upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
172.67.177.236200 OK 11 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (969), with CRLF line terminators
Hash 410197777700c5f152a5401e0b87bcbf
a5573c0c858c91a92b7768b6ba6918546828b9f6
71b97be1d80c57a893b65c62ec04df713e789bc47f5fa5f1c669239efdaf88a6
Analyzer Verdict Alert fortinet Phishing
GET /usps/verification.html HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:47:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 04:29:01 GMT
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HoCLQwJF6dODc84oSAJXATg2xb9MMIJnQlmtc%2BJfmZh9POJtSdeo2xy54mBoezJc%2F7oImksjptWpW7BiG0xOuIY0F%2B3tnqNJoBdd2GtclCumf6UvZ%2FShJl2wX4VJpZVmycl0BeFsgrpRdobZQxIYCDHukbDA8ElDR4SD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b07546ea9941c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7870
Expires: Fri, 31 Mar 2023 10:58:59 GMT
Date: Fri, 31 Mar 2023 08:47:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5858
Expires: Fri, 31 Mar 2023 10:25:27 GMT
Date: Fri, 31 Mar 2023 08:47:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6232
Expires: Fri, 31 Mar 2023 10:31:41 GMT
Date: Fri, 31 Mar 2023 08:47:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 08:16:10 GMT
content-type: application/json
age: 1899
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mQnQ0dUqvRBubZJXu2JwKNgffEkDT1nXWTOYqEKK+dG7Hlxa/g9Jkx+pox/rEtxah9edbHuuuAA=
x-amz-request-id: 6V0B1MMCF1BEEV01
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 08:03:16 GMT
age: 2673
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 08:47:49 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2BZPJSHerILJ1vbp%2FfcOZ4ZI1baVB123q3hEC%2FG%2BffDfmmUoTLUxtupTY1SHpBoz1mYLGyn4WeIVpfi1G2CGdkfkwOSAJmyv%2FXuBdbHQ3S8YmxULL1aaxDMO3R5xa0dGuDa3C3qGSphFpeMkonxP%2Fpqy9wnNDZmi4k4e"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471bc771c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/megamenu-v2.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/megamenu-v2.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/megamenu-v2.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BvjKDLntP1GGAgBVkS1ngsTgDQQ36%2FWySZESXau1ZMX%2FrmPWJBYkjT9cGID4xz5h8bdNp4BddME%2BUb7gn3HwLx0UYnovfBR%2Bpf6X805dobBlTA4cpDmN69jHlrUg1hS2iVsklxy96UIHau6CNQbKHIKq6Z2OFXUsaqCN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471bb6fb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3mjce7rrQTCbuWEHypxUkqBy8bPcwbAbcyhf689RPrCA8f0vyphrzlacdgYPjUUoe02dHN7JiUiBwHhWiGQX9FQKC3FM0PvXaRpqA80SjPcNgPEUPx%2FRrtuB%2BcaFnOkNp4AwQ4a%2BUI4XKN2jYZ4IZFYnDGmm6fymoYHx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471db8db50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/jquery-3.2.1.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BtkFvqKiSZkWPwMATs0AZtBihR5XqfQeWwZQJ3K77wQEYbphIEOLSzAe0iB4mZ%2FdTFTVX3YQKB9BT8BnhLkKwUlF%2FRRXg3Sd1Hi1AxI%2BFhAr%2F0BNFhqKhfvDhNMqELPqjCM%2FdJhUxFP5YAk%2BwfEvHnnha%2BdNEYh0US1u"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471dc330b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
tools.usps.com/global-elements/footer/images/social-pinterest_6.png
192.229.221.165200 OK 2.3 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-pinterest_6.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
GET /global-elements/footer/images/social-pinterest_6.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 37714
content-type: image/png
date: Fri, 31 Mar 2023 08:47:50 GMT
etag: "915-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7F0A)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2325
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-youtube_3.png
192.229.221.165200 OK 2.5 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-youtube_3.png
IP 192.229.221.165:0
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
GET /global-elements/footer/images/social-youtube_3.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 34469
content-type: image/png
date: Fri, 31 Mar 2023 08:47:50 GMT
etag: "99d-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
server: ECAcc (dcb/7F32)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 2461
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-facebook_1.png
192.229.221.165200 OK 1.9 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-facebook_1.png
IP 192.229.221.165:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
GET /global-elements/footer/images/social-facebook_1.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 37714
content-type: image/png
date: Fri, 31 Mar 2023 08:47:50 GMT
etag: "751-549b12f4a70c0"
last-modified: Wed, 01 Mar 2017 20:30:35 GMT
nncoection: close
server: ECAcc (dcb/7374)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1873
X-Firefox-Spdy: h2
tools.usps.com/global-elements/footer/images/social-twitter_2.png
192.229.221.165200 OK 1.8 kB URL HTTP/2 tools.usps.com/global-elements/footer/images/social-twitter_2.png
IP 192.229.221.165:0
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
GET /global-elements/footer/images/social-twitter_2.png HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 37714
content-type: image/png
date: Fri, 31 Mar 2023 08:47:50 GMT
etag: "732-549b12f59b300"
last-modified: Wed, 01 Mar 2017 20:30:36 GMT
nncoection: close
server: ECAcc (dcb/7E88)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 1842
X-Firefox-Spdy: h2
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/bootstrap.min.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/bootstrap.min.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/bootstrap.min.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FoQawiCoXHD5%2B0b8Ax5CJ7zHzNjQEBhdgKpk3SM%2BgfKmEPzpZq9HbiF57IdfWrYEhhCpnGaLYeUsMMcj5aJSXe8CiSv1zVw%2BL0a%2FdxhuyVZNHkhlO8%2Fo4pZcTcrtfUumA7gRSox25WeYe8mpURUoVbIR6kqKy%2BttcbNi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471bc721c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/footer-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/footer-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I7vywUIRLTmI3MpNwezp7h4Y6FZMyEJv1upKQtluBFN%2BNO2PAizh5qmkrU78LjohyBvBjWbzvnFhh6lDhocKveGj7talYiTJ3WVnKv0iygivBYm8BVQ2Lk0%2Fcv2F%2BwzKylwbaWSqA7Yg3evgGE5GcbxtA1eICeBFke6G"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754729d541c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/jquery-3.2.1.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/jquery-3.2.1.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/jquery-3.2.1.js HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k%2F5DMTtHy6VjUJp4SnAAfgPMz9WRV1ugoJ9rErv5bDKTDAt%2FCY9t9kPhjtxkNYxv9FuWR7bCZt2WRzrNCIuC5RWDRQjFdPsuWs%2FJhUmRsdx4sA9mSB3DeQeg25eM3QOtzhXvwQ6Dcar7H7vfy%2FXT7BrWsYQ39ke6nuvx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754737de4b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BYMv8it0JGscKGKCSEWM93MFUR1eCYZnq2FRAxmDFfUPlzRSmkIyz5vToTfMA9Vv8MeQNYcgncICfHHioz5JLKPG8Occ7eHfyDoQScNljqvhBG7rNOQPhnXiEO%2BkoMrQpDnDrIYBUxQctk%2BDJYVeRQUQC7pW2YsNb5it"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075471d859fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/change_address.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/change_address.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash c08fa28f732f49848bf903affe466db1
c2d9f23593b69960eb4b070398b289ed785d25c8
9d6682dca3a1230ce3de9ca4033db3b555723e9749cc6f60e78116fa56079dc7
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/change_address.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754739dfdb50f-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/schedule_pickup.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/schedule_pickup.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 160390b5c9b25407502a2641d8fe9279
8ea5f7dcec4a5375c7564075a25b9bca229bd417
a3e4fa95436b59d4bbede669b1d9b03a7909ba9f09404c25969349a7a3d7bc24
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/schedule_pickup.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754739dd60b69-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/layer/layer.js
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/layer/layer.js
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/layer/layer.js HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SOdpF4sDXrwseROw%2F2vp3hfCU6i%2F0Cres1I6klCGDJln1PCexcsNvWXrZiJLX03JoH6tf7dqY1RNKDvU%2BPGRYl6QUMEc0E9zivtXH6lCUXUuNrFIEloQrUhSYAo7Xs%2FRdAPQGAlDmstzkvThzJZvfyXjGxG6FBfj%2BsOU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754747f43b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Expires, Retry-After, Cache-Control, Alert, Backoff, Pragma, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 08:14:39 GMT
age: 1991
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/holdmail.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/holdmail.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 74d109802c46456b86d55ee506987614
6b2cd22a6ddbc6396e962047c501cd67f434728c
6302a16ba9213d4ec4c02e6d387bef2e477604bb2f790f5961be68ad04eacec6
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/holdmail.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754739e671c16-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(1).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(1).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(1).png HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BcVN158kGoj%2FLCEWsYShis1pjF%2BbpVvEfg%2FB8yeIWL%2FfNFr%2B%2F0z0WeUj8bvKROt7mN1IdU8UiLCaxAlWAHmvCl6%2BDuYfxdg8fYoYVBaGYXnaNONhk65AZMdfMrzgG%2FEdqVwoa8Of%2BCZ2PlbOxBLf5IMIlKELpLk0Uj7p"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b07547399b1fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/logo-sb.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/logo-sb.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 9a68306181de32dea73e8f2ce5a9f2b7
0d91fcfdd0132f323f57ae1686394b3fc6747105
42cea139cfa74fd6f8644afb230f5b3c348ff2095773659b488f2007f379f52a
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo-sb.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754747eb50b69-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/main-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/main-sb.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Exzz89HBFJ1%2BFkU0q9UzkySsUD6cds1zOwXSCdGWakQlQSK7xDsTdzpOT%2Bw611kfSWvD5NEtKF56GLyHsi0saiqPHb2CpGPl8vNJ%2BGTdAKv%2B56o367P8iEHLQXIoGGtIF9Vp1qN2CKcj8WILHvpx6DxDXrdyp4DWLFQY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075475481e1c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/footer-sb.css
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/footer-sb.css
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/footer-sb.css HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2Ftq4DusdRJFoyjeZBOF5yp2mKU6KEnHMJtGm2uuCM%2F445C3dZsR0c%2FjaDiWRceHlDVg%2FgAs7h9aebUF9M871EHoPtVoPJ6dmvDjmZbsfhVPPVmW0pGIMu7fFuOVCpuPYjjHw8o05rdD4xIFLyq9c0vkxpCdiGIWV7jx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754754af8fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/hamburger.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/hamburger.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash da82017e36d96f6cfaaecb955b354f54
ac7be58755c2c8b4b0822d8d2d33c1c9c4a87684
45b78a04bf59041f2f404ec5c54a6fbe9a81c98c7f0b880548c7900370afc6b5
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/hamburger.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754748f55b50f-OSL
Server: cloudflare
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18823
Expires: Fri, 31 Mar 2023 14:01:33 GMT
Date: Fri, 31 Mar 2023 08:47:50 GMT
Connection: keep-alive
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/find_zip.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/find_zip.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 470472744ebc5300eb84ef0b06cbd349
09c641abb5664e03016461b4f8f08eac9bef42f6
557454bb490ccbb646f458eae9ef9bda15265b4a7c4982a88b9b5b6e19fb47e6
GET /usps/static/usps/find_zip.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754755b06fabc-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/free_boxes.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/free_boxes.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 9b569ae7fb3cfcd07c5d14923b22d01f
945513cf383902bb9a427e1964fd52a8ddf67542
dec4efc07946006bb540a5c4c6fa152b0a16a876cdfa57c4abede2b3f0049347
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/free_boxes.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754758890b50f-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/stamps.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/stamps.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 750f2f4a0f14651bb31c9bf15949d89b
6029347b771e845baf95e68bfd8bfe30870063bd
32d1ed34941015ac03320f19f222857e20fdccdebed3bbe18af06c821520ee6b
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/stamps.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b075475582b1c16-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/location.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/location.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 2ce3cb74af13495a583a00913662de7d
b22fc22196144faa959b237c0669c4999a73c072
5dfece9f41b6543d3933b2f98aa8978204b1740fdd61ae2e5308e19049e89977
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/location.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754755f620b69-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/featured_clicknship.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/featured_clicknship.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 75f3de3f01e8b808e6f421e7cd699c47
723e32224adfcbdcca4010fddbaff49fe617163f
b3ced9fc9b152f0ca1346553c3489ea9c2ac21d9a71c68eea179f691f0dd5a9f
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/featured_clicknship.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:20 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754763b94fabc-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now.png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now.png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now.png HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JauZ9yu3D%2BwIKI%2BMMWBLKgO%2B3P10YAI9OIl10AIrEjClPrp8JCjRNewgSdvjUq%2FuNw5aF2VDLZieT%2FKEnlL2WJkP5stNoHemUMA1Ox595Lx0I2UlF4F1pOEfNhXQN4cYHPBEHt5vJJQp%2Ft4TbZIOcz%2BP%2BCO%2BXpQ%2FVTod"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075476699cb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
52.35.228.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.228.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EUJJmTQOEteRkX0Vj/xjdw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZSQ2eb0h4018u9/6PWSkgvc0KPo=
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(4).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(4).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(4).png HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hs1GTUWZvW3q7k5aKj%2Fr4HDkR1Q%2B5%2BTaFZOVFC6dM8K3tFFT0n69kGbTJJLkI0LjLwAaWBvknzEYIbKUXYA%2BBB26D02InGE7XPlL3ibHN3NlayLQcA1HIdeHG5s7%2B6GMMR7F6jgNzfjuG2%2B2v8hMRHqR%2BCArtCVvj4XT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0754771c39fabc-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/logo_mobile.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/logo_mobile.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash ad801cf4a82a14b0dcf1b0877b0e74ad
3f97c33d13f3d5b8bfa43859b05551dd789beefb
dfd304c7c715d07c05edd17ecedf49d6967b747bc6f27b6701c29bd9e8866cf0
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/logo_mobile.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:21 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754774abeb50f-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(3).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(3).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(3).png HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MNB5IeI3%2FC7%2BgvWehMc6X%2FcdIKy6bBCJtwT97BjEKjreWvuH9pkIWyyrJnc%2F29KSf0ute8Mubd5kANpwOYyChmq258%2BChc67UZ%2F3VW6Zstn6qrK1UF5eUbz4uxNkTZE0THECMK39htWLEMH%2BjmhJuUe4KJHKyJZ0Hgoe"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075476f8e10b69-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(2).png
172.67.177.236404 Not Found 109 B URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/go-now(2).png
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /usps/static/usps/go-now(2).png HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 404 Not Found
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a9OC2jZnunrKXOrbxKOoWWXb3VXG%2Bw7H3IdrzlNArhrXYYoOlEo5SbGTPxVnXt7ychZ2%2ByGiNUHnSNy9JebovOIBOa4VyPtDJMi3gCgiDppoEv5KzyRHnQ7ARdnOARCIVtiNAhLzGHQTw8xeuZyM30EQpUWG1GQjaVq8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b075476fa071c16-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/search.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/search.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 256d4573a4a9025ca1228c822396ca39
b71ac08920bafec0f79c24a54d03b373853ca3c8
e841431443ea164a70a232145417bf31c0fb689f259cc14ac2b3e74ebf098e99
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/search.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:21 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754780cfdfabc-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/tracking.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/tracking.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 28d5869e2505a4cc498811cb2817764f
5c75c00cf76a4ed30ac8d2dd0c2695ec4ee11244
553465d30957d09309b0980cc62849cad96d73a4ae2104786b15bfa3851da3c4
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/tracking.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:21 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b0754782c01b50f-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/mailman.svg
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/mailman.svg
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash f9ffcee10b6cb26d837171c6da8b3a56
92484659789d031197fc30fc8981625bcc7e4601
52b0e156648dc01fef150d6263ccb37c1e9c30a8a713768733f089042e914b3f
Analyzer Verdict Alert fortinet Phishing
GET /usps/static/usps/mailman.svg HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:21 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b075478aa600b69-OSL
Server: cloudflare
upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/favicon.ico
172.67.177.236502 Bad Gateway 6.6 kB URL HTTP/1.1 upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/static/usps/favicon.ico
IP 172.67.177.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (394)
Hash 7e093d6e408ee12a5138a179a1074410
985c7e9080393ae78bc3c42a47b7132a6a6a9116
3a78679e41f4d02b9f731a5ffffa13682e985675a0a15673631df6af8a18f017
GET /usps/static/usps/favicon.ico HTTP/1.1
Host: upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://upcxu5jjvnf0snrc4m1w7duuzteg.lspower.xyz/usps/verification.html
Cookie: cf_use_ob=0
HTTP/1.1 502 Bad Gateway
Date: Fri, 31 Mar 2023 08:47:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_use_ob=0; path=/; expires=Fri, 31-Mar-23 08:48:21 GMT
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
CF-RAY: 7b07547b0f72fabc-OSL
Server: cloudflare
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6120
Expires: Fri, 31 Mar 2023 10:29:52 GMT
Date: Fri, 31 Mar 2023 08:47:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6120
Expires: Fri, 31 Mar 2023 10:29:52 GMT
Date: Fri, 31 Mar 2023 08:47:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6120
Expires: Fri, 31 Mar 2023 10:29:52 GMT
Date: Fri, 31 Mar 2023 08:47:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6120
Expires: Fri, 31 Mar 2023 10:29:52 GMT
Date: Fri, 31 Mar 2023 08:47:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 39629
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YJQbVC3HpHtLrNiTzsUmCOMIWgRik2lIhvpAz0DfmUNSznCXw6ipYw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:47:32 GMT
age: 7220
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45a4bac8a91b725def9099fd6f720285
134ace682a567c7e385817c8f8af0d49acfde847
3d60e54132cbbba19ce8ad4bdf79a4b3b6ae74573f45bf4f080a283aa250b53c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36630e1b-1c89-4e55-ac67-f104436fd02c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8358
x-amzn-requestid: 8069495f-4ea5-4975-8369-fc4db9199774
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllH2fIAMFdlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-2e5418a132076d0569e30de6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: z4Jd4oIn19s5lhDNYlrrh6RlxDz7mxCg1KJKUyFfJfqZsymvADn88g==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:31 GMT
age: 39621
etag: "134ace682a567c7e385817c8f8af0d49acfde847"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e55c2ccec92fa37b631f5616ba5e1b77
c3f1113bad672968f22e63693ef4481f7f5616fe
10bfe1a2cf0b6e0a2a548935a1afc061fc61990a121a84580f3969df68b7974c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pcFiVnrSVAh6gQ3VuQDE32650Yoj5bcTJrishSOFVpR3DHh4lUvdag==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:05:16 GMT
age: 38556
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Jktkwc3JLU31AY5B5pC5JTjPGARjflqoJRZiD6IpF5-10IO6UNlH_Q==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 adc2002956acc4d61bfbf3b973fdf246.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:33 GMT
age: 39679
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 876e5464aba1639f3b07b07d1d694514
93885a6205be71d16187782b1803f53d5c8538cb
6e2b6b15f462922a9e8260f55cfcd94d488d1a48435458db43270ea3b825d8c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13775
x-amzn-requestid: 43d1a1f3-b189-4fcd-a298-429123d1921b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUloF9woAMFU4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-13778451622503253ea252eb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXA995GxGti4_AzSi9F19ZNvUwm5_ZSBw0BB0lRIfNHcmX7Ajt6bSg==
via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:36 GMT
age: 39676
etag: "93885a6205be71d16187782b1803f53d5c8538cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2