r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2791
Expires: Tue, 29 Nov 2022 20:14:21 GMT
Date: Tue, 29 Nov 2022 19:27:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3504
Expires: Tue, 29 Nov 2022 20:26:14 GMT
Date: Tue, 29 Nov 2022 19:27:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6398
Cache-Control: max-age=146999
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 19:27:50 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 12:17:49 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: R8oMlG2NnRs3PYzEmXKTGjjaBH0syHMKhkD9Pi+KSvHWIdUj7lUgabrvsIm6lO19fAI3U1lNsck=
x-amz-request-id: 2EX2M0E1VZT4T0XC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 18:44:55 GMT
age: 2575
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 19:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 595
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 19:27:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 19:11:13 GMT
cache-control: public,max-age=3600
age: 997
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3739
Cache-Control: max-age=139277
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 19:27:50 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:09:07 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.203.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.203.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XKrKMUpBGIpKglhkVFTbrg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SMm2laPDg41C6s7AZE5U1+83CWM=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7683
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 19:27:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7683
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 19:27:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7683
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 19:27:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7683
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 19:27:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7683
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 19:27:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 10:09:32 GMT
age: 33500
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 52682
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qh3WqWdBmMG3fzchn3OvxbEpwm2wl_CXi105CL4uJda47N9ZX3CyLA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 09:01:36 GMT
age: 37576
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:18:11 GMT
age: 58181
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 78058
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:01:55 GMT
age: 77157
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.us-hsdjks.com/us/secure/order/us/
213.136.93.164200 OK 106 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1697)
Size 106 kB (105564 bytes)
Hash 3281fd2f33724d75d545304befcb5c19
a5bcaee4cf7b938af668ea1049a04952ddef08a3
3d94172e96138fadbe31aca4aaeda859a91451a5486d574ca1009fce6637c981
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /us/secure/order/us/ HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:49 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=5, max=10
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
213.136.93.164200 OK 6.2 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
IP 213.136.93.164:0
File type ASCII text, with very long lines (6206)
Hash 6faff85c9b7030f3660129a199c3ba74
48bbd5686407bac29ca8854f0488525836048a6c
dfb987937397c819e20a99490ee084e4bd32f9d6d84597ca0771e4e9475c048e
GET /us/secure/order/us/1_files/main-sb.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 6207
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/1.css
213.136.93.164200 OK 0 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/1.css
IP 213.136.93.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/1.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=10
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/schedule-redelivery.css
213.136.93.164200 OK 26 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/schedule-redelivery.css
IP 213.136.93.164:0
File type ASCII text, with CRLF line terminators
Hash cb0bf457d0518e1eebff9c739e3232ba
c5a89468e12e677c3e4f03cd755fb0686950132d
fe9e3e7dc70162cad85a279c83be8b954b8c700daf3e1dab1f255906fd4bc2e1
GET /us/secure/order/us/1_files/schedule-redelivery.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 25461
Keep-Alive: timeout=5, max=10
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/calendar.css
213.136.93.164200 OK 18 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/calendar.css
IP 213.136.93.164:0
File type ASCII text, with CRLF line terminators
Hash be15a14c937d52187ea5e72fd9f14369
44769d06adfb8da4a005c7f0ad10d52bc06d5817
4a98d944450de16476dd8f2e22313c8abc18091484ebc710fddb310ac9c59642
GET /us/secure/order/us/1_files/calendar.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 18136
Keep-Alive: timeout=5, max=10
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
213.136.93.164200 OK 42 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
IP 213.136.93.164:0
File type ASCII text, with very long lines (42318), with no line terminators
Hash 7bc05f32bdf3c4ad18a22190f79d7010
3185f61b4d33371aacaa049ad9637439f6485b55
958c452807f3eb887e82c0f834b8a8b008660460c7a20d4b31990964631cd49c
GET /us/secure/order/us/1_files/megamenu-v3.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 42318
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/bootstrap.min.css
213.136.93.164200 OK 121 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/bootstrap.min.css
IP 213.136.93.164:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Size 121 kB (120933 bytes)
Hash 57570b4804e4876c0aff338ab84954db
4092e03ab1571ddc141a0bff86fbc31a5398029d
466988b4d79297aae99d29d37b4d34714edf0833cff2c5906a44a3836b89b97d
GET /us/secure/order/us/1_files/bootstrap.min.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 120933
Keep-Alive: timeout=5, max=10
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/footer-sb.css
213.136.93.164200 OK 2.9 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/footer-sb.css
IP 213.136.93.164:0
File type ASCII text, with very long lines (2946), with CRLF line terminators
Hash 2255bc773a450c27b55d82825c4a8d01
bd54a75746f04c076b41d40ff4330ca7bdcb4690
5cecf9ff146ba6de9e118fc3bc3958955495983a1334267e47973ca1a207ef65
GET /us/secure/order/us/1_files/footer-sb.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 2948
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/jquery-ui.min.css
213.136.93.164200 OK 29 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/jquery-ui.min.css
IP 213.136.93.164:0
File type ASCII text, with very long lines (26479), with CRLF line terminators
Hash 3871628b7b150439159e0c48f31d7234
91823a0f124d52a98b963e99bf138cf8590ada59
231becc2f229c6b9fc9da642ee5928d8fd3dd1abe11628af7b6fcdae7ebd9a71
GET /us/secure/order/us/1_files/jquery-ui.min.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 29424
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/default-styles.css
213.136.93.164200 OK 47 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/default-styles.css
IP 213.136.93.164:0
File type ASCII text, with CRLF line terminators
Hash 5aa6682846800afc219f714cc1be15c4
27108b047b6f8d14ebdf77bd642dc502aed0de78
ffbace875fdeefcfdd2ad26c6ab6ca02ab360effb60258c28fa5c08918569ee1
GET /us/secure/order/us/1_files/default-styles.css HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 46683
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: text/css
www.us-hsdjks.com/us/secure/order/us/1_files/jquery.js
213.136.93.164200 OK 272 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/jquery.js
IP 213.136.93.164:0
File type ASCII text, with CRLF line terminators
Size 272 kB (272153 bytes)
Hash 2ac898daf1837381b1264cdb792319ba
532496df4622a43699ee57b612180a21aedad065
84086bb634fc6fd223918894c6b74641811e06e84007937c5809942b7a02ddff
Analyzer Verdict Alert fortinet Phishing
GET /us/secure/order/us/1_files/jquery.js HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 272153
Keep-Alive: timeout=5, max=10
Content-Type: application/javascript
www.us-hsdjks.com/us/secure/order/us/1_files/social-twitter_2.png
213.136.93.164200 OK 1.8 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/social-twitter_2.png
IP 213.136.93.164:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/social-twitter_2.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1842
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/social-youtube_3.png
213.136.93.164200 OK 2.5 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/social-youtube_3.png
IP 213.136.93.164:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/social-youtube_3.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 2461
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/logo-sb.svg
213.136.93.164200 OK 3.6 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/logo-sb.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/logo-sb.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 3557
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/social-facebook_1.png
213.136.93.164200 OK 1.9 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/social-facebook_1.png
IP 213.136.93.164:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/social-facebook_1.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1873
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/hamburger.svg
213.136.93.164200 OK 546 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/hamburger.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/hamburger.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 546
Keep-Alive: timeout=5, max=9
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/social-pinterest_6.png
213.136.93.164200 OK 2.3 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/social-pinterest_6.png
IP 213.136.93.164:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/social-pinterest_6.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 2325
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/logo_mobile.svg
213.136.93.164200 OK 2.1 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/logo_mobile.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/logo_mobile.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 2060
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/search.svg
213.136.93.164200 OK 1.5 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/search.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/search.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1465
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/mailman.svg
213.136.93.164200 OK 1.8 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/mailman.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/mailman.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1827
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/tracking.svg
213.136.93.164200 OK 1.6 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/tracking.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/tracking.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1561
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/stamps.svg
213.136.93.164200 OK 1.1 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/stamps.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/stamps.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1103
Keep-Alive: timeout=5, max=8
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/location.svg
213.136.93.164200 OK 2.6 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/location.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/location.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 2586
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/find_zip.svg
213.136.93.164200 OK 1.5 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/find_zip.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/find_zip.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 1471
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/schedule_pickup.svg
213.136.93.164200 OK 1.8 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/schedule_pickup.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/schedule_pickup.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1775
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/po_box.svg
213.136.93.164200 OK 1.6 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/po_box.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/po_box.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1639
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/calculate_price.svg
213.136.93.164200 OK 2.3 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/calculate_price.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/calculate_price.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 2302
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/change_address.svg
213.136.93.164200 OK 1.9 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/change_address.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/change_address.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 1869
Keep-Alive: timeout=5, max=7
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/holdmail.svg
213.136.93.164200 OK 1.4 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/holdmail.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/holdmail.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1448
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/featured_clicknship.svg
213.136.93.164200 OK 1.1 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/featured_clicknship.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash 375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/featured_clicknship.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 1078
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/go-now.png
213.136.93.164200 OK 20 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/go-now.png
IP 213.136.93.164:0
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/go-now.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 20334
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/go-now-1.png
213.136.93.164200 OK 8.0 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/go-now-1.png
IP 213.136.93.164:0
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/go-now-1.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 8026
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/go-now-2.png
213.136.93.164200 OK 27 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/go-now-2.png
IP 213.136.93.164:0
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/go-now-2.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 26972
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/go-now-4.png
213.136.93.164200 OK 22 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/go-now-4.png
IP 213.136.93.164:0
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/go-now-4.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 22133
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/go-now-3.png
213.136.93.164200 OK 20 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/go-now-3.png
IP 213.136.93.164:0
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/go-now-3.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 19969
Keep-Alive: timeout=5, max=6
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/5b4a262e-3342-44e2-8ad7-719998a68134.woff
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/utility_languages.png
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/utility_languages.png
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/utility_languages.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/utility_customer_service.png
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/utility_customer_service.png
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/utility_customer_service.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/search-1.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/search-1.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/search-1.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/navigation-divider.png
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/navigation-divider.png
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/navigation-divider.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/default-styles.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/nav-red-chevron.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/nav-red-chevron.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/nav-red-chevron.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/default-styles.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/blue-caret-down.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/blue-caret-down.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/blue-caret-down.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/schedule-redelivery.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/footer-logo.png
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/footer-logo.png
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/footer-logo.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/footer-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/backtop.png
213.136.93.164200 OK 2.0 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/backtop.png
IP 213.136.93.164:0
File type PNG image data, 57 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash e71831ce09557543f536d8fd046f3888
0ee46dc7d5b18c30af23ddacdfa9244f530a3299
cb37096768dcf9c6b8e58257caa4457fab323636774f65a12db017bbb2639f18
Analyzer Verdict Alert urlquery Phishing - US Postal Service
GET /us/secure/order/us/1_files/backtop.png HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:04 GMT
Accept-Ranges: bytes
Content-Length: 1950
Keep-Alive: timeout=5, max=4
Connection: Keep-Alive
Content-Type: image/png
www.us-hsdjks.com/us/secure/order/us/1_files/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/main-sb.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/mailman-1.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/mailman-1.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/mailman-1.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=1
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/free_boxes.svg
213.136.93.164200 OK 1.1 kB URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/free_boxes.svg
IP 213.136.93.164:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/free_boxes.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Last-Modified: Sat, 19 Feb 2022 09:11:06 GMT
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: image/svg+xml
www.us-hsdjks.com/us/secure/order/us/1_files/package-intercept.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/package-intercept.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/package-intercept.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/schedule-redelivery.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/schedule-redelivery.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/schedule-redelivery.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=3
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/shipping-supplies.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/shipping-supplies.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/shipping-supplies.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=1
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/cards-and-envelopes.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/cards-and-envelopes.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/cards-and-envelopes.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/icon-personalize-stamped-envelopes.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/icon-personalize-stamped-envelopes.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Connection: close
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/collectors.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/collectors.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/collectors.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=1
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/gifts.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/gifts.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/gifts.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=1
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.us-hsdjks.com/us/secure/order/us/1_files/business.svg
213.136.93.164404 Not Found 315 B URL HTTP/1.1 www.us-hsdjks.com/us/secure/order/us/1_files/business.svg
IP 213.136.93.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery Phishing - US Postal Service
fortinet Phishing
GET /us/secure/order/us/1_files/business.svg HTTP/1.1
Host: www.us-hsdjks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.us-hsdjks.com/us/secure/order/us/1_files/megamenu-v3.css
Cookie: PHPSESSID=91b087bb320bf0ba95ae5308005cc425
HTTP/1.1 404 Not Found
Date: Tue, 29 Nov 2022 19:27:53 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=2
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1