Report - ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

Report Overview

Submitted URL
ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-31 08:48:22
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
44

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	66 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	2.7 kB	7.1 kB	23.36.76.226
ly8ismzmaevpzxbe6.lspower.xyz	unknown	2023-03-31T02:55:20Z	2023-03-31T02:55:20Z	12 kB	135 kB	104.21.64.71
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
tools.usps.com	12881	2013-04-18T14:00:39Z	2023-03-31T23:34:20Z	1.8 kB	10 kB	192.229.221.165
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	127 B	44.238.9.41

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html	United States Postal Service

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/free_boxes.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/featured_clicknship.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/hamburger.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo_mobile.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/tracking.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo-sb.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/search.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/mailman.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/location.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/schedule_pickup.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/stamps.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/find_zip.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/change_address.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/calculate_price.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/holdmail.svg	Phishing
2023-03-31	medium	ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/po_box.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html	27 B	2023-03-07	2023-04-02
Pretty URL ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html IP 104.21.64.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15:29 Last Seen2023-04-02 21:20:10 Times Seen3705 Hash d679a370635fd03a222368c143751d85 7eacb12232cbb3fa0ac526e917eca6e6a95f873a b5df22f95ada1fe2b3c64ed31446e1391d3723d688cf0bfbd84d0da0a8fe678a Loading...

	ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html	52 B	2023-03-09	2023-11-26
Pretty URL ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html IP 104.21.64.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 03:17:55 Last Seen2023-11-26 21:32:42 Times Seen3521 Hash 15c41ab852d2f96d6caafceb1b2fdf54 b827d336116bf188232f345f750f1e3e9012082a 0a678cc287c455b4433d05ba311acfe1924f72eb77422b6f6759f24fd4dab953 Loading...

	ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html	24 B	2023-03-07	2024-04-19
Pretty URL ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html IP 104.21.64.71 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 10:48:56 Times Seen5674 Hash 56d62f55706e2e153678329e7bcd94d8 c00d14b88b1fa94b12c0aafb761e676e73758fc9 6949901ccecaa8c8c40ac181981a5a291b81648a0a5ab42223db4875bdd5235c Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (56)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5768
Expires: Fri, 31 Mar 2023 10:24:19 GMT
Date: Fri, 31 Mar 2023 08:48:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7827
Expires: Fri, 31 Mar 2023 10:58:38 GMT
Date: Fri, 31 Mar 2023 08:48:11 GMT
Connection: keep-alive

ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

104.21.64.71

200 OK

11 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Size
11 kB (10730 bytes)
Hash
edd82dc34e23464aff83bf16310ad562
7a62b1edeaf7808f98bc23b056ebe0cb4009b8ac
d124e0833e5f5834309bd10c2849371f12fa8da322e5ec5ff03279da2b508a55

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /usps/verification.html HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:48:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S91KeNNU4MH%2B%2FUfUPkuBkVda%2Bm4A%2FuwyvaEws2q8K83JEv%2BAucU2BVQiGwXAmA2Y5xMA4nk9rVjFT5qIK%2BvwxOknVydUrfWNM8Rdg1sD1arGF7kYCk4I8wQTyyg1YjTTlJFC1e%2BN0Q8D%2FiVH%2FalrDg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0754f788760b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 08:16:10 GMT
content-type: application/json
age: 1921
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6176
Expires: Fri, 31 Mar 2023 10:31:07 GMT
Date: Fri, 31 Mar 2023 08:48:11 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: mQnQ0dUqvRBubZJXu2JwKNgffEkDT1nXWTOYqEKK+dG7Hlxa/g9Jkx+pox/rEtxah9edbHuuuAA=
x-amz-request-id: 6V0B1MMCF1BEEV01
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 08:03:16 GMT
age: 2695
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 08:48:11 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/megamenu-v2.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/megamenu-v2.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wXtjeC%2B05fKqTYHCOk9jZxKm%2Fp3yR9gNyyL1olxok%2BZ1VbFIpUEEk3SAi7L7hrrx5F0NB5raHwxvO3ukaaX1skyIl7A%2BBlLkKOdthmG20fYroKpD4objYK2GbHVmp758gbGy50YhEWJLvKXYZxDaJA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fa9858b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main-sb.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main-sb.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/main-sb.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W8iDHbiz9iFH1a5UV%2BNPyZsF6%2F%2FcQvOzkFaJ4hJ25AXGhxsi8iObMC4a64Iir8rSLQ65U6yxmgttz0fkhbNenwUlSEQRB3zQHyoi6JoF3m3Xe5O83JFQ%2FzF%2FGFJvBiBaqFO5yIDcK4EjaoGr628UPw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754faca6fb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gt9Aw5Voc9I8317whiMBoyth8zCgfhCgHUq460nUw0OraO7I6Rfij5gEfLPl5qv47JODr58g34WZaqb%2FuVG2IFGHN29b3HaBMJrxA1izvR2Em7sxw1hX3zV0k6F%2FTjiFP9bnSBVYCI70z3TKk%2Bmdew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fab88fb4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

tools.usps.com/global-elements/footer/images/social-pinterest_6.png

192.229.221.165

200 OK

2.3 kB

URL HTTP/2
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
2.3 kB (2325 bytes)
Hash
010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62

HTTP Headers

GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 37736
content-type: image/png
date: Fri, 31 Mar 2023 08:48:12 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2

tools.usps.com/global-elements/footer/images/social-youtube_3.png

192.229.221.165

200 OK

2.5 kB

URL HTTP/2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2461 bytes)
Hash
e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95

HTTP Headers

GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 34491
content-type: image/png
date: Fri, 31 Mar 2023 08:48:12 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7F32)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2

tools.usps.com/global-elements/footer/images/social-facebook_1.png

192.229.221.165

200 OK

1.9 kB

URL HTTP/2
tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1873 bytes)
Hash
5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c

HTTP Headers

GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 37736
content-type: image/png
date: Fri, 31 Mar 2023 08:48:12 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2

tools.usps.com/global-elements/footer/images/social-twitter_2.png

192.229.221.165

200 OK

1.8 kB

URL HTTP/2
tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91

HTTP Headers

GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
age: 37736
content-type: image/png
date: Fri, 31 Mar 2023 08:48:12 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/bootstrap.min.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/bootstrap.min.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ckpYrK5AisDuGDPtBcbuETODc0HkbUbxwCFntmvowiGWHQirYG%2Fs1QnCUGmTgC4eAkEEreXIUHNWoF1GAXW3MDxITZaeQycuPOCSg05X2d3Z7aYoFfUvg%2BVUR0aJ4dOYpNSD396QrOx2ZRqsdEBlqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fa8b8d0b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/main.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uqFzZ4kAiCPztv5PBgYdrvZA31ff%2F4Xc6hwvQz6KGF7SkGMaN%2B9Vw01w4ma0s4RWClNVXaYloy4pmDyThDVTmgAegsPIaU1LKCb5KN03nFLwYK3Bu%2By5zL35vGPu46BvNLwRP18hIzovPrbBWRo7GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fa9a44b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/footer-sb.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/footer-sb.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XPNiq57opXs6mwBYeAOXa5r41a5O%2FVvkRIyV%2F38cAvdIwIZZWwcIGx%2FnRWiJXQEoyXOWZrcGvHpL5%2BCyh8AfoguhiML0YW3y4V9NLue81NJzKE2w1PTVOGHVgFFKAuk%2BCo5YovtvVi3UjdAUjE4mlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fb89c2b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cvfipy%2Fm8IZSX%2BjDNzYXgxUnS1ExJNfBUo7PuWFNvAichsjMzM0teeHwk7ZnhiTRC8rHfSDtTnPO%2FH2j%2Fq3%2BpkWvqd11nonReghDd2zhos3TmDQ5jOwRynLrWru8kBi9OqKZDt%2Bp2gkokGX0qLI%2Bqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754facf60b52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 08:17:26 GMT
age: 1846
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/free_boxes.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/free_boxes.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
f04b1d676c39191d9aa343c835b61c48
d1893896efb11494be83378b29cdc1cd672c1565
18d90ac575448af4dbbb0febf4e55f33a59abfbff588830a4d60e8326b963521

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fc7ce5b4f4-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(3).png

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(3).png
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BVyCdJErHa%2BLrv%2BJu%2Fb0eqUcSKfIHfYwVJNbQtaDhC5dXgIuNiasujFqvTl2D1Uu7SXfGO4wQb2EHITh9MwSvssKFM66XsJvvfTWHLTx47mjsz3gC7L7RY8hVzTaNFC62t7K84OLoSCxAWe54oaR7w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fc7a3eb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(1).png

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(1).png
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rFMR43TNwW6%2F4Yxms1aFXJ0%2BqmNPmlBYP0VuezgSBGFqm3Aa34twzu9MWk8foYM0LfZa1DM24KaffGdEgUn7%2B1vybWIq8YrQ4SNf2Bl%2Be7%2BYhvb96Hjv%2Bye%2BMx6%2BbdOPKqSURlQNO2XLy91eAIj7bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fc7d840b4d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(2).png

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(2).png
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xucEHP3gpHeWgBmCKXqdhf6a%2BVBWCDuLNhsN66Mj7Ki8HDu4QJLmXu5JVXflPchRsVmFTNymwNgb4Y%2F5v8%2FPaMHXY1IkwN3g4OSwWFRQG%2FZsUvWgKB%2F%2BGhFuCc7P7foxHXN94%2BS8HfHqowKIKby34Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fc7b69b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/featured_clicknship.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
0e08c4c46225f0e28b0a401b709e0f99
461e081290b89dc316efa92884cf29841b31b745
18da1086227c9ad1ebefd088fa1a8fad1cd846f5cdf05bc630571013665756cc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fc7aaab4fd-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FPq2SgpDG6KZdxH551CRaksz0ebwQrzBtKVkv4Zy0aUWQlAxTbrZxG9zZsLGSbi%2BB6v1fBFfTOYqYgTyotM3eRSFksPO23JSzUmWp2Q58FO9K3LXGoh%2F9qhsFd%2BP5OeCNRVoRRM%2FeujWFOiT%2Bvw0Qg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fd5e19b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now.png

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now.png
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/go-now.png HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XNWZDuE6K%2BGKn10JTr3rU4v0rLZuy6Zx70oAEElRWVzuPMjToog0Kt5h%2BJboamLG5g6I5bzUalxXDQ6QV5RnhLNut79ZILuAM2CxU8hivnLYBLPGB2R6x4IEzLRR9WCTuI5oES54zq5Hx4gYn4TlJw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fc7c9eb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18732
Expires: Fri, 31 Mar 2023 14:00:24 GMT
Date: Fri, 31 Mar 2023 08:48:12 GMT
Connection: keep-alive

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/layer/layer.js
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=82464CNz%2BPcQaP809700nYwZwpALbYpX4ED1GwBAGIp6YrUi2eZdJuvl5xNrTDaisdoYa8r0pqrr16QoaJ4JJScJ1hSPmFs%2F6HF68KQ5xMSV4qqOr1OlPy7l%2Ffgj5Mxx1x3rrcK9XYq4AaYI5wZenw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fe1ee4b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/hamburger.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/hamburger.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
89402ee5b8aea6f0151aa38a9d2928fd
4907e71ab02e5e53567f4367e44052bdbb346d30
854a0f5271e90c48433fd570426fb950bb9db5aaf2840555800a24c146ecf2f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fd5e6c0b4d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo_mobile.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo_mobile.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
9ceb6524982245c7acd6645c144b6212
9b2188e8cbe5b5d66e724bd07c38346cf0c0525a
fb026afed79866cfbca69d46ad4552f79795e1869c74588757741258e25dc456

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fd5d37b4fa-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/tracking.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/tracking.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
873bb622874255aee58c24eea188d4b1
e0552caa24c5307dc811d049fa3e5ad3dde96841
d38327f63480f1ec9d818c3066fe91352d7e44565d2344f4822cee1376c84550

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/tracking.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fd6e33b4f4-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo-sb.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/logo-sb.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
3431f54705dec16f3a1203fac17dc122
ce921c778d85086d56a68ae15552464385b340bb
20ade15d86a1ba0c78fa34895ba7a4eb4a7dfbc848a35ac13aa75ce142f348a3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fd5bcbb52d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/search.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/search.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
07a27b541fa33ce9ab72d56b64cde49e
044046adff1ea9e5ec3815568ab25e501eae1145
ffd70095ba966cab9799ae07fcb95d76554640e97ef97b3512d4c47c6c80a949

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/search.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fd6bc2b4fd-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main-sb.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/main-sb.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/main-sb.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvcHCzC9LaaJANhGfj%2FQ1CcXv5WD4e4Ud5v7ipq4i0yBwG1Kutr6uyUWr3e8OG%2Fp1SLlezk%2B6LiAyNZMJJVBg5XxJ%2FI%2FlG5rmzlgQJKqAjsrDZaYzdTpaF722f7ulkansClli37%2BVzPsVyoAmaB%2BsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fe3ef5b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/footer-sb.css

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/footer-sb.css
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Qnoot2iHyhxCbrx6M%2F%2BDlC6By9C6KVH6uxBqB2OPvk5X5%2BlcO8Mh4709UoqxdHJJIEcf%2FvOrXqKOhNaiW5sXSi7GvcGJ%2FBRLGllNoqMvRtnNxlTdkdrbs%2BussJcgsrvEVjaMRgZGIaX4hPs9REzLg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754fe4f2eb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/mailman.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/mailman.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
f8e6b2a43c9c8bbf4ef09e6f1af3c896
a2baeb9d5f6968b401bd5e9e47d5c15893108bd5
d1c1bc5a06436192d3d9088a25903ae5afb1b9ffacd65306c80a6cea68ff7e86

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/mailman.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe2ef6b51b-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/location.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/location.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
c95b4e12cf74094f117b2d0de4fef347
15aca915eaa26995bb07d1fed174cbcbe28d0376
3090ecd746ffd60188515d049a95e70a93b33e71b8d10c6aff35b359a470ac70

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/location.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe3f810b4d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/schedule_pickup.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
e7bc6a5fbfb0a57ceafe306b2727df6f
78e2fafd60389ae8dab8ec4242fdaa309137c98d
1169be49b841284829362b017db471c9a50aa4bf068b501311452ce00fa2bd11

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe4cc6b4fd-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/stamps.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/stamps.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
adb129f15983d6fb573c0c2ef0d2d6fa
6f6adc7cb8e50f25c56d616fc78432c456d720cf
ca8bc340f21d31a7bd95c43edec53d100bab1dead00b7bc00277bdad6429ab46

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/stamps.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe4cfdb52d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/find_zip.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/find_zip.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
e1d4407b2000f5c793e0a568685c791e
128a1c5207bbd41baa8ba38bc5edfed7c82cad48
8432a8bb0e63575e48532eba001828c7ec24d6fc4a2b17da690cc8d14145ceca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe4f39b4f4-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/change_address.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/change_address.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
06ca79b103ea095e212eb3fa52fb21dd
4b4ca7503c68f374b33af848510ea91d511ea7bb
7e6d8a1134707878f1bf3c6a78536a90c21fbc60e7f08d9d679505cbd3d30223

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/change_address.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754ff0ffab51b-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/calculate_price.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/calculate_price.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
5b6fb9a5022008a4b4f753c04e741ecc
2c34c61db941d0ef840e0b350fbc95c2008d8e8a
427c0dcfde814f0aefa64ebb72c3d9612b7682f2c882ae95f12c0d548ff87a59

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/calculate_price.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754fe4f0fb4fa-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/holdmail.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/holdmail.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
00ef4d967374ee86f02d06f87117f91e
b6116808ed50e34ddc664ee342bca368641aa0db
704c9d1864e0a743f103dcfd992c456d7afc9a3953edd381ab0f85c644152950

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754ff18770b4d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/po_box.svg

104.21.64.71

502 Bad Gateway

6.5 kB

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/po_box.svg
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Size
6.5 kB (6487 bytes)
Hash
89df89ef3a2ad0816665fb3f97c98024
d72ed64c1c5f7e67c18668354287746c65ff99b7
26685f4dc6a2801dd90fca9c5b3721f344bf157cfed79df330950db1017edeb4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /usps/static/usps/po_box.svg HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:42 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754ff2e0db52d-OSL
Server: cloudflare

ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(4).png

104.21.64.71

404 Not Found

109 B

URL HTTP/1.1
ly8ismzmaevpzxbe6.lspower.xyz/usps/static/usps/go-now(4).png
IP
104.21.64.71:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
109 B (109 bytes)
Hash
3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d

HTTP Headers

GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: ly8ismzmaevpzxbe6.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ly8ismzmaevpzxbe6.lspower.xyz/usps/verification.html

HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:48:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=muFyq2PxuEgP4xObNhV5vHkoAKCsrf1WLocdpMi1RzW044w8W0Sl3A%2FmKoHxikpFcLM%2FUphdYKvNyMOgUqCi8RdaXPsQ7e8hiEWa8fsoBkeiTWF9JBAAkbe4kmEOGNWNedMRDryws7i%2BvA1keX3MMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754ff2db6b4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

push.services.mozilla.com/

44.238.9.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.238.9.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /tNWVbFkxCoMy9cA8gSGfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eBMxeW8/YYJTHMOS2t36ayf3KCk=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13974
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:48:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13974
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:48:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13974
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:48:13 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13974
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:48:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8745 bytes)
Hash
ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LAAUFZcFBIpdMUkaDQXGW1sdwLK9c_uhQQHLiJHGF7dEvfJ0KX7MaA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:44:37 GMT
age: 7416
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6380 bytes)
Hash
8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L6tgzFrj9t69Rnfd9bziAPiROAX0tvcj9Kcg8sXkto8qRFeKqiwkpg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:17:06 GMT
age: 37867
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11114 bytes)
Hash
211d737362f7cbcd8c77cee7d29fa2f5
668d1d80c88082928c6ca01fbf1ccbfcd079f64f
05672d4ab964a706c41d73b51592ca2425983e77544f08198dd2d3a7dcc5b3a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11114
x-amzn-requestid: e9e6a6b5-e6e8-4ca4-9302-a1fc023a38af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkypoH5goAMF6Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424fe3d-63c6c8465407f5dc26e9aced;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 03:13:01 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HsI--rdD7nPKwY0W7f_eIm1y-oz6BbWkLea2jX-JmxY6_I8ncpD-cg==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 14:31:29 GMT
age: 65804
etag: "668d1d80c88082928c6ca01fbf1ccbfcd079f64f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9055 bytes)
Hash
1688ae550e5e9181de2448a9cade8a26
a46eb0cd75f46778dc802b648f7c391ce801c700
e717e6e64c928571506bc6d19e3d9ce19bea3292f01618a6d9ddbbaffe65ffd1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9055
x-amzn-requestid: 1fad6d1e-3380-4574-9796-ca6bde35b507
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUneEK8IAMF1EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260162-690f6e9933616e9b74b70435;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 5qljjE3ByqQaRJhcpkBZFcYVH4lCoP2idQM0iPBAT7znLfoZmO0lUg==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:29 GMT
age: 39704
etag: "a46eb0cd75f46778dc802b648f7c391ce801c700"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
14 kB (13775 bytes)
Hash
876e5464aba1639f3b07b07d1d694514
93885a6205be71d16187782b1803f53d5c8538cb
6e2b6b15f462922a9e8260f55cfcd94d488d1a48435458db43270ea3b825d8c4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13775
x-amzn-requestid: 43d1a1f3-b189-4fcd-a298-429123d1921b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUloF9woAMFU4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-13778451622503253ea252eb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXA995GxGti4_AzSi9F19ZNvUwm5_ZSBw0BB0lRIfNHcmX7Ajt6bSg==
via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:52:34 GMT
age: 39339
etag: "93885a6205be71d16187782b1803f53d5c8538cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10706 bytes)
Hash
e55c2ccec92fa37b631f5616ba5e1b77
c3f1113bad672968f22e63693ef4481f7f5616fe
10bfe1a2cf0b6e0a2a548935a1afc061fc61990a121a84580f3969df68b7974c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: cYDbU2yRL1y7tFVehv7XBDdywykpvl7kVurr1JvsGPTlYkmsOBwczg==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:04:58 GMT
age: 38595
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (56)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1