r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6311
Expires: Sat, 01 Apr 2023 15:49:26 GMT
Date: Sat, 01 Apr 2023 14:04:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b3c6ad41618caef9613685a8f786def7
ce6e1256460e0d28da63f797e14a77c1477d0779
ce87c093a66e4a2adfba7794f5db0428a0986b7e74690b773cbd7708ccca3f0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE87C093A66E4A2ADFBA7794F5DB0428A0986B7E74690B773CBD7708CCCA3F0E"
Last-Modified: Sat, 01 Apr 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19180
Expires: Sat, 01 Apr 2023 19:23:55 GMT
Date: Sat, 01 Apr 2023 14:04:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 13:16:16 GMT
content-type: application/json
age: 2879
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57eb49c1ac36edd2db6573eb357bd87
592724177530a39ce4af02874beb776b91fefbbe
0dd258adc062ad2b6f5ce8fec0457e55e594c942817f37509ca2d1f2e8152edf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0DD258ADC062AD2B6F5CE8FEC0457E55E594C942817F37509CA2D1F2E8152EDF"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2910
Expires: Sat, 01 Apr 2023 14:52:45 GMT
Date: Sat, 01 Apr 2023 14:04:15 GMT
Connection: keep-alive
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
172.67.177.236200 OK 11 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Hash 52ffb744b0aaa553e1f39ddae1d5c381
535112e13f60d62af2837eba3f11a254ec847eec
b344422c4728686efc9b505b1db65b8ae176d6814ff18fecd91c2fc47c64b82d
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /usps/verification.html HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6FF91ZYORopZhxPcUAAuWwOUH02UJIwZwArILUDSoIh3SJnH5J3555qH4jaqfgTsnHsKc9vkMWWJP4ylMUrGIXXfsMtc5yU5bekDRDahqQbnLsR5JQCSAT7i0UBuGgGZx2Ky9dCmAkpG1QCVoIM5pBYlRc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b116151eaafb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 25dA6VtFUZJc0fTOwiXRGl0j97izjk6S49kkxb0zyxgaOVFN8F9XVrj1rGK2WCE7tp7qSbUXl54=
x-amz-request-id: 3CPSXM3CE6BJGFKV
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 13:12:36 GMT
age: 3099
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 14:04:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/megamenu-v2.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/megamenu-v2.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kOmq0hSmn3cgq%2FC9m3u9Thtv4YMQ2oBOSaoiYr2Lp2bFYI6ffXhYsL%2FaXNnRE%2BFc1gZeBrKDr8STN3wxAnMd1FWpM1%2Fevs7TazBpm9l5WNaOA9q9vODnzvqdv%2BpL0GjfGv1Utl76aPFxWz%2BwIhJuiaUWjps%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154bf62b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-twitter_2.png
192.229.221.165200 OK 1.8 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP 192.229.221.165:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56699
content-type: image/png
date: Sat, 01 Apr 2023 14:04:15 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
192.229.221.165200 OK 2.3 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56699
content-type: image/png
date: Sat, 01 Apr 2023 14:04:15 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/bootstrap.min.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/bootstrap.min.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qrIPJ4q5fL309FWKoKfW25cN%2FNdZipFzNUbFtrzYtfaH5jPNHFrqUAYH2SFiMrJ9pR9bV4AmeEB1bMyEysQgQeBkhzPIYsFU5tSnQpDadoTSL2mTyC%2BXdSGCOaPztX4SApZmB51UEFosCjV%2FFtX%2FKyk3ys0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154aee3b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-facebook_1.png
192.229.221.165200 OK 1.9 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 56699
content-type: image/png
date: Sat, 01 Apr 2023 14:04:15 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
192.229.221.165200 OK 2.5 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP 192.229.221.165:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 46604
content-type: image/png
date: Sat, 01 Apr 2023 14:04:15 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWjGSPEfpzThCfOxzlvKSCHXUltqhY6b2nPhgWRRpr9ySo%2F%2FPShLUSTmpFOLegkvjgCtOPr0OXxsdU5T2yiKjbAip2H%2FurHmtGUE4hPRzoKc7dhNvkxT3F4jUqzCvtCAGWUqqiRqS56LCa89z1dnfS0fCkY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154af19b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jW8vE0Q9ZBt5qMWG63ue6fqin3uwFnqSYE7ikt2Ex81dv2wRz0kNulizPVRU0ukIpXcI0qEnM3mWJnVpQzkUn%2F5C3fHET2q8W671U3m5Qwdrf337lwX26JQsY63Qu1FVjTat2CEPZlD0z0SH78o7bGg5GF8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154df79b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/jquery-3.2.1.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mP7TiFS3myT5jOIs%2FfokTw2y5gyCzIm6P32ovnMh9QojfUmvOP884%2FG%2B%2BO6mNwpfd2qIegEBhh%2BRoxqpZZ5%2BmPbv9v4ZxLkN6n%2Fzw8wkKzVT9zeEB0QE65uHTXOeaReMz9%2B%2FKTCfMJXmXjMB0NuvOWyGDd4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154db1a1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K6yRPHfwfbkEB3qH8uDYNkDtaQgMGdH0Rbmo9Csv7qPEsm66PGsllM1lDTLAK%2FqBHri1djhoq1riZobF4wlWkCQz3izvg4COcejB63nCJaIat9P0BczOwNftlhcje7txG%2B0%2BQoPnMI7YQM7srzqQhY0Jh7w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116154d8481bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 13:17:27 GMT
age: 2808
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4wU9wXE%2BswNYFVY5GX3C34Y97nA2QJCwZe2zCb98spbJpxaOxE0K80XPonnmxFh9ZLIPzIOw6f%2F8U8%2BTJgeUEbhzNyVgTEN11bRagcW10R2pDN5lNYPu5JsN1ZP0zyeaeHSTRi%2BKrFjamtUHwsxEArsqL7Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1161572a51b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/footer-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/footer-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s9xMtlXechqyOew45l2%2FoBiOATMZGsySWZi18K8DUDNDamMURqPfG9mqmnqiYvcvnNJv5ib6QVv4Oz8FbB4UqO49tDE%2FUohva%2BXtfBbax3soX%2BN4fpkmgwBFL62bN9zFQdSeCfdbn72Qh48TR96LKZEzQiI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116155989bb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now.png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now.png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now.png HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pJ%2BLrpFSkz%2BUchcqH3oIEVPtAm%2FkBeoXxGhUBeUEv4BvoB%2FsUGXmJMAQGm3cMA5YqzwrOqAbeAzoOSPdMxaQWqFaPUx7a844KGgfp%2F4tVTT9aIVwiRKXQW0X%2BuMy04v1SuN62s3E6FUuKKtuwL3yN1YQlDY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1161574ae3b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62p%2BLsWk6fnC%2B%2FWXo4vTkm17h83NH7ykHNsqx33gt3Xf%2BfiI1p7ydavvYplCCdx1ajlsUOrESZUISD1TAKcFI3XCG9LbBuxtnMDhGwz%2FBi8AO2aNWL2iXE6QWVx%2FO4tmhf%2FmYUzvACxlitjt%2Fui9B1FsKA0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1161581c65b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d01bc719725bc76729fb299fc72f070f
2f490d875923484686e0396e561e6636a6bdf6f3
bed1c4f858b3cd56eb98aaa8e4c8ebfc326da5b5f18ff07cd52a824a3b7f1012
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BED1C4F858B3CD56EB98AAA8E4C8EBFC326DA5B5F18FF07CD52A824A3B7F1012"
Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8850
Expires: Sat, 01 Apr 2023 16:31:46 GMT
Date: Sat, 01 Apr 2023 14:04:16 GMT
Connection: keep-alive
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(1).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(1).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W7XsvVO0giocUqpGd547vNbZZt1N5C1eIQ%2BXP1fqYS7kNm7DwIRdVjLzEyuDSWvO6GhFuO6xzVBdbHiYc%2BQtKeTREI3Xndt2v2WCwQYJc%2FuADcNYMbCjoiQzXWmoYmY9BX0Qg32l3EwkyL3jgpUtt7X7rNk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1161574b7bb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/po_box.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/po_box.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash a54bf24fb2ea6102c7da062a4a9c4467
ad09e2e6d439c6dfa1b8b2e38a2f758bcb2976b7
f0b2e4121af3558955868ca3f34bd65fee91c244fa2b6d553f6ab3b56f26c969
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/po_box.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BumS44NIrxNxGU1K0IhoMg28q%2FvTyCecUZwfxCCx6KjPUYsftfhBW2AEmueWEbh8cUJ8kR531s055dPifjnN4Zkd%2FGOFHQONz0wZFDYc%2F9hjbfu4TXStaEkxKe0iNCzqyEOrkl63zsPiSzkFtvdEEWMG3bk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161573dcc1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/change_address.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/change_address.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 5dca82f9684bd5b6d1b5cdabae838958
f2bd4d37077e73fde853ee8dd6b136b8dd1b163d
79922e3a9c95d35c364023aa838bd4955d17e4e3111df9c17a47cec7f22af946
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/change_address.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TWGbFKaBNy9HPIxjMkqb%2FPwLUO35sMLSCa4JEdeXx0NjAev8NRu%2FS4FmOxheXIytW6i2g1fKstOTzdsi91tD9GkFf7xzAh4Bm%2Bg%2FGs0LxfwVAPn0JyLBPKa%2BS5yRtaTsRVyIob1Imqk44mVu7SPA4YeZQgI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161573a9eb50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/free_boxes.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/free_boxes.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 20d8428d6a8a035c72c175235240b52d
58d4451868f25e4bf987a3f7932ac0824b2f0955
b923a11365391a983bf675e43596d3d9fb50bbc570be9387bff261309377b9fb
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ecK5qcJTM2PpmSN5ETyB3aHMMLbVbrstHjPX3EjpAeqE6UultBUzbghiFa6WHpkFp8CIeLtKI6n%2BozkWHT3PHyQwGYw%2BFndkPsLQrco8A07MrSdTA14HAeOeexRBJKvXs%2BUw%2FF4j8zWOmkg7Bjvkj1MT1eQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161574ac01bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/featured_clicknship.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 16ba5dc5f76c858af8fc96f75821ca8e
ed3c20be18fb646aa37953a6c7ffd67b9065a9f2
d439449d31ad284f723f8233beeed9d70110a846d608cb36cfe92b2dda54f25f
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GFjYEbQJtCFhMIdhA1xglHMZKb6KZXZnYfVyp%2F0hswjCrDBUetqPfD%2FhWAT7QasDD2c6szWZAes5ovb%2FHdaYQhmt8hE57a%2BaQqJP9aJZv9b9yliDKDlkLXnk6oGbiUL030C%2FYvqMLgMknKnf2SP%2F0SgfQbc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161574a71b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(3).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(3).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pjNvdlg6gqBKWxOxB%2B6%2F1VFq85R7KgWEv7ANVkADdAXnG1k9biAw9rRWLUsEhB%2Fn8Vl4AmhfvzbRrh9BsjFJ1yInwxapCnIGJwIhHpVr8u19KtrQVH2UzTOCw20278OAIzBtElbm%2FCbZh6A%2BHAAeKMjFU%2Fw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b116158ee5cb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(2).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(2).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W2qA8%2BdHNLGvzTNvUiP1vEtZLH1jGcLSKA6pv3Q3wJEWRX4GFX3p%2BAvNnjbXvNLySvEYXzeZqc34WNknnvGfoqNr5p9ASUaqZHBPpehD37eL59qPwlU8rxFqHRrs%2FKhYKn3QlBD0asZysK4Aq9vmULXGxhw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b1161582c8cb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.201.77.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.201.77.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nDlpArqCZQo+Eh39nxMQcg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tncp9k6Kkx2IUjt6mc402gy3/uE=
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/hamburger.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/hamburger.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 2900a89eb72c1d2c4a12b5dea946d97a
688401d83398224fa9403f34229e1b317c6c41f3
e9c634416b0a419d4dbc53d596dad3188be8585e8d2518263424fc09be6a197e
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mvQoALY%2BJsSpYFjeaJFMvwywNUrGKNZcmBt0YWDCtQRGrBwoOVjdkOfIaboqdqMTgfVj9afH2WXfWFJwz2H8ITaqhvRtaP0Vi%2B19aikVKshQgvx6vCRSBEfVvaUlggFMNYZjfXyB9k9c1phlLTFBnGCwSJk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161596dc7b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(4).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/go-now(4).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sbh5kDCYxPrf68Dn6LtBVfl7dhNuThZLsapq3LCBI9o3BRUGUAOGYOVIHt6iDof54staq1x6blCLIbzSBllyH1hGhcQ0%2FrwQoa48vYaM3R58PHab8Ky4uNopMgavL9xMNfib4KsPf1XyqggfQnnkOtOkEsc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b11615928041c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/logo_mobile.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/logo_mobile.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash ef0d0d4fe23417912a530113d588557b
746347bb96d5d0f33927505f62468e14e802e4d6
c1dce78004491306ed357dd6d1b552e415e8547afa809341b6ac2ddc9a0a3f67
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FAOuJpyze4ZmX0%2Bzp9oZje402H292khFm2Z3xYvaFJqU4iD3d2Q8Ay7WKYSPtac01uSBFTLRs31QRmxQKhV7o0rlwaUGShZlz7%2FrvsSZRb0qcCFu1nImWwnzK0oTvnTs%2BOE7MKorSdLReZ82B%2Fl27%2BtzvQM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161594d1d1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/search.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/search.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash ca23f866ab7b0647353c1a0475a6f9eb
4ba7c81bc06735931875f5c3cfb714de84958772
cbd232ab855c95c2329ba7b95452d3647072d0d9ed58e412b8af9f273f8ed909
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/search.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SqNKn96R4Rm1uwb8yuwIuvrJEEvB7gHgi8Bty5yFhAdYiSUe2srO7SPPxBcLFG1t6Aw0%2B5nQHXwj98k%2FRKjAgXd3FUgC33xQA%2F%2FpIpE%2BKnJ4ZNgR%2FoPuo7rZmlmTyk9QmoYtQjf5TS5Ofl9cziDCAQyWNF0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b1161594db9b50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/location.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/location.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash d96b6bc6fd2d1f50b3f7f4ddebbace21
10ed0202f62f0d98f3e161952c0dea185c774581
6437da3f1f646e0a367c1ad06dde220219b38f6d61f34aadb973e32f90154469
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/location.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGUcTC6xBNrb0Eyu7HmJ%2BeQ1hqFGWFazL0wMYfH0rdU53lI%2BAH%2FVWBz1t3HtgoovBi0xcyOoAV%2Fj8hmCAnTAL2FhHjewaVUUNS5t6%2FaeC0BQkKvmjROGmUbf0%2BaX65x7EQixNm2leHbjVaoYr14iF0B1bd8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615a6f8fb4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/logo-sb.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/logo-sb.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 7c2a6f51ef23c81de8bdbea239b918c5
c887923938f5323353c1f0182f876c4f185c4482
08ce912693f81c54c44034176fb2d49c4feaeb9ff8b22fed262cf1901618aefe
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MmGzlFGcfT5rCBYnrLpUezgZsdGEZoK3lS1A7slh87G8Egh7A04HHtgUIFZ2nlwgTFXkE2Ag1vjng%2BqIWEU7TjqlvMrVK9tn5tcOEs4xffsgYIOyZak%2F7iJYpVBXn0IjAKKo%2B%2FqVhuwIIgKqdihmPkyRsBw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b116159c803b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/stamps.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/stamps.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 17b07e23a4def1c0b3d9d864443be4e9
c88cd774b75e30bac7609a07eb7935f8662036cc
5644e009f6f23fe4ca79cc1888211ad69fae9d2b3d237acaba87ff65b7bb4f73
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/stamps.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2BKvTVeqrSsYLraw3PL9Z0DUGrX3KKLksRGmAAMNJcz%2F5PJQ1qiPk6snMO9V1bI0kTO1ro3yPSjtLXKRNrhJVWDcukP07DwZVOwDsEYRp2OnQHp4YGqvBd%2BiNl8DVd0%2FmRArcsmTXOz7QJ9QKnlSZfj9LPM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b116159ded3b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/mailman.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/mailman.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 73e0753e0687076747bf82b2f239c878
31f568da84d767ab9374e662d628285493004707
d2f91964a28808d2a8c8161108ef07244512b7c4fdd3a88c8f6a82ed428cf387
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/mailman.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=46dtWbPpA8fCAYBlKk2lPbx5%2FdIZQ5BHzghHIbQEjIc6yS7DKHt8isrOlikNcbWkLv55m2AvC5LQPz7Jb8D3fD%2FGR3DR1w5KONKFT%2BRn5p5islepUV2StoTZqurUYifJ9nPwYH0dmRu91A71ZNo3RXlmLZU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615aca3a1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/calculate_price.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/calculate_price.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 29ec8168314472dc0b3bd8eb90370633
3f6c365a7d9c7ea2cdabf564f3a45860724f351f
3838cc858711dd8b7cf4b66981e97b7e3a8ddfec7ee8465276e9ef3ad88994ea
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/calculate_price.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sGiLGdzGYYCvE12w%2F3R3Y31LRwOTKPMMreSH9EbiKv7il0hA%2F3A1oR9Run1v2wKaIuMG2ExiQlF4KfO25gEFTiDfqD1UBfuGYp53NSyX%2F%2Br%2B9uDGp9MyHMTvn%2B2jcsJgU9GHlS9%2BP6ppCORUyQ2ZlVVjRW8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615bab55b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/schedule_pickup.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash f5374973a88305c56b84cb2a085e7860
cf5d0100bb26b1881a746db39df9b594345eaadc
a44c3ff092864c9105a53e4e97bd2b5a57d7e7d60a237bdcf2141be3a89964b5
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IL1G91HdfxxGUYpGUEQO5wOupsPuGKvouNwjcOeBDN3WAj88johdez%2BJFxjWSWM4UwdnhndFKqmDKU0Vp0bzm1vX2qOfa%2BXtknFQeIc%2F7jOFn7EtW3vL2wZl2QMB9NWJGfMA%2BsKy0PssLYGUJJn0%2B2RvrhM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615bb9a8b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/tracking.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/tracking.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash bd0d1da3275b74217d188b0c9804b9cf
a4f58d553071f64c8753a6742c334c381053bb96
0dfd1f982a8127e64671e0c3f7baf114f8da54c835c3161ce52f56acc6fe9fd3
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/tracking.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kvuKwrXuzB93pyZIcKIZu4PLCui%2BwRYfD3cM1hy3Ze7RuS01I1wTwkxctuhCsk4LsEM%2BPA1lyIdz9TIBHQkV8w6GUmTdqjZgiL80IVKHc9m66%2B3CmWwyi59A%2FIX1d9E1IIVF5clTNm4WXMny%2BFKy%2Bv81vFg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615b1f281bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/holdmail.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/holdmail.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash 2db9a3964789871698ffb9b3c58b9bcd
c13ee89b324be6756cc043275d1a04fb87e3372c
c0ab10328a6e414902c1bfddf8f56f70ba76847a2c3b452b501b38fdc422d61c
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oRaxxI%2B%2FUIAlnlm6UQ64jwq7cwHUXzUSru9LzSCVtMd5iWzCTQlXXVotqtRb6mKDEj6Jc7io1ZemDisrDGL99bZ6GF6vsk1H2Pm8zx%2B%2FqVG4zgtOHzw9u9AKzaHzpgK8DT1VGsoS%2BxOngRLoLs8IfUq4ZdE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615b28efb50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/find_zip.svg
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/find_zip.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash f3dd4dc311e636f1c87098d2d43a9b40
0382d0b7d9cc1c1c133e9e4dc66541a3d81d0389
e277baaad5e72f831e979f15539deea341f572c95294dcb35412f8318a0934a7
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:16 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zIzpxNYitbRcR7ReaqSCiAGu60WKPn%2B9KOqxUtIqAOW0zN9TKEGZoe9dasNEP9KXzO%2FoB1YSA%2Bziel%2BgtzEOq6v3XFmKt4BWxgF3eB3awu6ovAn1XmV9tQKvich81XAoiT4COX8ujCuYeihLOzMkbRmI11E%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615b596cb4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/favicon.ico
172.67.177.236404 Not Found 5.0 kB URL HTTP/1.1 tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/static/usps/favicon.ico
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (342)
Hash b1079bcc3fcabf1589c2e78b0b46f57f
64586f933b32ef787b4290adbd01d61e001eadab
a78aec88a5ff63ff21fa7f2eee20c68df0029ba82d05da78f34fea40d846f866
GET /usps/static/usps/favicon.ico HTTP/1.1
Host: tm9uqgdet3nfbyo0zrcct.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://tm9uqgdet3nfbyo0zrcct.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Sat, 01 Apr 2023 14:04:17 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J3tFUk4Ga233XkwXQZDFf9%2BHPxMRnevL%2FrybJXqOX9BxYzVC5tEn6DE86MlzlJJ15%2F36QSlA2c2ffxCNnJ1%2BRuj7N1O8%2BCAk9sbjKg9msEbFcSJeFppNjG8Cua1fwSV9vwRGWq8T1kSsZBkMfmUOLxED%2Bc4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b11615d4c16b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Sat, 01 Apr 2023 16:08:36 GMT
Date: Sat, 01 Apr 2023 14:04:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Sat, 01 Apr 2023 16:08:36 GMT
Date: Sat, 01 Apr 2023 14:04:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Sat, 01 Apr 2023 16:08:36 GMT
Date: Sat, 01 Apr 2023 14:04:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Sat, 01 Apr 2023 16:08:36 GMT
Date: Sat, 01 Apr 2023 14:04:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: k7ZzBBGmbX5OCG_u8RwOqyLQBvohNe643wpsd3Srg2hoxh55aqSV6A==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:38:48 GMT
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
age: 59129
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: TzZpij5xeF-mrrMvpNNPJQA62GcNd0qPNAh_7IAme7SI3WwmZ4itcg==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:54 GMT
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
age: 58583
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9725cb9ee354d9c9ca233288e3621ed
5e1ca2a4695fa9e4e6e69b5a5cb05c8ce43244fb
c03a0ed04efe13a15b6a0a05848473de9f5196c26096579b99475b22df2a7c4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8939ac-5249-469a-92a8-f7d39e16fd0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10248
x-amzn-requestid: c53c08eb-adf7-447d-b303-759b6419a2bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ClU6GHD4oAMFcww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6425350d-7a6494c770dd83f17e839234;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 07:06:53 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 8ReqCnX98wfim_pADgR68l76iJctnAwKTv-1qtbnNSmKZ8fQTfrHdQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 07:25:20 GMT
age: 23937
etag: "5e1ca2a4695fa9e4e6e69b5a5cb05c8ce43244fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: 526d70f5-3eab-410e-97d4-e489e152bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cl6tIFhxoAMFa-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64257186-14e697b924e79d1e5bc6d040;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 11:24:54 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qKEs-bdLIfTk7TjXU0kLNzqEBDhhUXkX_osB-9p5LdfJfUbo8LwyuQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Apr 2023 01:27:32 GMT
age: 45405
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcef2c96778d9fdee670e187a43ab32
e8c98891a1ffdbb6d30cf8746e067d56fe65d964
4e6fb506079b1daab0b1913a31c6252452f133af9276e18d25fe6fb622ce54ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fb8174c-0fbe-4857-bc0b-3e50751be490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3800
x-amzn-requestid: a182fb32-649a-4228-a591-080aae8c053a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VEY2oAMFf5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-3a1abb584aa61a954dbd52c1;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 8_m0xs9JUsoheDqkfPQdh3kzcE3zhX2Io1kl_Y4sDqLr2_03TiK2eA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:35 GMT
etag: "e8c98891a1ffdbb6d30cf8746e067d56fe65d964"
content-type: image/jpeg
age: 58422
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash deb930830ac86ec8ace6a232f67810ba
d084bf4331446c35236019010b2bcf82d45dad1c
bb81782bf590d601110ec8fb891f701e0f5084bda46370d30345bd81403a33ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95196399-f417-4284-9902-cf35b1e83360.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5830
x-amzn-requestid: 0897bf26-6156-48d3-ba67-596cc326dddc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHHG0JoAMF87w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-6f380d901d9d6b737ec19d6d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Bn3MbOV7qxTzTjDiOpS3qgs61KZJTe8bY6sHQa_68HPqyLaL-ZsI3Q==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:50:38 GMT
age: 58419
etag: "d084bf4331446c35236019010b2bcf82d45dad1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2