:49:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/
157.7.144.5301 Moved Permanently 203 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cc1def3af7d5b5dd883d327d6c526e99
077a201da943c952c0271bd1630579aa1eb9ddcd
ccd05bb1564f1b121db55641d713aa74e8a700c9bdfcdabec315b67499fdb0f7
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/ HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 16:49:34 GMT
Server: Apache
Location: https://www.ddco.jp/d/usps/verification/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 16:08:58 GMT
cache-control: public,max-age=3600
age: 2436
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 446
Cache-Control: max-age=145482
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 16:49:35 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 09:14:17 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22a7f0dc7107fd2e80f81ca3f1310140
3dadaec20e258151d5f0b28d7560520b5718ef86
8f65e765dae8ab4c26a56dcb61d64a8be1b3d857d202762521465bd1ef687463
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F65E765DAE8AB4C26A56DCB61D64A8BE1B3D857D202762521465BD1EF687463"
Last-Modified: Thu, 01 Dec 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21556
Expires: Sat, 03 Dec 2022 22:48:51 GMT
Date: Sat, 03 Dec 2022 16:49:35 GMT
Connection: keep-alive
push.services.mozilla.com/
34.210.150.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.150.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: V0FDk+c7JXvawlLajOqjFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D2w+1aW6kkM4nqe0ICMOuRE6+NI=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7417
Expires: Sat, 03 Dec 2022 18:53:13 GMT
Date: Sat, 03 Dec 2022 16:49:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 06:00:50 GMT
age: 38926
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:54 GMT
age: 69102
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tp50A9LYeT1RvSPImBUoQNKtarPryKb8Zacm_nxqDh-gegwdQov7Nw==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:50:52 GMT
age: 46724
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GBhAilKMKo9RvIzqzF9V4jTZbvpa2rPZeoy6Jy8fMc1-JO078OAYzQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:53:40 GMT
age: 39356
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:39:04 GMT
age: 65432
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59dbce10-dcc6-44f9-abed-14ec90e03a69.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59dbce10-dcc6-44f9-abed-14ec90e03a69.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2f169fc0368166c888a59f52f0cbc9f
bd0a43d0fa22b0d240fcaf29d858e9ec43d4d8e6
f1aebc350de1f53ed64f1ef82a7d7bfc973f740d910eb470ea3ad22eb1a731e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59dbce10-dcc6-44f9-abed-14ec90e03a69.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8227
x-amzn-requestid: 1dd6511a-3030-448a-b119-1b966eb97449
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGf1EIQoAMFsmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891dfe-44da8d002b3f405b7c1c971a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: t_7ogGJrmCJoq5Q8hiC5fTizwC14b9gGlf-egKBAc9EMDvrvEt39SQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:06:41 GMT
age: 67375
etag: "bd0a43d0fa22b0d240fcaf29d858e9ec43d4d8e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/
157.7.144.5200 OK 11 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1057)
Hash b709b27d61870bd9cd6a21da13579c2a
5947fe65ac9792891c7f239baa0f0d8701edf317
069be79784f6004d6eb4dc6f2eabe2ad12802fefe9626bb13d0b37b707b51c7e
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/ HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:35 GMT
Server: Apache
X-Powered-By: PHP/7.2.34
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10582
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.ddco.jp/d/usps/verification/files/jquery.min.js
157.7.144.5200 OK 30 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/jquery.min.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (65453)
Hash 09a8f8d9dc8c708df9c2cbde1aa13108
4a6cbc7fed8e190bf8d5f79c1517314acf1af1e4
601dc1e838faf09f8a4d0951a6962e79148672c7010108c05c5cf5501a9be88f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/jquery.min.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 29612
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/metrics-all.js
157.7.144.5200 OK 3.2 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/metrics-all.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with CRLF line terminators
Hash 5bd74908cfaf25023eab69ff6325ebad
dd70974f298312d49d98a4e8066152d84cc92826
c5836d588801c67621ffecad7b9c99a1939be3c6ea9c442d74d12004b85d3438
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/metrics-all.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3215
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/footer.css
157.7.144.5200 OK 974 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/footer.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (2933), with no line terminators
Hash b611fdf100b35a33f41b3ce5481140ea
6a1dbe40f2e5794b049429f90704e654202e9c6a
7d9057f5e50850fcf2328dc405d8ee26149524f4afcbaf419f83e0b3e7aa52a9
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/footer.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 974
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/calendar.css
157.7.144.5200 OK 2.6 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/calendar.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (14589), with no line terminators
Hash 08db95a016165b8d14a144668b7e064a
92d6357bc5733087226e84420a95a6d40f9662e1
25afbe8a97386e1a035d5f7110657ba82542d0674d774639a9a43876512680a8
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/calendar.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2579
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/datepicker3.css
157.7.144.5200 OK 2.4 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/datepicker3.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (20872)
Hash 69bd638091a5922cfa5aa06da089175c
57577cbe76db20ad3f29fa5baa749dfca948aef3
a48751d686c78929ac1303b169da95d32ef0e829680208be0c46382776830fb2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/datepicker3.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2424
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/tracking-cross-sell.css
157.7.144.5200 OK 1.0 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/tracking-cross-sell.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (3075), with no line terminators
Hash 797100b379ef4b459b884be14bbb6e4f
0683d9a3ead422cbf0e163d0ae0d61e51d6f1236
bbf22e1882686844926ae028f381e94def083d8b511f80edc3cfb5d8ccfa781f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/tracking-cross-sell.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1048
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/jquery-ui.min.css
157.7.144.5200 OK 7.9 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/jquery-ui.min.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (29153), with CRLF line terminators
Hash 770266d7d40da4ad1a7b171b6d167346
f8893a9442af6605400881396fe06f56c93bd23f
b74ed12758ecf80f0ee74d841fbe5beabec873ab3b66e98bfd893983fb0eee96
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/jquery-ui.min.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7869
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/schedule-redelivery.css
157.7.144.5200 OK 4.7 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/schedule-redelivery.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (23038), with no line terminators
Hash 7083e43ac731afa1f12fc1ccd3c73041
338ebbbf9236f1f96ee0bf5e6d7a09a2b6ba7c37
0904b54d0a25d43cc0e642c3e8a265ec388db2684af6f28c28cfcc6fa7f037c1
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/schedule-redelivery.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4697
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/main.css
157.7.144.5200 OK 13 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/main.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (49380), with CRLF line terminators
Hash 0629df515c3337dd9f74dc8f0e4f0e79
8cd4de7ede879ded247fdae4e460cd8081512c78
f2f809ebd86c9a6585d94e104b4fc9abdeb58e855c5a0a3b1c39109c9c1821cb
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/main.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13316
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6d796d17eb57506982afd8524ad99d58
2485569403d4e4a19b43d929dd9245bb6c117f1a
1dec60680fb0c83af000fe562b4e356aa0d9fe25330d9e6d96eac4c013ca0985
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2685
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 16:49:37 GMT
Last-Modified: Sat, 03 Dec 2022 16:04:52 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 279
www.ddco.jp/d/usps/verification/files/require-jquery.js
157.7.144.5200 OK 92 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/require-jquery.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with no line terminators
Hash 6ce214c362fc1910a6ccda7dde4f1628
a3c400aa0daaa3a2f5b285feccb369e35b486a89
20c4e055502233d4088725a990c6d26894639753e810ae967bfa21915ea61be7
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/require-jquery.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 92
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 16:49:37 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 37030
accept-ranges: bytes
set-cookie: __cf_bm=L8qjZE56PeDKiYAMR9._2RYDeqfoQF4DJ.cOwEzhusw-1670086177-0-AYoCZrx1AqsTd8SqY8rmR2cHQTGNKte9CwYGa2tMhbJ943YqxChTVCEQrvSD8raGAaL3JUIUrXqFAGngrM57YqY=; path=/; expires=Sat, 03-Dec-22 17:19:37 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 773dcbf09df40b61-OSL
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/files/bootstrap.min.css
157.7.144.5200 OK 20 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/bootstrap.min.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (65371)
Hash ff866d37a12705c2ef496e8b9f4c517c
20ca7fa9f3fc1922460cb27aefdde2f5310df05d
bc1f26dc4f463aca5a197e7dbbca884c4217278092f93a92e8472bbf627d8d58
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/bootstrap.min.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19694
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/helpers.js
157.7.144.5200 OK 358 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/helpers.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (695), with no line terminators
Hash 2fc1a84aa717ba9ca2584c632d0bfb42
e3f89c1d5741bd85f5b20923a71a53115d0aa6b4
faac3ddb5c8775e66d1d0d3fa7f81695abe17c196589f02d31cd1bc9e91fcac3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/helpers.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 358
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/search-fe.js
157.7.144.5200 OK 912 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/search-fe.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (2235), with no line terminators
Hash fc888dcbfa3def650e24177230959bf7
924d1550865e34c9bf7948b60f13bd2901257f96
988300b681f9befd23f6cad2858c0eaf800ed4d085bdf37bc272b1f95afb3ce3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/search-fe.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 912
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/qt.css
157.7.144.5200 OK 9.9 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/qt.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 40636c462b3bc2beeb47c86f213195ac
395b688df1c66e016de38a90c6c6788252a43e42
f2f5c174a5d60bfe58fb362bb86f8691fb6ffb977a8248bd24aef980165cccb9
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/qt.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9892
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/optimize.js
157.7.144.5200 OK 35 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/optimize.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (1972)
Hash a69017035beee4ee23e25f8ec07704c7
7e8870c31318d2275a419130ca7530087b363541
dd872c6088a3ac16bb424a7863eb171c7940b96bfa8a31474fa4087e04371cb9
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/optimize.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:36 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:36 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34969
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/jquery.min.js(1).download
157.7.144.5404 Not Found 275 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/jquery.min.js(1).download
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 690504678219c6f9c3ade26087d53ff1
c5add0ac3aef0257686fc0c43009810ab1d0f896
6c82dae48afb2a03850443aa029c13b24e95cdd44807b04be3366c137d02ba86
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/files/jquery.min.js(1).download HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 275
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/resize-manager.js
157.7.144.5200 OK 468 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/resize-manager.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (1040), with no line terminators
Hash c3b3701e4d93d1bd2e169501de0388d8
67ac4802c71a748fc8cd2d4e847dd423029fc61a
7fce227383dd0cbd23ae0fe59344a713851b2d6d3f590b59ea192926448ec589
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/resize-manager.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 468
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/megamenu-v2.css
157.7.144.5200 OK 6.9 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/megamenu-v2.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (44725), with no line terminators
Hash cdb0b5a380d76f89923182936ea8add4
3953994e68f4d835d930763240beeb62f6f55ab3
0a0198fb984febee0fa81c24e6de5b11439e27dc87428c647213f7d505da1174
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/megamenu-v2.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6934
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.ddco.jp/d/usps/verification/files/modernizr.js
157.7.144.5200 OK 4.6 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/modernizr.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document, ASCII text, with very long lines (11084)
Hash a0b0bf9e066eb801303d09a4082dea72
ccc296b79d0e8254a382b389755b3c9ed1ad52e9
04d25a1e92428333cace4e7a3037522058950accdc0128e2689fc918e45cf8ff
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/modernizr.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4629
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/megamenu.js
157.7.144.5200 OK 3.0 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/megamenu.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (3410), with CRLF line terminators
Hash 3e9f46871edb7da82c271e157123c697
4f1b9761c1319bc5ae4fdf9edf4de71dabbc9530
05824529af096f21d4870b4dc8e3c3616448ad99b3f02fcd46773b489bfbc520
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/megamenu.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2994
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/OneLinkUsps.js
157.7.144.5200 OK 1.1 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/OneLinkUsps.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with CRLF line terminators
Hash eb0bb187b7bffe4cb376b1e1b16fc7f5
819a3650aaf6498d89dbab4803d8857f34fd888a
2f0451d1ef71661fc4088dde8d5598024e9e8e969b95c6c7d018566513d7c928
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/OneLinkUsps.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1067
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/jquery-3.5.1.js
157.7.144.5200 OK 31 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/jquery-3.5.1.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b975568f7eb9ecf41804cb1bbc96dfcc
4be3d286559ff9a84da23644dd863c15dc7a6a1d
4a65ef10076dbfe50ddf6396716410e744ed681c7b4a8c4f5fed42feca72f06f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/jquery-3.5.1.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30913
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.usps.com/assets/images/home/calculate_price.svg
192.229.221.165200 OK 772 B URL HTTP/2 www.usps.com/assets/images/home/calculate_price.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56387
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/search.svg
192.229.221.165200 OK 795 B URL HTTP/2 www.usps.com/assets/images/home/search.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ccfe748c6040d78e356b03d1a731585e
3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe
GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 55758
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/tracking.svg
192.229.221.165200 OK 844 B URL HTTP/2 www.usps.com/assets/images/home/tracking.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181
GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 72634
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_customer_service.png
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/assets/images/home/utility_customer_service.png
IP 192.229.221.165:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca
GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 55860
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/location.svg
192.229.221.165200 OK 1.2 kB URL HTTP/2 www.usps.com/assets/images/home/location.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f
GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 55945
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/schedule_pickup.svg
192.229.221.165200 OK 923 B URL HTTP/2 www.usps.com/assets/images/home/schedule_pickup.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56322
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/stamps.svg
192.229.221.165200 OK 551 B URL HTTP/2 www.usps.com/assets/images/home/stamps.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8
GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 30151
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/featured_clicknship.svg
192.229.221.165200 OK 493 B URL HTTP/2 www.usps.com/assets/images/home/featured_clicknship.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56469
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/find_zip.svg
192.229.221.165200 OK 793 B URL HTTP/2 www.usps.com/assets/images/home/find_zip.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 55757
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/change_address.svg
192.229.221.165200 OK 935 B URL HTTP/2 www.usps.com/assets/images/home/change_address.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56417
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/po_box.svg
192.229.221.165200 OK 848 B URL HTTP/2 www.usps.com/assets/images/home/po_box.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56366
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
tools.usps.com/global-elements/header/images/utility-header/mailman.svg
192.229.221.165200 OK 904 B URL HTTP/2 tools.usps.com/global-elements/header/images/utility-header/mailman.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4bb1afb6143cb1307585f007399e0e4
7d28cd35cbdb8427d4a12274c3f455e57f4742e0
06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
age: 73518
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 904
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/cards-and-envelopes.svg
192.229.221.165200 OK 1.1 kB URL HTTP/2 www.usps.com/test/nav/images/cards-and-envelopes.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f
GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 18229
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/files/ge-login.js
157.7.144.5200 OK 2.6 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/ge-login.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with CRLF line terminators
Hash 3efd893ccad05634ab2499059f5d446d
bf36caa117998cceece69a13813d7ce9a01fc49b
b61eaac6cf7662b171c27ac6cb59554e32f8c2d66a6988e192d67ed54228e20f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/ge-login.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2617
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/jquery-3.2.1.js
157.7.144.5200 OK 30 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/jquery-3.2.1.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (32058)
Hash 3430607b4301113ad9394c9260eef3f0
8c4db68b161b17e31be300e968a30ab0116b3193
31e4d11375322cd6f94dba7338570426f2412d6c5fa670427966d45c3648098c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/jquery-3.2.1.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30138
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/require.js
157.7.144.5200 OK 6.5 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/require.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (17192)
Hash b7402932e76206919f77fe7184228ebb
2e4fadd893e441ecf4086ce228c006c7bd870df7
dd524063d1894dc6509adda5a55a8aa6243754f2f93a600f6126ad7c8e54cda3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/require.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:37 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:37 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6533
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/header-init-search.js
157.7.144.5200 OK 333 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/header-init-search.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with CRLF line terminators
Hash 9673ae677904a3355314af8be4df2483
e6458d61b4d532f9d6b3574f3ad525820fc14790
ea58539a8d67fbe400e5c6279a761239e34b0ebef65764bfd6cf14989b8a6140
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/header-init-search.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 333
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/megamenu-additions.js
157.7.144.5200 OK 530 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/megamenu-additions.js
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with CRLF line terminators
Hash cc9e399d7dba7d353f80760d5e2d020f
68520e86e59a63ed4a5582db884b4c13f93c30e4
75ac232e18210a0cf17e7ed41c0f118a7ba90924c659ec67560adba649bb4f1b
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/megamenu-additions.js HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=216000
Expires: Tue, 06 Dec 2022 04:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 530
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
www.ddco.jp/d/usps/verification/files/main-sb.css
157.7.144.5200 OK 2.8 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/main-sb.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (8795)
Hash 381b1bb27a66e54f197e3b8e6ac72f7f
1b33ecbac8638153dd7b5455c401c564bade24cd
58e684fa6b35b4a71263e158952ebcc3637952da1bcf2f7109da9045e9532578
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/main-sb.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2801
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F7BB)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F7B7)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/files/footer-sb.css
157.7.144.5200 OK 948 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/footer-sb.css
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type ASCII text, with very long lines (3179), with CRLF line terminators
Hash f3acd9a18becfb87676e409420d5a927
93725131bbdc90c3f69c03b885e4cad0ff0f6700
cef7622380ea31cdcbfbb1dd95a85919ccdfef03945534aa620d9c0a8f5b1b8b
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
GET /d/usps/verification/files/footer-sb.css HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 948
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/css
www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F7A8)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_languages.png
192.229.221.165200 OK 1.5 kB URL HTTP/2 www.usps.com/assets/images/home/utility_languages.png
IP 192.229.221.165:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 56192
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ddco.jp
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Sat, 03 Dec 2022 16:49:38 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/holdmail.svg
192.229.221.165200 OK 768 B URL HTTP/2 www.usps.com/assets/images/home/holdmail.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56419
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/gifts.svg
192.229.221.165200 OK 590 B URL HTTP/2 www.usps.com/test/nav/images/gifts.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4
GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56026
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
192.229.221.165200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP 192.229.221.165:0
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 42165
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16362
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 83515
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/collectors.svg
192.229.221.165200 OK 561 B URL HTTP/2 www.usps.com/test/nav/images/collectors.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e
GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56336
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/images/utility-header/search.svg
192.229.221.165200 OK 795 B URL HTTP/2 www.usps.com/global-elements/header/images/utility-header/search.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9
GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 55746
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/shipping-supplies.svg
192.229.221.165200 OK 1.3 kB URL HTTP/2 www.usps.com/test/nav/images/shipping-supplies.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99
GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 55949
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/business.svg
192.229.221.165200 OK 689 B URL HTTP/2 www.usps.com/test/nav/images/business.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb
GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 56363
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 44358
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/files/go-now(2).png
157.7.144.5200 OK 27 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/go-now(2).png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 48924afcea94dea4fab3688d2da474ce
b0b905454f5ff202785502fa5bb4983df71cfee8
94bf8790c6520de96128681ddfc22106a70161e148192cafbbd3a1da13a1b99c
GET /d/usps/verification/files/go-now(2).png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 26726
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.ddco.jp/d/usps/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
157.7.144.5404 Not Found 385 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2a4f5d3d78c020e782611c75cfa49212
fc9571b24f45c4e2105e4fd7716c140b1fb7599d
2dffbc440a531375789c4017566e70b070f72b360b95543b7fa8addafb8b16a7
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 385
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
157.7.144.5404 Not Found 385 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bd1bcc86e85d5038cdcfc64073270c51
b74e9986afecce76d2fe901d8e0025d4dc461a0c
ea178536cbe26e68090df79c9883727aaa8d6fdc24585c36622928c8ff273fc0
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 385
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/images/logo-mini.png
157.7.144.5404 Not Found 265 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/images/logo-mini.png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash df1752b63b649a39e5cf946d18d834da
4acc0f09907552c23fd0a7a7db04aca5ae3fa419
b32ce19c73334e7fcf7ce6cd2bf24b7e92498193ef3492f5460c0553ca5cf2ec
GET /d/usps/verification/images/logo-mini.png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/footer.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 265
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
157.7.144.5404 Not Found 385 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d62cf490e94f2356e49bd7d851b061ba
ad2900dab0983adb349192496a83afe5cf25e524
4ab9de3d971f2594c199a2ed9665bcac442fbe86435577ccb24ae2c32268f9ca
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 385
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/images/nav-red-chevron.svg
157.7.144.5404 Not Found 270 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/images/nav-red-chevron.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 848a2167f4ffc201c4991dff79430424
0ab3f6af41705c125286ba564af544d7bd6776fe
4500ce8ab5046a81da463057d799216f024f63468ed1be513e1b20699143a5ef
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/images/nav-red-chevron.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 270
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/global-elements/footer/images/footer-logo.png
157.7.144.5404 Not Found 264 B URL HTTP/1.1 www.ddco.jp/global-elements/footer/images/footer-logo.png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0aebbc5c413ba84b3e2808b4455de235
63ce155c1d0b5f7fd74fdd79ef1ccf6f7415fb07
434bf84985c5dba93c9f8114f698f4a62461f7754e89150c0938778b941bf4c0
GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 264
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 69963
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Sat, 03 Dec 2022 16:49:38 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
www.ddco.jp/d/usps/verification/files/go-now(4).png
157.7.144.5200 OK 22 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/go-now(4).png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 51140c8e15e657862317c289884638b7
2d7d9b58b4674e2a83fa51a4143b7af52fabdafd
a6155bea38e759f9f62542ce8c353ed4487372cc906ced4fd67a5bfa47db4a78
GET /d/usps/verification/files/go-now(4).png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21790
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.ddco.jp/d/usps/verification/files/logo-sb.svg
157.7.144.5200 OK 1.6 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/logo-sb.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c8cd694091256e9e622db809e3604157
0876363e046c8fd1cc641a74477847bca1e3f325
4c1f2d664fb8e66307932ba589cd6a50eaed3b33a300bd1aa51ec9014ebe5f5f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/logo-sb.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1610
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/go-now(1).png
157.7.144.5200 OK 7.7 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/go-now(1).png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d23ad57e5eae4abceca40e13b43186e
97d12b521e962170319cf049f505d8a9f3265221
4d5af821db90ce527128fee67caa513327805a97c62630b00807388cb20921f0
GET /d/usps/verification/files/go-now(1).png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7748
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.ddco.jp/d/usps/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
157.7.144.5404 Not Found 384 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c1aca12cff1958111806f789e8f0836e
24b34ca9c43871a009b55b4e3249f669370fb52c
ad733314351f30088e70229c00f030624f2a4f2fa442310ce5d49fece806a93f
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 384
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/go-now.png
157.7.144.5200 OK 19 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/go-now.png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash 567c3dc586263dd897841ded6c5d1541
8c36cd496112b5ea743582aecd323dc22495ccf2
538c308ce651147b89df43f0be6fa4b67f5ce69f63a62d2bd749dc23dc23040d
GET /d/usps/verification/files/go-now.png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19316
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.ddco.jp/d/usps/verification/files/go-now(3).png
157.7.144.5200 OK 20 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/go-now(3).png
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash a7d21055228bd3fedfb1bad90df6225e
e8af9aa1fa2ea563aa08d1049c783358f83cf920
e6432d0bd918daaf68e092978215a67fb7ec435228b210937cb3a4c59d648fd1
GET /d/usps/verification/files/go-now(3).png HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Mon, 02 Jan 2023 16:49:38 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19700
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.ddco.jp/d/usps/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
157.7.144.5404 Not Found 384 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c5a0b6191b910cc8f391c8a1b3d894aa
0562d5546bc0d695ba6558aa26a6440bc5b24000
d6d7c959fa44fcc73af14a9639e2d41c42307267e2f00179028898ad43399f7d
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 384
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
157.7.144.5404 Not Found 384 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 39901c2838473575ce2e9c45a8136058
abe1d548adbad61d6a89366e32eba2f957b3ef1d
d7a6f0799e46152de2f0db669edd15749d87604100fe5cbf0fcd23f097f7fd86
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Length: 384
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/tracking.svg
157.7.144.5200 OK 844 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/tracking.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash df358064d9a3e5fdf09fb9cc04559199
fa3e1c6d16a1aa2c2a12fc7eaf39f8e84d08312c
0e984ade03c77408d3ec03bc8b027a67745a3534f37e8c55f72fd48e72289ce5
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/tracking.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 844
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/location.svg
157.7.144.5200 OK 1.2 kB URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/location.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 34a7de74809276c444c11adc2ee2548a
b5bbe7d68582af73cbeed0d626204c5e77498599
e1bcd09ac1d25e2966c793dad31851895239753f917ca753a6f04d508c41b760
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/location.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1209
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/mailman.svg
157.7.144.5200 OK 904 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/mailman.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 80c18361aa7dd736d5442b5086e5bf9a
30e94a82cff4154161f1d45c395b43c44da2d74c
5429d099110a77d4f8eace62000c9af90636aa326e21c98b7ec1efc33a4bc4dc
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/mailman.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 904
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
157.7.144.5404 Not Found 288 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fb4416585bc418a0ece37311a4a27fd1
fcf52709a3a85ae259ecbd0763207011da8069ca
d2f7593dd72cb8718a9e77c2aada821455bff7a71bdc144b73ff9d2b567fb512
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 288
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/schedule_pickup.svg
157.7.144.5200 OK 923 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/schedule_pickup.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6e782ed8ead72b9c2b30eb8ea98187ec
6a3fa08e1d9337920d087bbc7a959b9d4d326898
933ea7499f489e16c2a30f006945636869ddc2b47bb330fb2fec0f57c44939c0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/schedule_pickup.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 923
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/stamps.svg
157.7.144.5200 OK 551 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/stamps.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 473959a921d63844bfca913bdd647b86
0c3dcff1f1590f7e849a243024bbf750334f27c7
1e96b78b600d7a126ce207ba09b15fc7d139d27f3da90cdaf2cbf9c3a7c13f67
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/stamps.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 551
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
157.7.144.5404 Not Found 290 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bece938fb8e2429d537f299aed2b162b
cda8bec93da39ebc8c75026d698932ab2f1bb3d4
0aed0f7572bda38ca1deb4f47c0065cb14e8b65111ad30e495ce040b723668f2
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 290
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
157.7.144.5404 Not Found 291 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba747af7098431be821e2519ee742e3d
35a8cd4b1a9681c9225033c0997ee0a73778f761
28460bb0564f4c5887134ca7b9fff51ff8656a84c9d911d98c3ba3098912f5a1
Analyzer Verdict Alert fortinet Phishing
GET /d/usps/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:38 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 291
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/calculate_price.svg
157.7.144.5200 OK 772 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/calculate_price.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7da320f36dbec5db0155f8acf3c3e01f
0992c0aea45598de82500c3355a8592de1dbf1b2
f24aada878541d572bbe98fd32775e988625e502d12a0f02de7912347812ed8c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/calculate_price.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 772
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/find_zip.svg
157.7.144.5200 OK 793 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/find_zip.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7138d9e048926785f5a7609e6af8b5ff
891564b452b04a8762af39bab5db29319b793b71
f115211fc7a8c69e069820271283f2cf84c3e071e050bbc44778d7e15b8c4e4f
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/find_zip.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 793
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/holdmail.svg
157.7.144.5200 OK 768 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/holdmail.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 105347570302f32dbda804910de6cbd6
28bb230d50c51c108fdd3f2276d0e8fa2ca1bd82
1906c7cbea0ffb86914aaff0f63b344ce036c5fa0bdd25d7e898b24f07ee2de8
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/holdmail.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/po_box.svg
157.7.144.5200 OK 848 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/po_box.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 1d88a7c92e6c58ab328fb0f274d71799
dfc51974e2f17968b8e7e86e2ac8496735fbfce1
b10c2e5eb3a7281e8bd0f21c6bcdbf8b6a593e3ec063242e98ac465d53d353ac
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/po_box.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 848
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/change_address.svg
157.7.144.5200 OK 935 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/change_address.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8b5a8192d6d9bab07ba9363d48031e8d
9bfb0814d54c9e35c66f3b6231ab6662a2596b20
b5f023b16827792c716e84ed62f9dbe1b87bf68bf3052ab20ab82ccd4ac4b2ac
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/change_address.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 935
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/free_boxes.svg
157.7.144.5200 OK 643 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/free_boxes.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 40b492a5e65c0654e8b162cad3795475
1d89fce0b15dfb9e85b171a98dfd7701336ec363
f95845daaef3450ec7b6d0d14a6f9125cef5552e4fae068338512924a27a76c5
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/free_boxes.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 643
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/global-elements/header/images/package-intercept.svg
157.7.144.5404 Not Found 272 B URL HTTP/1.1 www.ddco.jp/global-elements/header/images/package-intercept.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e311a9fd5b0d2c4e9e244ab1f8827d26
af6cff2a184991ae79188d68a20540222b5d8520
868070d4f6befd8fc3a3046a69842a386f2a8b4c9ecaa22d9df70572073acc0b
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 272
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/global-elements/header/images/utility-header/mailman.svg
157.7.144.5404 Not Found 272 B URL HTTP/1.1 www.ddco.jp/global-elements/header/images/utility-header/mailman.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb6fc4624a8346e71ba0091c2fb5ca1d
2c3ae0cfe193d204551d7755076e8b1b92b137af
1631db488c6774e03ea098962bc8f332ad352f369ca70237b4609d74d1d66e23
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 272
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/featured_clicknship.svg
157.7.144.5200 OK 493 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/featured_clicknship.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash b93c4c39b88fca2acefa761a420a96e3
bf6507826fae68fd0c9bab378ebad29d32f00465
7f343f565aa96c3ae50cfd1180d0583b043e6d233326da227a0695afee85c6df
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/featured_clicknship.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 493
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/global-elements/header/images/schedule-redelivery.svg
157.7.144.5404 Not Found 272 B URL HTTP/1.1 www.ddco.jp/global-elements/header/images/schedule-redelivery.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 07d781c4ea1ba63652099ff4bcdfc6c4
497fda757188542ef7835ee8e9233147503843e6
705e4c816ab60db43b391c836f94c208ce75f9e43c1d1095a68eff31b2abd5bf
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 272
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/global-elements/header/images/icon-personalize-stamped-envelopes.svg
157.7.144.5404 Not Found 282 B URL HTTP/1.1 www.ddco.jp/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e0be216b796c0f88fe6e49d13d998677
e9bfd6769086ce98d652f11982101e135abfeee7
61b10eb0aaa5e8a481151d3df6cb153311bb530a211cc2104f0f2d8fc409d6bb
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 282
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.ddco.jp/d/usps/verification/files/hamburger.svg
157.7.144.5200 OK 293 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/hamburger.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 9b7c44ed4f110f521a0723c72a8eb564
93880a1ac4f3db644c1cde233e1655515f0fe155
063ed60e1fad716b6c2d38c717f346301bfaee106a6e72a943527398322c9892
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/hamburger.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 293
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/logo_mobile.svg
157.7.144.5200 OK 908 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/logo_mobile.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bd23bec0b762655a1f6245c929b8d424
640178557a946360d7a160acc1c4ea52ff313258
919beb8f1a11326db3f1464fd7b2ae92ec2061a3a7091ceeae8d8a1f5c8092ae
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/logo_mobile.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 908
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/d/usps/verification/files/search.svg
157.7.144.5200 OK 795 B URL HTTP/1.1 www.ddco.jp/d/usps/verification/files/search.svg
IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bc6bba680b71bc912c455bd5621c5720
d48c35dec62877452b6345daf910ceea514acc2f
1204068f265bc491b31eb55cd585ab507116877de4d4d5abc0e613824cbc00b0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
urlquery Phishing - US Postal Service
fortinet Phishing
GET /d/usps/verification/files/search.svg HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Sat, 03 Dec 2022 12:16:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 795
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/svg+xml
www.ddco.jp/favicon.ico
157.7.144.5200 OK 1.7 kB IP 157.7.144.5:0
ASN #7506 GMO Internet,Inc
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 87785ddb681b98eeff292db1e9cbeb51
8424464779f34d6e2e51e2d0db06d299e52daab2
a2587d3d95d2d726b312fe086c1f33cbcd460c52b2a99ca018de6daeca4a486e
GET /favicon.ico HTTP/1.1
Host: www.ddco.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.ddco.jp/d/usps/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 16:49:39 GMT
Server: Apache
Last-Modified: Thu, 02 Feb 2017 01:20:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1728
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/x-icon
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8_misG2sRVJlrCdLEQhPoQdkNAxTYwdSqNwAoqDzwEZuC787t9US0A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:37:47 GMT
age: 69116
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2