Overview

URLsec-v2s.info/usps/verification/
IP 34.125.187.114 (United States)
ASN#396982 GOOGLE-CLOUD-PLATFORM
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-12-02 06:34:59 UTC
StatusLoading report..
IDS alerts0
Blocklist alert48
urlquery alerts
70
Phishing - US Postal Service
Phishing - US Postal Service
Tags None

Domain Summary (11)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
r3.o.lencr.org (3) 344 No data No data 23.36.77.32
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-12-01 17:12:49 UTC 34.117.237.239
fast.fonts.net (1) 2905 2013-07-13 04:08:03 UTC 2022-12-01 17:13:31 UTC 104.17.225.78
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
ocsp.digicert.com (3) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-12-01 17:14:08 UTC 34.102.187.140
sec-v2s.info (68) 0 2022-12-01 22:46:12 UTC 2022-12-02 06:33:56 UTC 34.125.187.114 Unknown ranking
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 34.223.160.237
www.usps.com (30) 11794 2012-05-24 07:47:05 UTC 2020-05-05 14:00:50 UTC 192.229.221.165
tools.usps.com (1) 12881 2013-04-18 12:00:39 UTC 2020-05-04 17:58:54 UTC 192.229.221.165

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-12-02 2 sec-v2s.info/usps/verification/ Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/metrics-all.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/jquery.min.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/optimize.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/require-jquery.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/helpers.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/search-fe.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/jquery.min.js(1).download Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/resize-manager.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/jquery-3.5.1.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/jquery-3.2.1.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/megamenu.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/modernizr.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/OneLinkUsps.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/ge-login.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/require.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/header-init-search.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/megamenu-additions.js Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 Phishing
2022-12-02 2 sec-v2s.info/usps/verification/images/nav-red-chevron.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/logo-sb.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/tracking.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/mailman.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/location.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/stamps.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/schedule_pickup.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/calculate_price.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/find_zip.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/holdmail.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf Phishing
2022-12-02 2 sec-v2s.info/usps/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/change_address.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/po_box.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/free_boxes.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/featured_clicknship.svg Phishing
2022-12-02 2 sec-v2s.info/global-elements/header/images/utility-header/mailman.svg Phishing
2022-12-02 2 sec-v2s.info/global-elements/header/images/package-intercept.svg Phishing
2022-12-02 2 sec-v2s.info/global-elements/header/images/schedule-redelivery.svg Phishing
2022-12-02 2 sec-v2s.info/global-elements/header/images/icon-personalize-stamped-envelop (...) Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/hamburger.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/logo_mobile.svg Phishing
2022-12-02 2 sec-v2s.info/usps/verification/files/search.svg Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.125.187.114
Date UQ / IDS / BL URL IP
2022-12-03 00:44:17 +0000 70 - 0 - 49 sec-v2s.info/usps/verification/ 34.125.187.114
2022-12-03 00:44:16 +0000 69 - 0 - 49 sec-v2s.info/usps/verification/ 34.125.187.114
2022-12-02 20:12:18 +0000 70 - 0 - 49 sec-v2s.info/usps/verification 34.125.187.114
2022-12-02 16:43:29 +0000 71 - 0 - 49 sec-v2s.info/usps/ 34.125.187.114
2022-12-02 16:41:36 +0000 69 - 0 - 48 sec-v2s.info/usps/verification/ 34.125.187.114


Last 5 reports on ASN: GOOGLE-CLOUD-PLATFORM
Date UQ / IDS / BL URL IP
2023-01-30 03:26:02 +0000 0 - 1 - 0 track.wargaming-aff.com/click?pid=869&offer_i (...) 35.204.130.99
2023-01-30 03:08:32 +0000 0 - 0 - 2 everyload899.netlify.app/grand-theft-auto-san (...) 35.198.80.163
2023-01-30 02:36:24 +0000 0 - 1 - 0 politi.co/3iYrior 67.199.248.12
2023-01-30 02:33:32 +0000 0 - 0 - 1 www.sunglassesninja.com/abtc8mhlbehqil.exe 34.91.95.185
2023-01-30 01:10:53 +0000 0 - 3 - 0 d19745be26e87ec5.srv.ns-lookups.com/?s=3b34ec (...) 34.91.251.221


Last 5 reports on domain: sec-v2s.info
Date UQ / IDS / BL URL IP
2022-12-03 00:44:17 +0000 70 - 0 - 49 sec-v2s.info/usps/verification/ 34.125.187.114
2022-12-03 00:44:16 +0000 69 - 0 - 49 sec-v2s.info/usps/verification/ 34.125.187.114
2022-12-02 20:12:18 +0000 70 - 0 - 49 sec-v2s.info/usps/verification 34.125.187.114
2022-12-02 16:43:29 +0000 71 - 0 - 49 sec-v2s.info/usps/ 34.125.187.114
2022-12-02 16:41:36 +0000 69 - 0 - 48 sec-v2s.info/usps/verification/ 34.125.187.114


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-29 19:51:17 +0000 1 - 0 - 3 canaanad.com/LifeGarden/wp-includes/js/crop/I (...) 67.20.76.226
2023-01-29 19:20:33 +0000 1 - 2 - 7 ups-address.lpages.co/reschedule/ 35.202.21.90
2023-01-29 19:19:54 +0000 1 - 2 - 2 uspspacks.temp.swtest.ru/shipping/ 77.222.40.105
2023-01-29 19:10:33 +0000 1 - 0 - 3 muzzart.fr/index/_manager/Support/Mail/SOURCE (...) 213.186.33.4
2023-01-29 18:35:35 +0000 1 - 0 - 3 bluelineassociates.org/usa 143.95.234.10

JavaScript

Executed Scripts (20)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (117)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6682
Expires: Fri, 02 Dec 2022 08:26:10 GMT
Date: Fri, 02 Dec 2022 06:34:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4669
Expires: Fri, 02 Dec 2022 07:52:37 GMT
Date: Fri, 02 Dec 2022 06:34:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2573
Cache-Control: max-age=103157
Date: Fri, 02 Dec 2022 06:34:48 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:14:05 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 2ueBz1+LerjhxvggbYrke4VYQdgJ5CH8dzI7pUp6fSbR5O9DGuAsySLYpajDwG3qoKPy9yXNDHY=
x-amz-request-id: K2Q1KA16ZMNEZW0K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 05:46:35 GMT
age: 2893
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 06:19:52 GMT
cache-control: public,max-age=3600
age: 896
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 02 Dec 2022 06:34:48 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /usps/verification/ HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Fri, 02 Dec 2022 06:34:48 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1057)
Size:   52345
Md5:    2e0ffc27c5fb0915c5885d1672c58c89
Sha1:   119bec89c66012160ebc93ccdfd3a60315eb4794
Sha256: e19216badaf28ebc65285cfc2b784e6e6341afc81abd2cef0990c78475bb0b03

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 06:08:57 GMT
cache-control: public,max-age=3600
age: 1552
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /usps/verification/files/metrics-all.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 11230
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   11230
Md5:    65ab5df156a2a51b278f9967fc154f28
Sha1:   db841daeeb75283b73216a616f52489f6f3bebc3
Sha256: c7a923623e0ef6cf3ec2c4afa6b3f757ee1f183ac9503e7295629fff50a27597

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/footer.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 2933
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2933), with no line terminators
Size:   2933
Md5:    530d53f217d1c2dcd18267587f66d557
Sha1:   2011593916b3fd3cbc0cf618807d7e7b1467fa68
Sha256: 918439d31704a7efd16b3c23a42ea7e48f21fb008096b45d217444f3e28e1fc5

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/calendar.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 14589
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (14589), with no line terminators
Size:   14589
Md5:    21b96abf877a23a0f752c929993c8129
Sha1:   ede223c9648da1d6ad38f463fa71e934b2daa4b7
Sha256: b6b538331a7716ca132d0fbbdc31e51a5c17047c14474e3f738f70472f08473d

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2566
Cache-Control: max-age=98086
Date: Fri, 02 Dec 2022 06:34:49 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:49:35 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /usps/verification/files/jquery.min.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:48 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 84832
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65453)
Size:   84832
Md5:    8234c1aca62c1e09cc00f7fb5908d309
Sha1:   831062e805247046abdbab52149b03604119fd11
Sha256: e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/datepicker3.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 21117
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (20872)
Size:   21117
Md5:    3f191e9506e3df8a493126d277bf2155
Sha1:   3cfd9acd0a02ba1a770b31b665599cd18544c1c7
Sha256: b02fa0b7acc5f314a89a9e9c493ba6f13500cc9fb8374a3111ab6fa67500be3d

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/tracking-cross-sell.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 3075
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3075), with no line terminators
Size:   3075
Md5:    2c6c2bae5d602f55892faeaa1a4ff974
Sha1:   3c5fba164e02726bf62e8d5f7f70984e8208dd5e
Sha256: 0c49eb2734535aca911b921f734594a8bc288ffd69ac85beef19da552a105dde

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/jquery-ui.min.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 32025
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (29153), with CRLF line terminators
Size:   32025
Md5:    f317653127e1c9f7f5e3cb37fe9db946
Sha1:   35ca56f8f7395d30c95d97a8c00ede0c7cd03af9
Sha256: cd4e2cd505b71a38c564a21fec47a02c21555e2b1f91ba7b6d4cbdb04de4e082

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/optimize.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 93069
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1972)
Size:   93069
Md5:    8a59b241d202a479a0b46f967afcfefa
Sha1:   2e3e28efbc1d20256eabb526bc59b2ac17dc90f7
Sha256: 611e8b291568bc69886b5cf92f1cf782092132d85098e851013bcff53c3f5c92

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/schedule-redelivery.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 23038
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (23038), with no line terminators
Size:   23038
Md5:    bdfffbb68be1fd26eb09e327bed45351
Sha1:   d197097d59665e71528a1b4d76073526e857ef1b
Sha256: f4e8195415de924f3045e054704c9ef253097a3d7e1e556a43083132b17467ac

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/require-jquery.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 74
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   74
Md5:    ea38e8196b75d9720bc3902d6d735130
Sha1:   165284464c58d7f213c1211f2c433873299e4527
Sha256: cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y10vsQjcC1Z40XUNCzmtmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.223.160.237
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AteOSjZBQSq+svTHG9KzTDnZ2uY=

                                        
                                            GET /usps/verification/files/bootstrap.min.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 121091
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   121091
Md5:    148113d0fc5638a9c63faa0852746a28
Sha1:   376560faf7b32f3768f9cceb0813cdc6125d6269
Sha256: 18961a60d0e8347696fb7f0b322232eef10638dcb029f9d3961f9db7e0a787cc

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/main.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 79631
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (49380), with CRLF line terminators
Size:   79631
Md5:    7d15375181a241207e9c42a1d8101cda
Sha1:   9643ecfa8d6b3958c3cb02c2d5a2df0a1e3a7de0
Sha256: 9c5ce7229f264a3bc86d1bf6482cc721484f24afef2d070d5b14083f4d6425f5

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/helpers.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 695
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (695), with no line terminators
Size:   695
Md5:    5372347b4f98f60b33579180ef6a3567
Sha1:   02064f1641c40b35c14a0da9ee310de54ff76cd5
Sha256: 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/search-fe.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 2235
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (2235), with no line terminators
Size:   2235
Md5:    418d20c9da7f39976dcd043467cd9c05
Sha1:   242c058aa62349fe3fa781ce9ef622f882c73d6a
Sha256: 55bf60330b23f3982e77dd63d9796997da15a61bddec70142f2c7eefed880c66

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5886
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 06:34:49 GMT
Last-Modified: Fri, 02 Dec 2022 04:56:43 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /usps/verification/files/qt.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 51200
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Size:   51200
Md5:    ea7441cf1694e85f90f0b0f6e4e4f607
Sha1:   d7b4c31f8d76d0cf4da99e2f2dbab97c4f441b33
Sha256: 1925ce0c88a54751f2da5f3e2d1d2fb0af80296c205c41e940bb34765944387a

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/jquery.min.js(1).download HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1 
Host: fast.fonts.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.225.78
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Fri, 02 Dec 2022 06:34:49 GMT
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 518792
accept-ranges: bytes
set-cookie: __cf_bm=XjcbfH6tzcAr4nK3DZ7fRyfQMM7MAn6Yv_bkRN6t62g-1669962889-0-AaKRy5qdwSu263bmqZXh+JH1ulv13dmchd+tfNwOxj1Ansln3+CM5iO1uVKDoD2aToEq1o+VUbpSoBV85JzZz/o=; path=/; expires=Fri, 02-Dec-22 07:04:49 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 773209fc9975b512-OSL
X-Firefox-Spdy: h2

                                        
                                            GET /usps/verification/files/resize-manager.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1040
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (1040), with no line terminators
Size:   1040
Md5:    90d8fb00194d91e9dd20281817c285d6
Sha1:   e7e37421b14a39e0d3787988a52a45d27ec3761f
Sha256: 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/megamenu-v2.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 44725
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (44725), with no line terminators
Size:   44725
Md5:    e91ca0335745f99e25cbbf36fcfde992
Sha1:   993e87cedb80bbfe5a847fe9f4d957bfe8795549
Sha256: 8853e074638a2a37e8a4afe149f17dd1ce9c4d76d5c9e1614f59507c359f3927

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/jquery-3.5.1.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 89476
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65450), with CRLF line terminators
Size:   89476
Md5:    9ac39dc31635a363e377eda0f6fbe03f
Sha1:   29fa5ad995e9ec866ece1d3d0b698fc556580eee
Sha256: 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/jquery-3.2.1.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 86659
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   86659
Md5:    c9f5aeeca3ad37bf2aa006139b935f0a
Sha1:   1055018c28ab41087ef9ccefe411606893dabea2
Sha256: 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/megamenu.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 13905
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3410), with CRLF line terminators
Size:   13905
Md5:    f91cb845e3581dd07e23db07e02c2366
Sha1:   ffb9ee2cad8c59914fcc3000ba8153a167036738
Sha256: df75a5a617c9d258b4127a64b9c19a4c2c8b95b2036b97530a3d513c672cf110

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/modernizr.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 11261
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11084)
Size:   11261
Md5:    66e83c4165a234cdda478a9c55cb90db
Sha1:   22e9211030a1f612ef4acd010185181bde967307
Sha256: 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/OneLinkUsps.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 3639
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3639
Md5:    b60628830a1d34363f98c9443b856555
Sha1:   ba386fdd91d2db7fb6749982caa78bef59028077
Sha256: 68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/ge-login.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 9309
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9309
Md5:    252bc5d05d5ac9f132978968489a9b37
Sha1:   49cfe0b8d8d08038bf070f11addd9ab53c9ae67e
Sha256: 12de71624f55c7c5e1f462fdfde80f207c449f478917d21c82e65f5b9672cbfd

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/require.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 17423
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (17192)
Size:   17423
Md5:    16e572a4f80526df4bc3cc7ff056a9a8
Sha1:   f23b5c2fd52e855245e3d2586cd911051561e64c
Sha256: 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/header-init-search.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 904
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   904
Md5:    d8cb563907e68e9649948c6f521efe60
Sha1:   f5b7cf8123929db8162a2af51d07dd11c21fbac3
Sha256: fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/main-sb.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 8796
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (8795)
Size:   8796
Md5:    ff67eac943614ef903c2e84419a60f4c
Sha1:   565109b98747417724dafa5462a731c692178381
Sha256: 0863d2c590d46ad4b990232414eef23349ee4316ac4ccbf6f4618329539fb65a

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/megamenu-additions.js HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 02 Dec 2022 06:34:49 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1345
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1345
Md5:    847cc8bd91110ff714275c5a29fbd404
Sha1:   cff690cc070f9539cc1c325ed150b819018e8df7
Sha256: a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets/images/home/utility_languages.png HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 19304
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Size:   1456
Md5:    410956805d5701e87299cff412827e1a
Sha1:   5de9a390649dfc12e3d6df431140d499ad8abd67
Sha256: 6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
                                        
                                            GET /global-elements/header/images/utility-header/search.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 18858
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   795
Md5:    78562ea313af96eca6581054fdbbc76c
Sha1:   b0f3fd320af131b3787b39c864ecac52de12a75e
Sha256: 7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9
                                        
                                            GET /assets/images/home/utility_customer_service.png HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/png
                                        
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 18972
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1307
Md5:    3500d365cd94527c71fe9c70d5cda435
Sha1:   0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
Sha256: 34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca
                                        
                                            GET /assets/images/home/calculate_price.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19499
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   772
Md5:    42af7d5484bf8f80ac930313caa5941f
Sha1:   c3dbaf338d7fa81845487333c0cba5b8341bd140
Sha256: f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c
                                        
                                            GET /assets/images/home/schedule_pickup.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19434
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   923
Md5:    9f9e044f92360c82183e3a31b774e7b2
Sha1:   273798ee8d4dead89367b835cdb7f65f51e81b47
Sha256: e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373
                                        
                                            GET /assets/images/home/tracking.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 35746
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   844
Md5:    04034bbe69ef912819cee070ff866703
Sha1:   2c96d71004568c2b460a7f8b796ae45ad89999ec
Sha256: 959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181
                                        
                                            GET /assets/images/home/location.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19057
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1209
Md5:    9d8433f178d5a7b839a8bf25552c62b0
Sha1:   c21cec68e524862992f4aa51bf6955b953a65112
Sha256: d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f
                                        
                                            GET /assets/images/home/change_address.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19529
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   935
Md5:    6c6d11d6d4ad880538ac8b3c9b244e35
Sha1:   d2f5a684574f89a8bdac4ac35508dc29c61e9771
Sha256: 7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
                                        
                                            GET /assets/images/home/featured_clicknship.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19581
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size:   493
Md5:    efb53558ef3932a80523af92bdda2085
Sha1:   1a97f57d64bc76f296423e1ddbdba9bc71b6d754
Sha256: f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
                                        
                                            GET /assets/images/home/stamps.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 79663
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   551
Md5:    780aa534eb1541ac0834489beafdeea2
Sha1:   2593cddb6c1b7505016d3c1138e16ff556e42166
Sha256: c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8
                                        
                                            GET /assets/images/home/search.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 18870
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   795
Md5:    ccfe748c6040d78e356b03d1a731585e
Sha1:   3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
Sha256: 9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe
                                        
                                            GET /assets/images/home/find_zip.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 18869
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   793
Md5:    4b74917936300819402d564909e39a34
Sha1:   82c09f9b1fa78724d4843b28f12c52e8bb218f2a
Sha256: d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
                                        
                                            GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 67741
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1056
Md5:    5d63c3636efb2bbcb327ed13b714367b
Sha1:   c7e326811c101213173c2a585d1e9700731816ed
Sha256: c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f
                                        
                                            GET /test/nav/images/collectors.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19448
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   561
Md5:    8439e88bd2e43656b157f9c184635032
Sha1:   ddcb40776177a5eac36973e53f2f8bab73e65ea3
Sha256: 5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e
                                        
                                            GET /test/nav/images/shipping-supplies.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19061
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1282
Md5:    7a8b39b328ba3e776e643f66844896e8
Sha1:   7a400d0f33c592651da919c728a30e46207a9449
Sha256: 05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99
                                        
                                            GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1 
Host: tools.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
age: 36630
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 904
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   904
Md5:    e4bb1afb6143cb1307585f007399e0e4
Sha1:   7d28cd35cbdb8427d4a12274c3f455e57f4742e0
Sha256: 06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30
                                        
                                            GET /assets/images/home/holdmail.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19531
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   768
Md5:    2f40bbb9da0d97f2ba3f3efcfd7533af
Sha1:   34c76f88cdda4be234b58a76e466bc7a972f14ea
Sha256: f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069
                                        
                                            GET /assets/images/home/po_box.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19478
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   848
Md5:    a1feed192f3aca7fd02c00b6ee45bb07
Sha1:   fce52b953f90a873186cd2c3ddb26dcca41884be
Sha256: 88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
                                        
                                            GET /test/nav/images/business.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19475
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Size:   689
Md5:    3b81ef43fc5b08bab4155c5fed116dc9
Sha1:   a5a804fb2f8f51b3e588d4edb01752eba0380f8d
Sha256: a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb
                                        
                                            GET /test/nav/images/gifts.svg HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: image/svg+xml
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 19138
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   590
Md5:    e97f9908f9eef2a76ea4f48e00196980
Sha1:   f32d5a4b791567c690ea7095d93bec78e422db40
Sha256: ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4
                                        
                                            GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F7BB)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /usps/verification/files/footer-sb.css HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 3181
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (3179), with CRLF line terminators
Size:   3181
Md5:    0466c7414c19b685bafe055bcd1d9d7b
Sha1:   29eb107ca7c4de31aaf2a9df8d9c8294d2c234ae
Sha256: ccaebfd542fba2c3af8d9397e265345e7c7bec22c7c94f190ef7047e38479830

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F7B7)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F7A8)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sec-v2s.info
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 403 Forbidden
content-type: text/html
                                        
date: Fri, 02 Dec 2022 06:34:50 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   345
Md5:    a7b900bec0b7b386dfd18ad22c9ed411
Sha1:   72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
Sha256: d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
                                        
                                            GET /usps/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/images/nav-red-chevron.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/images/logo-mini.png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/footer.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/go-now(4).png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 22133
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size:   22133
Md5:    22ab573e325c944450873345437b0887
Sha1:   0446e4d20c824d38ef4d427cf7e025c8f034f11a
Sha256: d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /global-elements/lib/script/require-jquery.js HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: application/javascript
                                        
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 5277
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   74
Md5:    ea38e8196b75d9720bc3902d6d735130
Sha1:   165284464c58d7f213c1211f2c433873299e4527
Sha256: cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
                                        
                                            GET /global-elements/lib/script/helpers.js HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65874
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (695), with no line terminators
Size:   358
Md5:    a94bd840611f82766bdd01435e0325d4
Sha1:   195b9eccc89fd504aaa416ecfc05b277e3b1862b
Sha256: c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
                                        
                                            GET /global-elements/header/script/search-fe.js HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 46627
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2264), with no line terminators
Size:   930
Md5:    044ed97a28abfb41b4962d4be4f1a9a2
Sha1:   376bd4af5ff97565cf9565904b615bffbea08690
Sha256: 19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
                                        
                                            GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 7470
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65450), with CRLF line terminators
Size:   30950
Md5:    2a0ef702291c837a85b6c7c2275fdac6
Sha1:   7937023d7bc07c2a6d1e29f316836995fbdbf997
Sha256: 921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
                                        
                                            GET /global-elements/footer/images/footer-logo.png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/footer-sb.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/go-now.png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 20334
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size:   20334
Md5:    d0dad9004bae0df70b06b75557b1df62
Sha1:   4a080764de6b97902413f5c836432a30da348517
Sha256: 2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/logo-sb.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 3557
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   3557
Md5:    0418f7120dc6cdd1d7aa0f8219ec9af2
Sha1:   3bb6c6edee3cc1c072117795611e2f67383cdc44
Sha256: 4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/go-now(3).png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 19969
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size:   19969
Md5:    6311ef7a60f86d77aa48fcc48a675a31
Sha1:   96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
Sha256: 70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/go-now(1).png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 8026
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size:   8026
Md5:    49754396635190a6532dd376acc76ee1
Sha1:   526df243e2adbf5719b082c5e04190ed40209ccd
Sha256: 0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/files/go-now(2).png HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 26972
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size:   26972
Md5:    b596424d2e958b51d7a68b46cadb6855
Sha1:   77eeeff212b8cd75a31beb954907e20bc5f8c831
Sha256: daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365

Alerts:
  urlquery:
    - Phishing - US Postal Service
                                        
                                            GET /usps/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/tracking.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1561
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1561
Md5:    2fb7b372aea93502ca192e5a633d1aa1
Sha1:   ce358703cce32b2176cf6ec94e17341cb6f93f03
Sha256: 58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /global-elements/lib/script/resize-manager.js HTTP/1.1 
Host: www.usps.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sec-v2s.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         192.229.221.165
HTTP/2 200 OK
content-type: application/javascript
                                        
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33075
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
date: Fri, 02 Dec 2022 06:34:50 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1040), with no line terminators
Size:   468
Md5:    7dfda1d5c69fea0090eb0e1dd8f9cc69
Sha1:   731696ce554e4a61def2c1b2c42f593b2d663ec2
Sha256: f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
                                        
                                            GET /usps/verification/files/mailman.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1827
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   1827
Md5:    1426a5796b4337302ee498d4a9265b38
Sha1:   c3b2b8042eb536d43101c5281d5aae8244d1e0e1
Sha256: 87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/location.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 2586
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   2586
Md5:    9b913bc84d41ec1c78da5889d36e1431
Sha1:   21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
Sha256: 87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9014
Expires: Fri, 02 Dec 2022 09:05:04 GMT
Date: Fri, 02 Dec 2022 06:34:50 GMT
Connection: keep-alive

                                        
                                            GET /usps/verification/files/stamps.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1103
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1103
Md5:    2e722b55bb31b83042310fbf5b45128d
Sha1:   cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
Sha256: 0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/schedule_pickup.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1775
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1775
Md5:    d627861a77e755da093cae9b4db00b7b
Sha1:   fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
Sha256: 2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/calculate_price.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 2302
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   2302
Md5:    6204f7fb48ef86964b4b1cce343ebdde
Sha1:   d60b7e47e22615fdea2a24e102200090b466b862
Sha256: edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/find_zip.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1471
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1471
Md5:    e30aab66bad715f4fef4b6c42f8490d2
Sha1:   40be7a560b0687cf57c7ef0c0600ca08203a680c
Sha256: aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FhCtGsjgnq83-zRNBH-y9BHUh2IRaN0ahO-BCUw7bTWU8jAanBqdlA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:35 GMT
age: 31275
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7732
Md5:    379a4a1b95d3aa3c5a4f8e7f9abb030f
Sha1:   d45dceb3dc58a07197aa5077582b5b1cd2ff791a
Sha256: 1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
                                        
                                            GET /usps/verification/files/holdmail.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1448
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1448
Md5:    4c8f3d7064524311ef86ddd0ded768d1
Sha1:   53ca5f29f603435821d07019cf123e430626f54e
Sha256: 2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 31494
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2942
Md5:    b47431190f34eccf0a6efb98e2a32b7d
Sha1:   9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
Sha256: 08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:20:09 GMT
age: 83681
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6174
Md5:    b986f9fcbeca91ed5c8d58fbfaf47d19
Sha1:   6e6c8bd2bce144cc4da1cd7be375b046b60dca79
Sha256: 07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:43:11 GMT
age: 82299
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8863
Md5:    156e9ea97b774cbd8361072e4041b6c8
Sha1:   fc71ae3cae92ed6011904bb2367f23bf4e69fab4
Sha256: 58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02EF3QEVKmEB2ikbGk9gzQq7_VMi00ufHUNRFTL8MpwJKaXQwdT8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:42:27 GMT
age: 10343
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4834
Md5:    cd8ad22c2eb1eb91c76970fa449f1bc4
Sha1:   0de97f3a4964038222bd751e043e413113e6db9d
Sha256: 668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 31559
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4840
Md5:    60ccdde4ce64b4a3fe6fc2a059b3bde1
Sha1:   5ce119089f4a4cd139b523889b6cd84cd79191f4
Sha256: 2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b
                                        
                                            GET /usps/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/main.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/change_address.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1869
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1869
Md5:    3955e49630deb78cc1212ba20d83bafc
Sha1:   881ba502127d57c48784703683869abf4c8e28d8
Sha256: b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/po_box.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1639
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1639
Md5:    d3793852de4f419211843c1f4c05ddb4
Sha1:   8c7eccab4e3865a04553d720c150e4506d8990a0
Sha256: 7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/free_boxes.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1066
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1066
Md5:    dc788e0d1e8c7d9463a99882e622730c
Sha1:   a079d9612a9c119a9419b620d9dcfc141dd7e011
Sha256: a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/featured_clicknship.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:50 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1078
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size:   1078
Md5:    375ed61778c1a49c8d1ea21f31748719
Sha1:   476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
Sha256: 23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/megamenu-v2.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /global-elements/header/images/package-intercept.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/megamenu-v2.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/megamenu-v2.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/files/megamenu-v2.css

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/hamburger.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 546
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size:   546
Md5:    37c94e8de8729be2b0b9833bafa28f3b
Sha1:   c675396f6d65666dd6047b6e92cbd5429556dbac
Sha256: b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/logo_mobile.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 2060
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   2060
Md5:    f8ad388b3e39b860c97de0029ae98a21
Sha1:   9b032ef4ef4100dda1ba44be4836e6956b11387c
Sha256: 9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /usps/verification/files/search.svg HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Last-Modified: Tue, 30 Mar 2021 12:36:16 GMT
Accept-Ranges: bytes
Content-Length: 1465
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1465
Md5:    ace472e478185d5f5ecd18c7d821eff7
Sha1:   c4c97892e41d3dd838912c42fd7a7b212f671d1b
Sha256: c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Alerts:
  urlquery:
    - Phishing - US Postal Service
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: sec-v2s.info
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sec-v2s.info/usps/verification/

search
                                         34.125.187.114
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Fri, 02 Dec 2022 06:34:51 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  urlquery:
    - Phishing - US Postal Service