r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7543
Expires: Thu, 30 Mar 2023 17:39:13 GMT
Date: Thu, 30 Mar 2023 15:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Thu, 30 Mar 2023 19:45:38 GMT
Date: Thu, 30 Mar 2023 15:33:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9936
Expires: Thu, 30 Mar 2023 18:19:06 GMT
Date: Thu, 30 Mar 2023 15:33:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 15:16:05 GMT
content-type: application/json
age: 1045
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rbeY6NYiwonnO2Fs+CnDlhXAlLW3Ve2Sngsx1hYLr7gCSJz2s/dZ4fqvYV9ro7rn20sh70Pe0Z0=
x-amz-request-id: 8HFWPN6GA14G1DFM
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 15:02:58 GMT
age: 1832
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 15:33:30 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ae064c74a3769d42109473ad05d56fb9
d48029ab8568cee6ab7416d3b476ed792d780a56
9852216f395a42f7b4792e852f9f9fa83e07d917a979237d5d7406a1d74edc4f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9852216F395A42F7B4792E852F9F9FA83E07D917A979237D5D7406A1D74EDC4F"
Last-Modified: Wed, 29 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3312
Expires: Thu, 30 Mar 2023 16:28:42 GMT
Date: Thu, 30 Mar 2023 15:33:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Expires, Retry-After, Cache-Control, Alert, Backoff, Pragma, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 15:14:37 GMT
age: 1133
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qiN9LBXuouxMxiJMfC5ziA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XMGTc2Mw45OMwZUrtCWwCf6LRBM=
Date: Thu, 30 Mar 2023 15:33:30 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
uvise.lspower.xyz/usps/verification.html
104.21.64.71200 OK 11 kB URL HTTP/1.1 uvise.lspower.xyz/usps/verification.html
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Hash e3efd6149eee875b59abf0ab74e4360e
c4579653be4687ed4ac627ec2619b55a4cde01d3
910830a40484515d520d556e41d5811e9ff666a85c9f31b1c653d504cb667a4a
Analyzer Verdict Alert fortinet Phishing
GET /usps/verification.html HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQuQACoD45xeh0QhGwilLnci5yQGq3KWJ2JNqzvxK%2FtGvl%2BkbFbEqiiCTlUsiI6eO0c8GvodGqEsgOXRTYbFaBpxA6%2B3xn5K8utsVHPgBf%2FhoGearObNcv%2FSbQMPyBVD1fh9gg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0169562c80b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/main.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/main.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6T6yxxtM5N720HfRoFsno36%2B9B88lk%2FFTfg1LrFczC6WBM9Uqd7WADSF0NfozfCHcqAWWs%2FgvaMNoDuJ3ASF8ZDdy77C34I9xlWZO%2BTdF5s4eJOjqaQaUYRl68hwjR1qW1bGVA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169587b86fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/bootstrap.min.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/bootstrap.min.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fqUZLFMO0vSzpEw7ECKeaOcyktHBTldKw5XjwkZCZYLN4onazGojHv%2F323gY5WGLbSF2YuzLaIzwVNMrSvnV0kCj%2BzHwckzRIZGCzQl0wYvGmaIn6cpYxlWzbZqDNcwCfNTZ2g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169587865b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/megamenu-v2.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/megamenu-v2.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AZiNfUxkrHP0%2F0QSQ092GUxR6tEW9ZX6d4gk2D1HIYbJx%2FHlwK5Nt5p2dOpokYhgsEqzRTnDI52oEZWeT%2B2ogUO5sZ%2F5rMoZSldMa4DYo93hnczgxRLomzAIX0uunn%2ButPNBHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169587be6b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/jquery-3.2.1.js
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izN5Kfb%2FKczRB%2BwloFzrXsK4gLmPNLyv5tsVXpv2M4qslItozBH%2FKdiK5zHBjRD%2BJtMlrxfoSU%2Fzm6N9Y5FvHfqVmuNjmpefZTjGGpcb6yYqmkalGjXeDudtPuyOgfQjdX5DpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169589d6a0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/layer/layer.js
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/layer/layer.js
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HonfrZcH1iE6nHq5Z0ZYVQLPmuffDEHZyzoProS8H%2FKhnPW2HcF008pMcl6KcG9%2F1DMAN03weJIfgLZuG%2BjGPVIvTOtS2ZRn427yNNNTzttkPFOS8s2WP77JPzJB5WJVegmATw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169589a720b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/main-sb.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/main-sb.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pSIOAhXF9svjKGZHCukODMROJL5izaokqOILdCp7WNl6R7l60feTxJiYWqEx%2F87WtyLiJmYhMHfXmJ0whmn0UDmFcyL%2BWNQXGBkHijiyRnzhGeMgXBGXa99B5oekzoSYQFAjzw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0169589ecdb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-facebook_1.png
192.229.221.165200 OK 1.9 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uvise.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 62055
content-type: image/png
date: Thu, 30 Mar 2023 15:33:31 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
192.229.221.165200 OK 2.5 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP 192.229.221.165:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uvise.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 58810
content-type: image/png
date: Thu, 30 Mar 2023 15:33:31 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7F32)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
192.229.221.165200 OK 2.3 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uvise.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 62055
content-type: image/png
date: Thu, 30 Mar 2023 15:33:31 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-twitter_2.png
192.229.221.165200 OK 1.8 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP 192.229.221.165:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uvise.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 62055
content-type: image/png
date: Thu, 30 Mar 2023 15:33:31 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2
uvise.lspower.xyz/usps/static/usps/layer/layer.js
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/layer/layer.js
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4qhKPfGmYp0PF09LZKm17Vu3fl421rTYdkqsQcpKb8okQ3tmkdKbWXOueCU4CeiF47jgIAFbAr18KJMoM7p0jL4T1m4Y0cRS%2FczGUGOerY4sTDLs1gBDu2lbVodcPW0shtCP6A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695a8f28b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/main-sb.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/main-sb.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jklkvDj46HsrkcioNF1cru5LQzQEf4gLMQxr1XT%2BlVzmomtwddlhnDTZJ7%2Fi5BJu4dsgrN08Ock0VqADcpW3RWNvtu5EtPofIyXfxiaF5nBskwHJTfRV0SPJkxdIVMf2W7dmfA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695a98220b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19317
Expires: Thu, 30 Mar 2023 20:55:29 GMT
Date: Thu, 30 Mar 2023 15:33:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19317
Expires: Thu, 30 Mar 2023 20:55:29 GMT
Date: Thu, 30 Mar 2023 15:33:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 6lKfWQ4mVZdKDpPhp9KzllP2eyH03CsFufQxXVTUZ1s1t1gQs1OUFA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
age: 64122
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db24198518d1a093c5c03e92e53925a2
288898a60e0a029946e7d770d2b0c64b6f3bf51d
4a15da439fa1a3ccdd3d329f250bacaab581287183293c4e367b05c2a83eb66d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12233
x-amzn-requestid: 781fd422-c720-49d7-bc90-6f8b18751caf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAynHgNoAMFvCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae76-5327bf334c985816289507b9;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: xT4yOqmmDOGyZ-ef--AYRxpuzlFou0jf8p4BWB4qUCDXR1VStct5DA==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
etag: "288898a60e0a029946e7d770d2b0c64b6f3bf51d"
content-type: image/jpeg
age: 64122
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRP5DG2BoAMFrdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 00:11:11 GMT
age: 55341
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d109c71a6d804ac43ede46ac74f2065
251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4
de2d781c75abb41ea14c0f4c072df0977562d824d81b5f4ca28c4f635067a17b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11118
x-amzn-requestid: 71508920-b2d8-446d-a498-8bf8708af974
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkA4qHrpoAMF-0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae9d-5191b68a4c7f1ee042a05583;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3JIDZJcepJFwPc0anfKz5OO8LZY3cFMI4oljiaft8jBgltzp2iYJiA==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:50:13 GMT
age: 63799
etag: "251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28245e40-16bd-42a4-8bce-13d3a5e205a7.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28245e40-16bd-42a4-8bce-13d3a5e205a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93a665dd6e5dd69c8772d29764834cb3
c5a65e7d2b648ab55c758ff43ae62ed03ea1cef6
c160269453f66b71981c065b0de8c3b88935dc9f678ef47d2d7ad2afb1dc5df7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28245e40-16bd-42a4-8bce-13d3a5e205a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5664
x-amzn-requestid: de6df023-a8ee-4f43-843e-567fe1492c17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CewdBHOGoAMF1og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64229453-061fdcb64703d00d020ac124;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 07:16:35 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 2g-LYr-b-IJim3w09VnMfdGbG0gH_Tywg5Q836IMdWb93R9Y6sjNUA==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 07:32:11 GMT
age: 28881
etag: "c5a65e7d2b648ab55c758ff43ae62ed03ea1cef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2021c271f9290204bd14cd2a3a1680fc
39b68cbcaba381d63dc67bc289fb67c849adb9ff
a84c5dd1e52d7cd535e04cb455891a1442000eb0e4381031c976b4cf3be96f2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4549
x-amzn-requestid: 70e07309-5fc5-4307-b455-29a187eae0d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoBHFFoAMFx5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afcc-298f18fd0cf0b37465a74c13;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: kbG1Llnn0Elhz5ItoJyufkUgoB5FhmvLpk2oQox2HPnSHeBfCOuXXw==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
age: 64122
etag: "39b68cbcaba381d63dc67bc289fb67c849adb9ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uvise.lspower.xyz/usps/static/usps/footer-sb.css
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/footer-sb.css
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bYIE5wdB83WHXbQbh6im%2BiDRoY1MiNcBScAt246UHovQYdY3azFShN5A%2BuiUtJuuiKYy8m8GUHrDHUJQvvXkhwNZ1T7RlqOz5Hp86And1A0NZcLL8eYSgeY3jTBh1UoVe3gt0w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695a2d18fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/go-now.png
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/go-now.png
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now.png HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5TJe%2FRztA%2F59GijbFmal7nT5xHadfo4W2lkcmTcfPoqR0Fe1FF5rOSIF%2BK0tlRNZA1hH1nMgQ9Z0Qp3dDN6%2FhjFSy1F37jfE5fMNnOUwCCWUsYRGKctbL%2FnVsd2%2BblDXR32otg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695bdeb10b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/go-now(4).png
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/go-now(4).png
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8OKULawrCbf6FtdvcZ1RoVixGnYXksPoDB0Kh8FS5OJEgODPbwBN3nExO6qNiy8tNZlqCmqcwonFg3lynO7T9diQVbkfXtTyBloYZMN4OpivBi8MRLm1KpEW8jlXgQtRpOctGA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695bde40b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/holdmail.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/holdmail.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 80148b3cfa9c6d4e8ca6d6d33ecb4628
64a11b934f382ccee2ac983002a41a84e8bb1512
f499fd28a410a874cd35bd7f0800e00744fd552a3a307710e341852085281f97
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JXh1ChrkRGPRiOlLrHw3LADGUpbwba5TeuDKul6YBz2SUIzC9JuEEMNQZpUgNN4PzwBf8Fny94PAdezFrevIF5CswzR9WI2wuozf7jV%2FOxS4m0MtyNa8hNe97YeVIxi%2FpRlWHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695bd93f0b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/find_zip.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/find_zip.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 8b726b342539f7e56457be8aa4d91481
52248d98eba45e44dd76f8fc2e4bf758b5c0fce5
812b793c962cb0d5301edf4524cfabde7529f5f79047283e5815b4965b09b9ba
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rnhXgPszJRjMz557hEaaXkVrajW2EM%2B2eRaTuWkzG1eUeLTSPQOzjHvpSE%2FcrARxtFkhlrNgJNEYvw5WUU5zwFzeVUMBMMTJvFCfzYAdq3wb8%2Bx%2FMDpqIrp7JsrL91vFnDCnMw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695bd93ab4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/calculate_price.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/calculate_price.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash a6d4498af738e5e40ac70b700b0496e6
065d183220513ffe444fc4f85beeee1946251846
10a712678764d0d01b4155985eb091bece52d5cfbbd2758c9093854da72a280a
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/calculate_price.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SIjUMAN7cOW110GHBLf627FOhmU1da%2FdeaOeK4UCYXsVTt5rnpyPiELm14Uz%2F0Bj1jQYkWNW9PHKx%2B6uhuL2CGLvAbxwpPQHi2mi8L6Bq0F6J72sKClJds%2FfbEvW%2Ft%2B1rOfgXA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695bdc3db4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/po_box.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/po_box.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 32b0d387be726370d165e82321cacb19
2ac31b87a97c30c902bea18a56b4e539e61a9a4f
ebbdbdb97252b0953e9441b278ecc991957b9ab0172448472e2d1e8c9a9b013d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/po_box.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7V5O3mOjunCevMzCe%2B%2B01krYdOc54MHKt5vbmK8KbhvUfx8SPj%2BKZMBPZNDF5I9NIbYoe8l5c9XFZqCJzOFm%2B4Eyjz%2BpGOlWd%2FhOPgx9%2BDIDSKDjBlxWNdkLvIZgeRUCfTnJ6w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695bdebcfab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/featured_clicknship.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 3100ad5de9a058441da9fe0b0aae4c27
dd66beddfbf1d9c69776cf6e85494e5d591facfa
08121a530cec08b9b5826ad738a65e43a63d34dbdaf7bab9b31c8f7f99c124c7
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZF80me63IUZyhR88JxFixfm4rKlm4wlZBcct8fum5MVLc%2BYSFT%2Fn1mI1K2cljPymO%2BuQa%2FmL2u90x6rh018xPQtS5%2BC5hztWmyFpUB%2FbXSQaJY7ZrqSHmmheH6V31ipumVyehA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695d791eb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/free_boxes.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/free_boxes.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash c09706c501a8998f784be92b6f4ee5a1
1609dc424deda8091d9afb159ea8ffafae4e72a4
3dec4685ecce3f3aba32ae3aa4d798738a3addc16791447354c75f6ca3136c21
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RF2W3SivV0wKqt5AW3okxpabcFHEtcs4lBIzPGuCi0Pzo%2F9AuNCdBDTKGGwfR1%2FNaSOXQ7UFPLJzwxfjwkz5u61XUzKZKoVqEf0etCXpa93QP79AqZM6zbrSKrCvRdbT3bz%2B5w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695d78d70b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/go-now(1).png
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/go-now(1).png
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KWRZysxCq59t%2FDp1nASNyLSi8KCfOIPUe8z9TynYzUKwm3%2B2lCzqHhWrrTO%2FiskVPnT1Uc6L%2BnCJctTBfFKW8FETG89CVbjUUMvlp1t06hg8bfh3S4vx7uarugKorc5Rn4jtsA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695dfd6fb4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/go-now(2).png
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/go-now(2).png
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fqzafq1YoPGkZ3fQC8iK1ZgSGyaLu7GVm65jGyuOYqMTHbmonGbxxY5fytS7k0c%2BUmvuVghQkH3TMxObOpvP3PnIXhZ8oBgQasNWttUKHxKvsUWT1qcqlT5yP4E5CKSB2PTWgw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695e0851b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/go-now(3).png
104.21.64.71404 Not Found 109 B URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/go-now(3).png
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=srqZytjMIeRj5rXLqR3CuPmSOQNAF4omBnhg6lIu5ZyO4j1N4uUF%2FLGnHZFX173bmyG4jsPrArwFrIYYJ3NARtFutf2leuzeSpRvi3T9ENZQzxgEMXEXowTN8wyRKJO%2BWwGTkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b01695e18bdfab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/logo-sb.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/logo-sb.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 72e1edb4bb91809aee9c180c2328f393
14e88dd5fa7a28c6ffc610355a7205d2e97092e3
8b55019ba17ee68110921d74ee25530f9fdb57007ca5de4ee02150ab6116fa7e
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jtlRniv2aD37j26I3fdAeq%2By%2FsG%2Fbrhaw%2B%2BQ3xBaftP%2BenHgUHHzkcOpAbMI42SIgRKDqTTeFmPqtb5t4JepRRTm1LKjTmftFvQpmFaPmNv%2Fxj7qTOw%2BNamxypoVmnzXKDSJnw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695debd50b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/tracking.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/tracking.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 096c0c6f35d8a06b71723d1bb72bf91e
7805619f7fe75606ceee6de266ac4bc155d59c9f
45230e76fd02914444852b4e01241694a7a4b2db2938d500ea267f71b2b6ba80
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/tracking.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:32 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TTUa750zPhqhI2dLPCCaErzHHyhEhzjlRFYKfsu6KSmHozDltmBY9L7UMUiG6E%2FFwB7kfZCQ73GvPa5UGQWJVDn%2FonOn2MKhzZS9nGtNilJBkwUozlmPn5ypFdIW5mshAOyFmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695e7abeb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/search.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/search.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 5f0342f2ee998e5f3aeff335aaef5c97
62fec818118b5688a7eeeb200c8028907477d75f
7de85ffdc1bd3c8c815c900a34bc997d0f5349745c5992c036a34d4a57c99679
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/search.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DXYg9oPyo9jxnCf7DUs21Jk4JIAAoh2dsGfdYzeSynNJ9BnHonxQV1VjCkMD6Xf6ags8vJw0aZ6%2FbVpWdSv4Ibxy%2FpSHljycnRSxGHeA3Jdf8A0AEI4xv%2B%2Fb90119dH0c8%2BzLw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695f8b0b0b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/hamburger.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/hamburger.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash eacef9014b8ab7e7d6a31d8213708cb0
d90c7a4d6aade9be0f0ec2d6af7b8c5c88d0497c
de8053440c3b3e6f507fb0c227cbb3acc888db15aed7989ae037a32a75d4767f
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2FnnWoYAKrMVD8b%2BnQbmwKZ40kfJwDn2aSR%2FkFZ2J2aoXcOHMScqpq1jI4WlBfA9zZ5WdSgvZxcwz6OOCz5adCDJUehqdYgMKfhV8e%2FDxM%2F5Rcax9q1kTD5m%2BR3e9GAYkpqi9g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695fbb30b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/schedule_pickup.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 14f3e306614804b5a2556006f9c6a779
851c31a5114cd499083bafb16d67391b9511a72d
7e6d173420c744bd5786bcdc4ae7c0964155bd7be6454110c2088c5b96e6e584
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=98FLciZgKRpfhjUS%2BZjE60Y4HR54IeVTPeG07MYQ8M0J%2FZ4eBhGhRl5Rp6VwCtDtmZG%2Boh9PGdJMZSxOPlH%2BwrY26CPff8lP1TjBuJfGjIkeli3zXU2i%2FysHAmz36RRZowEPEg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695fba44fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/logo_mobile.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/logo_mobile.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 16554e87f6b8b445240ae7ecf9c5ed9e
41433d744f29c6b30ac0e47a501cfe7278a9619a
29ff6725c93a1bb8f186017dfda159e1abec32496bc24ad32127163259927dc5
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FKC3LUA1nLlxk5RRvgZUC43FLT126klSNEwMxmuZtHA%2Fnu%2FGLDMcVzyg0X8aNNHzLFTXLmEXifX6euQq68nBA71POOg4nYH9veJ8fKLuMHF4Mceg94Rxz3exp%2B02KxZMJLBrUg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695fb8e5b4eb-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/stamps.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/stamps.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 523d7170a6b9d3aacfd7d9a04dd518fa
957a6db5537ce78e48dfaee97424f3117a8746c3
ef06f3085d44142a8d20b7f9d3f4c0c93f5bdefc9926132ac35824b4dc5420de
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/stamps.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0Ch069If03u%2FA3ThprPddUQrGaoPuyIoqpJ08%2Fz5LIpgnxsgN7LI7EoMgayVOC41uqGGrjWt7YDTbbYhdN1f%2FzTCaq%2FTp%2FfUBxD0wszQmXam4BDtKgYVpMRgvRJaHBLKdgYXWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b01695fcdf70b55-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/mailman.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/mailman.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 07c105141e5d52601ae0090bca00d0c5
6c9db3be0f2d22cf2731a5cae4db47364788f955
b1faa94913ed13f03b6ba2f24f2403eae7f1cdafd6ba64b849797f650aef8b6e
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/mailman.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ZsYzDnkua43LqB12IzL%2BZQlrJ9JLUQG%2B2%2BNEbSCQOv%2BAqwWdNRtqZ4J57Ax3CWK1dDwYHhzaFHT4LVFwBDCykEoIuwCIcZ6yOTVxmQq46W%2Bj2Xjp9%2BQkql3vBI3OykPrWIoiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0169615d600b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/location.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/location.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 056c0cccf2dab73a38098181d2a01c6d
85d755e01fe8ebc86ed7f1a96f95675bbff10d59
9468e4660d70c420ebf0b728d8bc2e5e75e8b8a020a999adeca2f765c2228152
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/location.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TdPkZSsHw3iYN%2FYXHS8YniTWhV9mj10NzNditrCawxQA%2B5oSG%2FM%2B28oIc%2BanB5cERrOCqSQ74%2BIkxBJIRHYPe3EBi%2BLNlCjZY%2FQeIHz18QWmxbuwEIR%2BsqDDLGm3KoVROaaz1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b016960aeefb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/change_address.svg
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/change_address.svg
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 0168f17c28f74f873820fe25baf3e1ff
359a84cd710bc90966318e8c67bc3f22323dcf69
8fdbba8da700de30a59e52c66db1a6d416c1037f6a86caeeb159af322e80c48b
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/change_address.svg HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PMUigUvczfXzqy8jpsQfplOAVOImHN3JX6wE0O7hoKgnia%2B8VqnBaMr7cmAmLKvPEB%2B8UUKeWE3J2qTh4VpJgfOqWGvwfKddC4t8Vn%2F9Rbd0QCYcWunX4uFVuq%2FKqugTmlhtXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b016961dedcb4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uvise.lspower.xyz/usps/static/usps/favicon.ico
104.21.64.71404 Not Found 5.0 kB URL HTTP/1.1 uvise.lspower.xyz/usps/static/usps/favicon.ico
IP 104.21.64.71:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash de62ab8552b11be44d05b1e4ba6dfda2
aa13900db3237d0be9c6d2bba28b7dbac53c5909
f9b6e8036881dc681b4a4266f6fc13ae6bef34d7802976d36d81fec708e1033c
GET /usps/static/usps/favicon.ico HTTP/1.1
Host: uvise.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uvise.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 15:33:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vfnY2s0e%2B%2Bxd7ZN9d%2BhX9y22tHdccKh4cbqjoMAvBgz5yEFyifPtl7PShkZek4IQivkNm1t2wElieHrbEaL5GFGh2OJllL5K070rAr8P%2BsLTvwcPObiVyLuhHndUATfYpoCiog%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b016962d8d6b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1e861b518e06e17ce657c5f9fc15daf
214322b88798120159ab55c7121c8775727b8fc7
3438eb2b7e18d784416c139b42c036eefff3759602e4ce553815c628e1cb5016
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F611db66e-eb19-4ce3-9ee4-93c32afc29a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8795
x-amzn-requestid: 33d91f7c-7d04-405b-8060-33e438ed09f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkAz2GwKoAMFW5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424ae7e-54ba3517206ac61c50167c3e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: nORkLBTHqZ_ZrUuEkg9BcVT2TJzP7OLBRQtfUUzRgvwP9Q9dZtMFbg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 29 Mar 2023 21:44:50 GMT
etag: "214322b88798120159ab55c7121c8775727b8fc7"
content-type: image/jpeg
age: 64129
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tvwaacdsqk21u2k.lspower.xyz/
104.21.64.71302 Found 0 B URL HTTP/2 tvwaacdsqk21u2k.lspower.xyz/
IP 104.21.64.71:0
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: tvwaacdsqk21u2k.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Thu, 30 Mar 2023 15:33:31 GMT
content-type: text/html; charset=utf-8
location: http://UviSe.lspower.xyz/usps/verification.html
cache-control: no-cache,must-revalidate
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FZ2NJ4Uuqp8sAGwTTcUrz2ro8A2MVdQvMtMDeMyHkSDpho%2FSyrUzNRxQvPQYvvsyV1rMX4ojS0NZb2cZJ28LXeC5T2TjN%2BCOBX5cV9dyApXNammWvYmQliWxTTYv%2FmJm%2F8Ss8nxeWvKS4K4pEFE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b01694deae3b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2