detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 30 Mar 2023 03:17:14 GMT
Age: 66967
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6256
Expires: Thu, 30 Mar 2023 23:37:37 GMT
Date: Thu, 30 Mar 2023 21:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8e0c84bb4c8b23c3953fa21ed9609304
bba386505b766cebba17189ebe8219b2a644ce28
303be01b154868d266380af88c77b7db1c9b427540e19d4927b42364e9adcb23
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "303BE01B154868D266380AF88C77B7DB1C9B427540E19D4927B42364E9ADCB23"
Last-Modified: Thu, 30 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9269
Expires: Fri, 31 Mar 2023 00:27:50 GMT
Date: Thu, 30 Mar 2023 21:53:21 GMT
Connection: keep-alive
3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
172.67.177.236200 OK 11 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Hash edd82dc34e23464aff83bf16310ad562
7a62b1edeaf7808f98bc23b056ebe0cb4009b8ac
d124e0833e5f5834309bd10c2849371f12fa8da322e5ec5ff03279da2b508a55
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /usps/verification.html HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 30 Mar 2023 21:53:21 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uUpik2hAtQWyooyO9yY2VQ1qMeX7MTsK75KKFAsLVYwfr6ORZr3CgSgMLuEDZ1Mls%2BzqLeqNh%2BA6X1xrSr0GCMXUEiL4ePctGaSevb0HRNYc3sKe807csbd8k48PsT0CT8M63oT%2BxZmDnl385GK5Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395bcb93eb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 48 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 32138ef8ff46bf660e423138d5491d4e
44c190209bef11aee7402b6f3e102213b563a86c
49965cf9ca4560e8c42c5e0a875d96d4e87dda0f67abbf5cecab87bbc2a26770
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: lOiIO21r--fxeBDzdaINjEzjFA65vuaGqUy0JqP3GtZbgObblYBY7Q==
content-encoding: gzip
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:40 GMT
content-type: application/json
vary: Accept-Encoding
content-length: 48492
age: 221
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2470
Expires: Thu, 30 Mar 2023 22:34:31 GMT
Date: Thu, 30 Mar 2023 21:53:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jRVvzqyjH714fisVxFMMKjJO1wrw/lm/SHA+56SHHjc6c6TwoaqgqRO0JMkAfHr8QX38UAv3aWg=
x-amz-request-id: ZSZ1SDVYM7Y24EC2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 21:02:04 GMT
age: 3077
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 30 Mar 2023 21:53:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b93010cbf31ba3ec785b4088e5d0f529
c0f1ab8a2aae3c445a8f24959a4eea433a345caf
2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7963
Expires: Fri, 31 Mar 2023 00:06:04 GMT
Date: Thu, 30 Mar 2023 21:53:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Retry-After, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 21:28:18 GMT
content-type: application/json
age: 1503
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/bootstrap.min.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/bootstrap.min.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mpEt9FN0SclB9XDgyQW4fuzeEbGDU3zsPGf%2BvGwpuaTTD%2FON14GjSH7tVKVTYZGlM5fkZafwRZ%2BcaV5AvRlWDOtxVN1fZeOyIDai0miMaN30xHZh80%2Fw1aHH1xFF5lWiHPPhm4gx7VjN6igZZbDA8g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0bdb5b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/megamenu-v2.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/megamenu-v2.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7C7sgoDx8iv6VjcQSf7ebRu%2BqfkS8Hvh%2FqEUACFX7A4Ntb77KCGlN5gdbXC5DXWTdZEP5rt%2BSotBpnQw91CdT3lcej%2BTSiWsbgYT6hS8Yr5LFsy%2BliNYQ6BQEu04AuxL3mpecDxR%2Bz6z4LPbMYkBhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0c891b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/jquery-3.2.1.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ew7PwCDI967THQuwY%2BF0ehZeJAkKPJlhwYunX1vFns4R2d%2F0A210mYM3sAmrRIVtdRTnxwGewVKvHiv%2BfuWsl0TsV1letHoa191DMPNl%2FICBzL0KaVdQezlIDtWh9mjmBJ9DvMflR45MZNzlJe0xIA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0e8acb50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zuam5vXmUkpYIHX8I5HSaxb6zsJwp%2Bln%2B3GAwei4vGsaSavJknWzmPsSWS991gj%2BalFdENts6ox5j%2FKO5ox8HAHVIA7gcZjgAINeg5pnzOsmFTwAo0WHmsglbsdUcD4aK9%2BdIIei3acZLNeB8CywOw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0edd8b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ie8wYLkeezhAUzfPbT1qn33B6RKB0v6JhUfuJwadp3t6mHJpl7Rd42rT1AmN4tO3ZMYUH%2Fp7xNdhJ036MwoxlNO62f4dsfmbUKP8u64TfJy%2Bz6AMiC7fjQea4Pa%2FlJgCSUPtMUYe4q4zJ1%2BgIURuw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0eca4b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/footer-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/footer-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 119
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LJdxeQuzTqNjnh2J%2FqkoSX4SF5p1BRxDzwKPpSotKfkHcuAeVRrGvrZt8wqvcDCMeBLIIEf9b7cRwWMVjtFMLkZHTeMGHpk4NiR3KnHmQ%2FMbP%2BpPqmHzkuDZjK6bLOmU8YGJ3vFKRbyaU60E2nOguw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0e8320b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-twitter_2.png
192.229.221.165200 OK 1.8 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP 192.229.221.165:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 84846
content-type: image/png
date: Thu, 30 Mar 2023 21:53:22 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
192.229.221.165200 OK 2.3 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 84846
content-type: image/png
date: Thu, 30 Mar 2023 21:53:22 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
192.229.221.165200 OK 2.5 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP 192.229.221.165:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 81601
content-type: image/png
date: Thu, 30 Mar 2023 21:53:22 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7F32)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-facebook_1.png
192.229.221.165200 OK 1.9 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 84846
content-type: image/png
date: Thu, 30 Mar 2023 21:53:22 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=koE7PTaEy7GIOXYY8ifEOGQf4bYtfQw2j%2F1urUy6vPz6c%2FB6xXmpRcXDcD5lQ91nZzwtyUb%2Fa7HfL90fFqopbzoNnnHrmbdZvc%2F6rzSwYqpHBm0RXPQGApYU6cmO2a9aHQSqBagOuobOdsb01zIndg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c0cd071c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(4).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(4).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6P8EehignHUiRPMijzmphJVXnQZSmnJTO7erc3eiWJzaZZyP226rQZRSYYvk1lLVF3%2BF0fKYdDKV%2FUROxnj2gURGSlgigHeUFVS%2BVVzB46XeF%2FiKkUQoTvDwIi25p3%2FV5h0p0qG2frcVriI%2Fmd6Fvw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c23f3db51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/stamps.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/stamps.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 081b129042af03ada3d3aad2d9a67e59
df3ea9ff9c7794d03989a3104dca5f19aa8402fd
3b98d82fe6634b796bab38c46a71e61e18ed5566aa00a825f90b929a53793fa5
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/stamps.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 115
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sZCTPLJYPnOu36jdN3AkVW6FciqUPtUSb3yNUyzVfADVrueFRNQOZ95xpHTyUtDLQRoMJUBphyTKCqtheR5aIsupPK%2BdEOxtMZFZCLkKD1HfddPcXPC6HUpaRGBVyrt7FNdRdvmziBiTDwoBGt9XnA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c239e0b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/schedule_pickup.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash c3973f31059f9eae49d4696d4186800f
350885869372f226d6984a2bf1a0926977004e46
10a04260952ba678264565ab63c5d693edf4b8a925906bf4a531e9097a75b5fe
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9eqFxIiSWyHk6Tqe3%2BXDGqU77NSFhIr9sVk3%2BestCuljuheskCynPP5gjVTrMgr7ULFLNXeo%2BaaEztPsmXo3Ep8fwZGZe0%2FJ6sTJHSrcjX334z5pHY6wn3JSywVhdr8luYugvVVO10c4KBxGUlDfHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c23dbeb512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/find_zip.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/find_zip.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash a464d9f2aebfa649ef928909e13f3285
fe594203acb63e9fe10b7ae1f33c7fb372ba828d
b4361ce9fc3a2b2d7968efdb5bd1fc52e995335d7b9efcda9654edeceb71efbe
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bxWYcPOSiKZpR0XgnpprboskIYn9DhaEGF4xkt4EOlknK0%2FgQLX6Wo1LKoEwtUUsgioGDIMNg9yTV2sxGTYMx8DHqIEQprbAflXkIe951D7IbIKQNnnG8InxWRIfUTVJc1aTfNJR6gPXN%2F2Er%2Fy2dw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c23e291c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/hamburger.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/hamburger.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 7012d886584cd7d4e73df190c2ca0fc4
c82c45dab9f69070f82086f061e56558a2832791
821e78e8722454e1f0e74e41564183a893ac829434500765cfbd73cfbbe896c6
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qa04ZCUj70hT1NJCU6QHMCuQY0L3DorvLnLUERYCtkO2gzfPmiJivsC3SbJnIyGuoASHptokKPGrWl2RGA1pdiGjL7q7EkErhSrM3YjwhH5JqSQEq5QnaRoutpEMafd9Se8piWPWcfl9iluZWkg0uA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c23f40b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/calculate_price.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/calculate_price.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash d9ac4efdccf126a55e94e9dcada3fff7
f64a33d361f9b00d497a7eb7ca52e42235e246bf
15d812a40e83b00151eb3b6d3c618526424f1b981738e7477ba0c94bfa3dc575
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/calculate_price.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bMjl%2FVYRDMFm5%2BHHUROONO%2B8zjgFtDqnXjPe9jySRcR37%2BVrW2%2FG3LhVbqG71g3RPmABcmfkIQApYH0wo72sq0MzyT9amw%2BI6gEnW8%2Bb%2FD0GDqK0FQeoxsQ8ViUL0V2e6TOEGtwDMnK%2BEV4ZaJpiAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c239080b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(3).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(3).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KlUQiu%2BiConeqzV%2B%2FWz%2F8VJ89U0Ewcrw5HZaO4e8Ps8amH03uJTUKIyk%2FQSOVDMcvpubqStDL4tBPXyrpnx8sWgSEr25MOAjqKmL23N2JpvzdUGaSnnKYWl8EUB964CUMGFOzzO3D6xeLWe4TQpaOA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c24dd4b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/featured_clicknship.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash e8bb008eb373ef6df2544a1d36b282d5
93ef29e0ff3c15c1706906d26127239d43d21e9b
482d88435db16204172bc2df8854e4fa3243b83914f3907eed5cbc70d58812c0
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bbu74F2f%2FAze27zePLhqHAZaLpZkTSsv5Lk61bqFb18agSKNkLOyhNvUbQEgFgkJpnMIH%2FlLsNF%2F8eDIZbefKOrO7ZBwieHxbD%2B1tgKPyT9R17EF%2BDDy9YZkBoNv4YF%2Fri%2FvuBYZlNbb8QQcFU21Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c24e331c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/change_address.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/change_address.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash a0c285dc336b1e5e4c878f4be9ddec75
896119949d77dfb923723692cbc4cd297d5dcf6a
aad3f86a4bbd3c5c5cffbe3b0fabbbd812113614d14b18f9197a6b099854a1aa
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/change_address.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VLC63QVYKiZP0iKg9nRVnJw05I33DYAmgJRSZBfeutWCfC8OxkF0E0%2BF8H7eKL58CIg6R12op9EO8sALoXBexH4zbUL0FBuuWcm4nw3IWLhV29dtW%2BKSGnimWt6b1xCX5FhGOYj%2FyuEUUnxIrjHBqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c249f0b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/po_box.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/po_box.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash f8a9ad881786bf7f814ca19e3256fb23
d1f9b582d84a7e3becd3db10c1a77a70110f01aa
97e2ce262d7f93e19ffe75f521cd3c4f0838543d861a84bcee9b5824e49f0181
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/po_box.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ks9ejKBYNfZL1mPsxtA8TnpotPJEwHEsu7o7XZbNYJ%2BAlSUDZmGUiNQrjB0RiN9BitCXVGADN2Kz1ZNbAoryCEg77YRriSjOAaYZ55GvrlRzHJxoUyaVQr1AhDbBUK7Bu8GWpya4h%2B%2FieKbPbirfmg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c24f4eb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/tracking.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/tracking.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 34b2cc69f7aa20dc3e54257b9cfa1557
c8336c448c2fb8feb6ff47942af4bdc9f2d31c92
4084b9d73bcc3a408e0969fc1983badfd32507465a10f0016408b924b3c877ea
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/tracking.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bS73ofSiRoxum9TX%2Bapb1s5IoX42YTejBadpkpsiD8KWKAXQy7DxDowYEFjQkruUSBMvjv3RJpFUZ6C8jjaEbfOzmRsbzlXLuF0wEk6lHr9jSIbvBG5BlZiisgSGb034p3zNBsB%2FI4TVKsrx28kjaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c249180b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/free_boxes.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/free_boxes.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash d790058a8aef5a805e1293f96d9df7a7
27b413a19437cb801efdcb7e12b4f0a00dba7039
e9086f4d1c2c8184010e43d59c4ba31f1ecbe0bc66b2f27416a5b25c42c99d24
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zXZ3WPSyCxoVDq9S5ZCmNDo3ru%2F14mj5bprFYlC1fQDi%2BYKA7r%2B%2B4BnOzDfqgYUArwcVQ6pFYwF53NE%2F5rRHgwMv12tP3sQwyX%2BXs5oYBV6dw23UEAknnf%2F7b2r0vWaIecbSnvNiE4eUV4vSbaNZbw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c24f64b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/holdmail.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/holdmail.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 0b5bc7c9d68478ebfef5008f3399ac13
6d95418ad67180fedabb7c3e88fe6f0fc2ffa3cd
f2f60d477835d1c09e5e56a90662a3f3515fd0e4d70b4c46cdb18744bdbc6a99
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 118
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCniZQduJMKOLPZs7XPavG5hbxfQJEZqOAcooaRHVqHEpRmyxexo9DRyn0YdG37AXZa9glYWQHGf97AY6agEPo4O1edRaSqagZ6agb1DlMiU1j8Ebx%2BgWvmkvmn6LBdBaGBi8LcV%2BnUAQp7Covzb%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c25df2b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/location.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/location.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 058cae6605fb74466d567b792ba81266
290747ae27481150186a396b7dd9ff85870a2a67
c85b9bfc7d0b00aa8d42426b062048e49c1b50471688bc77fb48f77e6baa3388
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/location.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 116
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ew01uolSrMadXidrKWgo4YLFDCQ5TqLClpJE80gcBwmfJc8LhsS6slUoFwh2%2FxMvoskGqjeHFQJ5WwYP6AbFgKbnova03L0TSM%2B%2FQTNRgqJfPEnMvF%2FPQ6fmK3ReXE%2FxnVgVlsjgsSqqIMPWQDziiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c25a08b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/jquery-3.2.1.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1HpsYNAQ3PtcBRGPkY7n2ScZ5x3b9kWDtR37f5urxi0pe2MbeMLMhzVcA%2F7f17c9M%2FiPlgfs23iPXe%2F6Nnr1EAytCligb6ro%2FfMZaACU1JtxO4XU1Vdmhq3R5%2Bf%2BJdu6za69op6fF013VRJT8eKJhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c26f7eb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/logo_mobile.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/logo_mobile.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 07f7ccef784cf01fc62ac8f00f5273e5
7e77b3b49e5e7cd71f74c6a20fe896d9cf9c7d52
6d866e2c1d625c7d57abe18297edf44ce04cb06e24d145116626546b8bdfb7cb
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TgoKCa4SITaEEX0HCQ6PXB2I00IzknQ6ODni3Zwq%2FmZFTtfvSUKw4d9XBEia%2B%2Fy9As6t293xB%2BYxsli8VBqDX82x3dA9K0Z1NHNnONIiN0SuWz5v%2B1xZQE%2F3RS5si9toGYNAJvmzCZmqYGAV9yjvIA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c25e451c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(1).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(1).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AwW16ThO%2BqQjdfYZLn7Ck%2BkB%2BfemnBA7LiBhLzYw80C4eEff2QxL8PeDDdl2%2F1vTIGPUupzdzH3Qm%2FoYjZUdJUKmKpFJBoFcA36%2B0Qu2d9wHD7w8zy5%2Fx4syJo0orE8dE6Swfa%2BJ%2BL%2FrqhfN%2BxtP0g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c26f7db51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(2).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now(2).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B3iEod9a3hjmApPXmWrH42CZ7dIv6QTtwpM022bzNAUoNJYdPug8feIhnqUXtICZTL1RO32QsmZRuGdZCHuGLzkEs%2Bo39%2Bb6h3D%2F9Qxw3FABG1OAI8c5Z2CyEmb4sxu9Y3OJs55dNUIiaiH44VGTDw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c269240b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/search.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/search.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash a0b8519f10cbfac0b9be02732161ab5e
66c7010266985e0c6460c688e821f6f34c9e1f0a
ed5bd3b3ae04e7af759cac4460c29896d7c18294a57dda00ff6bc84bedad0c3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/search.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 116
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9JKW73slXjBWXhFjqzlRl5zgD67RKVNRmQYEEtDD03vT%2BaIEpZQsu4UbN7PhUzHlLgjlRx8fsQFz4ECCDYv%2BR1LcnskzIyvFaNQ%2FRoBooipTMloF%2FLgwVR8U2suDGdA7p6XYQmIXH%2FxOjV3Oe5HAgA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c29e34b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/logo-sb.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/logo-sb.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash b7d0c36751f945e66632644fee310180
0ea620ccdb5ef952dbeb7c26d35d722cb181a763
7c982a54a95d6a84b967f2bfcc2188eab1292cc57f5a9f4aaf86230309a37bad
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 116
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hFoMX4KBbXUZmlV8TcEaUbbGcsBg0XYOBMJczft1DsDtfyIfgT2rOnv3H20CQdh2MCHGCLzVsekD6XIXpNfupLgkxOS3nc06bZZGytjWoRGx2Os762dfWn1FYlKkUpPTsS00VXPc9g77vPVR6MChuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c2aa64b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now.png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/go-now.png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now.png HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 117
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eTkRYm5occBx619NeodERC4F85RK76liD1I4vLpVDsJL65NUbNE%2Bmln1eg%2BLKT011t%2Ba0PIb0saf2zLwW6jBZZCDw7WI9IkrSwszSyn%2BSFsn75mEVodW0%2F%2BsICFROZNZeqtEpiXmmr1%2BENgPMTrVqw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c2a80eb51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/mailman.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/mailman.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 4b6941bc920301304365f9bda89a091f
bda0a595ebcfcc270e952b0fab8163366c149971
a9cccd4a31a55ddacf39c27bf4075c20b5edee4ca131f665e1561c3e13d4a9b5
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/mailman.svg HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 116
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5DwZGttxBz5xQTR4oDqkDaweh1vUS8bXBfOeRLGmsSstAuf3nB8iP6pS7hc%2FcfQq3Tw%2B6psHU8O6SjoZq1o4J7uVKH%2FtGVoFSXMdchqMwl4DkdHaYLXblmGh4EY4q1MKw9PDEnvtkTXvxOivigVKaA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c2ae7f1c06-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=43HU3qZi2%2FG%2FcESQfGLVTVZUMfx8B%2FWWgEJ3YqXSLrlkuzq7Zod9ipis3VB8JfqkbB5axQ6i3LTP8f49vgcAjgDr0t3EKYUuFMAHw1Aye8sTVEWcb8Gd64HrOjK9zDMxj0G05nM6VWBfvuNMUdn0LA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c2ce57b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/footer-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/footer-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 119
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wFz8qg51GcdLl%2BYXFUf%2FfzIpoZNumVkBCZlF88cTIA4N53WiN7U8B3qGGGTkr%2Bae%2FwdFvu4fYmhzUmvW5G1vRUL9aw%2BsIcl3YwaoYo1VuWWUUnpXbsuRxz4Co4C1ZH0pFqCqxN%2FcXwx%2F6is%2B1aMwzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c2eaa7b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 120
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Bnuo0AdzYHq9FQAhXWxQF9MrXF3UHNFD1B4tLQhvkC%2BsaQze2aEla0Q8sANJnBdM%2BpiGNO%2Fdg7lS9vZbPsKP4LRDZv3i78e%2BajDH2jd7CHGtynYRDuUXtPGsG7SytXOjNkwKI6rSq3PdR%2FRFxW8AeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0395c2ee70b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ae064c74a3769d42109473ad05d56fb9
d48029ab8568cee6ab7416d3b476ed792d780a56
9852216f395a42f7b4792e852f9f9fa83e07d917a979237d5d7406a1d74edc4f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9852216F395A42F7B4792E852F9F9FA83E07D917A979237D5D7406A1D74EDC4F"
Last-Modified: Wed, 29 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9424
Expires: Fri, 31 Mar 2023 00:30:26 GMT
Date: Thu, 30 Mar 2023 21:53:22 GMT
Connection: keep-alive
3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/favicon.ico
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 3luc2eoiabvi87k3c.lspower.xyz/usps/static/usps/favicon.ico
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 87abc1d355c43fea1a66c14162b547ee
d93be4364f01994ddbc400037b6e37e159312aeb
3d36a371cca3b441077b939c06c5560ff319210a94a913b735c1202d5eaba5e9
GET /usps/static/usps/favicon.ico HTTP/1.1
Host: 3luc2eoiabvi87k3c.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3luc2eoiabvi87k3c.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Thu, 30 Mar 2023 21:53:22 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 115
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xsfndl1WXspojPLq4k1MLLHzdpTfz6j07rHh469FGQigQP%2FxGcP0YOWqj9%2BYZBbM%2FiV7nm6nzEwkJOgb94CXDO2mVgqZxtfeOBl2LGepyT%2FxVcneLAYFZBMA1FHWPTN2gkRWjCPQWanW5sPV98nryw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b0395c32f15b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CAtcasI57SsxAPMzl8Hfkg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yGqZUZBU4o3M/jGfYMqnvzFuCvU=
Date: Thu, 30 Mar 2023 21:53:22 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Pragma, Backoff, Expires, Last-Modified, Content-Type, Alert, Retry-After, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 30 Mar 2023 21:14:37 GMT
age: 2325
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash ba364e422ec1cdd9965876020d80075a
a0d6d06766f9eeca919d90cc07a583385ca9a57a
40a50fd9ac56c5f069c960cda1469b628259321f560177d7aadb04b1a9f0014c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4998
Cache-Control: max-age=156324
Content-Type: application/ocsp-response
Date: Thu, 30 Mar 2023 21:53:22 GMT
Etag: "6425b0f0-1d7"
Expires: Sat, 01 Apr 2023 17:18:46 GMT
Last-Modified: Thu, 30 Mar 2023 15:55:28 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680211589275%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221680211589275%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (22067), with no line terminators
Hash bc5a5f68be3fde203d4e1a03441a376b
01f8a31a9c2ce13ca576fa580fcfc63c5c130abb
e208e89a389fcd19cdfe6ed8c6ecc060a2d52a4a705e4bf8d22e83620a500965
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221680211589275%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22067
via: 1.1 google
date: Thu, 30 Mar 2023 21:26:57 GMT
last-modified: Thu, 30 Mar 2023 21:26:29 GMT
content-type: application/json
age: 1585
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1680201445669&_since=%221666204638208%22
35.241.9.150200 OK 49 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1680201445669&_since=%221666204638208%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (48988), with no line terminators
Hash 6b4cb6acccb2e110978175dd713538d9
fdc93e3ac37e90c0206a5d58ab241f05f1367d2e
ad955db5572d6dcee5dc2add8aab401a939b1d1631da31439a6464de13d2e985
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1680201445669&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 48988
via: 1.1 google
date: Thu, 30 Mar 2023 21:52:18 GMT
age: 64
last-modified: Thu, 30 Mar 2023 18:37:25 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: wphS2B64Eo0fQ7BIaXkf3dKyQYUtJj9xSP17znQwcqzaIZZ1u9/rVtdc4q7/7zXtOho3PQkHAJs=
x-amz-request-id: K2CKQ0P6CHWGQE42
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 30 Mar 2023 21:03:04 GMT
age: 3018
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 30 Mar 2023 21:16:07 GMT
content-type: application/json
age: 2235
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
54.214.73.137200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP 54.214.73.137:0
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Thu, 30 Mar 2023 21:53:22 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2ec385afa181e1e1a7ce863d2542058a
333bb036f3c246f9b72ed796abe3b558a96e961a
a12dd5c27151128436b3711d161ec618c44ab2c729e42931175823c3b0ed2550
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A12DD5C27151128436B3711D161EC618C44AB2C729E42931175823C3B0ED2550"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13826
Expires: Fri, 31 Mar 2023 01:43:49 GMT
Date: Thu, 30 Mar 2023 21:53:23 GMT
Connection: keep-alive
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
34.111.73.144200 OK 807 kB URL HTTP/2 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP 34.111.73.144:0
Size 807 kB (807180 bytes)
Hash 914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aX5gtrfIvrlfrmzn3i+2IqLF7UX9w7+97NePjBD0nDkbKdNThX6dTz+ikiY9V5469opwv0s3KdQ=
x-amz-request-id: 43ZG072S6Z1BYVFX
x-amz-server-side-encryption: AES256
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Mon, 27 Mar 2023 13:47:07 GMT
age: 288376
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/gfx/changeset?_expected=1680018554787&_since=%221643818378440%22
35.241.9.150200 OK 10 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/gfx/changeset?_expected=1680018554787&_since=%221643818378440%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (10096), with no line terminators
Hash ceb5afa740b44e3ce7f4227d4b439113
c61643d28463d062f8ffee3b8ea1cd89cb7b5a6c
0a2f9b659d2e0c816d958925eba9ce4e1387ef3571542036b5c9641f0f364c26
GET /v1/buckets/blocklists/collections/gfx/changeset?_expected=1680018554787&_since=%221643818378440%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 10096
via: 1.1 google
date: Thu, 30 Mar 2023 21:36:01 GMT
age: 1042
last-modified: Tue, 28 Mar 2023 15:49:14 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1678922485545&_since=%221661199949574%22
35.241.9.150200 OK 25 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1678922485545&_since=%221661199949574%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (25354), with no line terminators
Hash 1904d8293b5f2c002df47873f23e827b
3ad77fb86caaf84886bcd6a811e39c918ba39a34
7600832994dcc92fd44775fed282ca3fdf7baf4333d4ad8310ad0b50d5e010ce
GET /v1/buckets/main/collections/search-config/changeset?_expected=1678922485545&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 25354
via: 1.1 google
date: Thu, 30 Mar 2023 21:43:15 GMT
age: 608
last-modified: Thu, 30 Mar 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1680130245939&_since=%221666279968541%22
35.241.9.150200 OK 71 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1680130245939&_since=%221666279968541%22
IP 35.241.9.150:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1cb5e8acb1eaa3c494afe656851003e0
c98665c9870b343135d1061880ab6ea91715e791
809036fd3df57822dac1a263f95920f8406d5b5f9fd7f195f3758ca451a6e3a6
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1680130245939&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 71260
via: 1.1 google
date: Thu, 30 Mar 2023 21:18:42 GMT
age: 2081
last-modified: Wed, 29 Mar 2023 22:50:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1680048066000&_since=%221666483264567%22
35.241.9.150200 OK 94 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1680048066000&_since=%221666483264567%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash f4572adefd3ecea7598420c956ee846a
730c7e0818c2be35cceaf3ec67ddd2556678510d
fbefcc3fc55ca43a43fca916443ddab8c96f406c3ea1a79dd862f3d71dadb4ec
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1680048066000&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 94145
via: 1.1 google
date: Thu, 30 Mar 2023 21:18:42 GMT
age: 2081
last-modified: Wed, 29 Mar 2023 00:01:06 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 30 Mar 2023 03:17:14 GMT
Age: 66969
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1678202119172&_since=%221662044085942%22
35.241.9.150200 OK 7.0 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1678202119172&_since=%221662044085942%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (6983), with no line terminators
Hash 43e4ae012aa36f9b6a3297174b84121b
114a70a8f2dbe4fa305435ffd386d0bf93009b2e
414f92b77ac1003e257269744bc94665e94eb8932460df4d6b0b80ba8a9ddce1
GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1678202119172&_since=%221662044085942%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 6983
via: 1.1 google
date: Thu, 30 Mar 2023 21:27:30 GMT
age: 1553
last-modified: Tue, 28 Mar 2023 16:36:47 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1678736907773&_since=%221656585893704%22
35.241.9.150200 OK 1.6 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1678736907773&_since=%221656585893704%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1646), with no line terminators
Hash 0530a1e9082b795cd4fd4c2b8bd25d70
3f0229439b1d96f80fcb6ab6b77a25feaa8775e9
84fac3b241036cfdcf0f5ded9e9a46d2b49eba4344b3db83755f7268ee21f553
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1678736907773&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1646
via: 1.1 google
date: Thu, 30 Mar 2023 21:52:18 GMT
age: 65
last-modified: Tue, 28 Mar 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
35.241.9.150200 OK 682 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (682), with no line terminators
Hash 1e047b83920b53efa84372fbf1a81bee
e2404b9c4d03d1c58e71884919a54c2f9a3dedfd
7e9d0acd7bc581de92f53a81423bd582b348c3c871a02cd7b26229313d5e6013
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 682
via: 1.1 google
date: Thu, 30 Mar 2023 21:39:36 GMT
age: 827
last-modified: Sat, 25 Mar 2023 16:36:56 GMT
etag: "1679762216708"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
35.241.9.150200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1251), with no line terminators
Hash 544e218878f656b4373563a094716a70
ae8f7f0929f1f4cf0b28eb0a2b5943e148ca61a9
532f508ccf0e693debde8f684a0fd170c3296dfad6f1bb27c672c37af6c3e7a7
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Alert, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1251
via: 1.1 google
date: Thu, 30 Mar 2023 21:48:08 GMT
age: 315
last-modified: Sat, 25 Mar 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1742), with no line terminators
Hash c6ffeaa329fe3d4b15ca88fc8d960a12
f3f1fbe76d66e7d72122d56efa5d47a660c758b3
0f4df13e808c9a2caa24aa9c2419b0b14f9a79514f32bedf2addb947dd285608
GET /v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1742
via: 1.1 google
date: Thu, 30 Mar 2023 21:49:35 GMT
age: 228
last-modified: Sat, 25 Mar 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22
35.241.9.150200 OK 2.4 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (2387), with no line terminators
Hash 377da5cb5955db6a3bbed6eaf61e789a
64f5e967b2d903ad2934ab11a8c567dbf282b025
60fe6df1f2d1e2e1727f1b8d44c1102f86558928b4df9cd7a92569d04f8724cf
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Type, Alert, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2387
via: 1.1 google
date: Thu, 30 Mar 2023 21:28:24 GMT
age: 1499
last-modified: Fri, 24 Mar 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-rules/changeset?_expected=1679600032742&_since=%221659924409785%22
35.241.9.150200 OK 772 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-rules/changeset?_expected=1679600032742&_since=%221659924409785%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (772), with no line terminators
Hash 1150fc438e642be5635e3234834367d9
a421eab9d39f0fefd6a1f2ecda9fc11ceddb646c
2b980c60a311dafdf93d9983c4ed8ac7dea9f7ff61329ffb1e1a24d0909f3d15
GET /v1/buckets/main/collections/password-rules/changeset?_expected=1679600032742&_since=%221659924409785%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 772
via: 1.1 google
date: Thu, 30 Mar 2023 21:37:34 GMT
age: 949
last-modified: Thu, 23 Mar 2023 19:33:52 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
35.241.9.150200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1506), with no line terminators
Hash 318c328ba16a767b6d94b0cbfc1a8b4d
40dfca34d6034f7bdeb27801f3b485e001699c38
6293349b31e326d2e8e4001e780554226b24584f981cc1325d70e48fbfa69ed0
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1506
via: 1.1 google
date: Thu, 30 Mar 2023 21:31:10 GMT
age: 1333
last-modified: Thu, 23 Mar 2023 16:36:48 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
35.241.9.150200 OK 935 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (935), with no line terminators
Hash 9122f99473d982e0cf08d156d80fa431
0c58a6dc78b365762e6cce14075639d4b5e12b15
5a12e97c12a31b264b4ff70f17bf92ed19aff7cd04029d71d913a37593e3d600
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Retry-After, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 935
via: 1.1 google
date: Thu, 30 Mar 2023 21:50:52 GMT
age: 151
last-modified: Thu, 23 Mar 2023 16:36:47 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2654
Expires: Thu, 30 Mar 2023 22:37:38 GMT
Date: Thu, 30 Mar 2023 21:53:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2654
Expires: Thu, 30 Mar 2023 22:37:38 GMT
Date: Thu, 30 Mar 2023 21:53:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2654
Expires: Thu, 30 Mar 2023 22:37:38 GMT
Date: Thu, 30 Mar 2023 21:53:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 809c8ac4f4ec3c118e43e401ff7f1570
5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29
5c8e37e45cabe2b53d654fb01f869846c282f53b36a8fdb3521992aedc96cf70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2f9b47f-7e28-468a-96d8-f92534ab813e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9471
x-amzn-requestid: 3882bb5f-32d0-451d-aeb2-ff6474747a14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVE_Gx_oAMFmsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6426021f-486afb1d6942e493158fe68a;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:51 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: Xfe4nK7qR9dZMWpLgTzWWNahRgBatgegu_hUkG6hX-VHhZaCxauudg==
via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:27 GMT
age: 417
etag: "5e3437ccd6b18b17b5fd2ffe67ee592acb01eb29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861acaa1-5b51-447c-b3a6-f8f922b76aee.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861acaa1-5b51-447c-b3a6-f8f922b76aee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcc5b8fc1c9d7b645f9112f2f6a03654
1eefc644955cb3dc6b9f57f208c6357093146792
a44a4ac125ccd0b00920b333d5264b1c8d894f4eacbcdc3a39ab8b63b0e68daa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861acaa1-5b51-447c-b3a6-f8f922b76aee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10069
x-amzn-requestid: f9b1faae-25d7-4a27-8567-ef2eb37f2741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHB5oAMFcMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-2242d97d56ac3ecd690acd56;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: sb8e4gXNv6z7_W4vjdJqu3JfrphhEVAf8ltBGmtT_L4BkSPMkid5tw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:08 GMT
age: 256
etag: "1eefc644955cb3dc6b9f57f208c6357093146792"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRP5DG2BoAMFrdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 00:11:11 GMT
age: 78133
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 411
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: opMjAWEDBvz7pKcnuQrmD_7njQ0X28fR3Ngnoe7WI96zNNNt9oQL5A==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:43:37 GMT
age: 587
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:49:08 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 256
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2