firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 21:04:24 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x8W6U8_Exsjb4bOdbb8_T_0TNzW6zjWnjlP4aouV2BWVhy4bVp8EkA==
Age: 3250
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ET5Kj6n5rhGWL3O-QrvHezDSRpMhpzYLMX1tk7GqopaXlC4YnbztuQ==
age: 59407
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13106
Expires: Tue, 04 Oct 2022 01:37:00 GMT
Date: Mon, 03 Oct 2022 21:58:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2759b1e2efa9d5c30fb41c5290d93228
832ac7cba2029f74b4059da7129a1639bcc91066
a52b0189d6d887456f443118081f0d450fae07025466c363f5029dc7f05f8570
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A52B0189D6D887456F443118081F0D450FAE07025466C363F5029DC7F05F8570"
Last-Modified: Mon, 03 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Oct 2022 03:58:35 GMT
Date: Mon, 03 Oct 2022 21:58:35 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/go-now(2).png
20.117.188.172200 OK 27 kB URL HTTP/2 uppssqwery.com/static/picture/go-now(2).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(2).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 26972
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/schedule_pickup.svg
20.117.188.172200 OK 1.8 kB URL HTTP/2 uppssqwery.com/static/picture/schedule_pickup.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1775
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/go-now.png
20.117.188.172200 OK 20 kB URL HTTP/2 uppssqwery.com/static/picture/go-now.png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 20334
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/po_box.svg
20.117.188.172200 OK 1.6 kB URL HTTP/2 uppssqwery.com/static/picture/po_box.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/po_box.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1639
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/location.svg
20.117.188.172200 OK 2.6 kB URL HTTP/2 uppssqwery.com/static/picture/location.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/location.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2586
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/logo-sb.svg
20.117.188.172200 OK 3.6 kB URL HTTP/2 uppssqwery.com/static/picture/logo-sb.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo-sb.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 3557
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/holdmail.svg
20.117.188.172200 OK 1.4 kB URL HTTP/2 uppssqwery.com/static/picture/holdmail.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/holdmail.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1448
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/find_zip.svg
20.117.188.172200 OK 1.5 kB URL HTTP/2 uppssqwery.com/static/picture/find_zip.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/find_zip.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1471
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/logo_mobile.svg
20.117.188.172200 OK 2.1 kB URL HTTP/2 uppssqwery.com/static/picture/logo_mobile.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo_mobile.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2060
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/calculate_price.svg
20.117.188.172200 OK 2.3 kB URL HTTP/2 uppssqwery.com/static/picture/calculate_price.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/calculate_price.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2302
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/stamps.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwery.com/static/picture/stamps.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/stamps.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1103
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/search.svg
20.117.188.172200 OK 1.5 kB URL HTTP/2 uppssqwery.com/static/picture/search.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/search.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1465
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/go-now(1).png
20.117.188.172200 OK 8.0 kB URL HTTP/2 uppssqwery.com/static/picture/go-now(1).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(1).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 8026
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/go-now(3).png
20.117.188.172200 OK 20 kB URL HTTP/2 uppssqwery.com/static/picture/go-now(3).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(3).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 19969
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/mailman.svg
20.117.188.172200 OK 1.8 kB URL HTTP/2 uppssqwery.com/static/picture/mailman.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/mailman.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1827
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/change_address.svg
20.117.188.172200 OK 1.9 kB URL HTTP/2 uppssqwery.com/static/picture/change_address.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/change_address.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1869
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/tracking.svg
20.117.188.172200 OK 1.6 kB URL HTTP/2 uppssqwery.com/static/picture/tracking.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/tracking.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1561
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/free_boxes.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwery.com/static/picture/free_boxes.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/free_boxes.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1066
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/featured_clicknship.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwery.com/static/picture/featured_clicknship.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash 375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1078
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/hamburger.svg
20.117.188.172200 OK 546 B URL HTTP/2 uppssqwery.com/static/picture/hamburger.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/hamburger.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 546
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/picture/go-now(4).png
20.117.188.172200 OK 22 kB URL HTTP/2 uppssqwery.com/static/picture/go-now(4).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(4).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 22133
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/js/header-init-search.js
20.117.188.172200 OK 904 B URL HTTP/2 uppssqwery.com/static/js/header-init-search.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/header-init-search.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
content-length: 904
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 03 Oct 2022 21:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 03 Oct 2022 22:08:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JR4NYMd1h9-dH9ahzVU_Qq_p_aSMzs4hbhPOiKX0pVODNEI4cFWreA==
Age: 1742
uppssqwery.com/static/js/jquery.min.js
20.117.188.172200 OK 31 kB URL HTTP/2 uppssqwery.com/static/js/jquery.min.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 340d189d4e7161da1343e3610fef47a0
2d67db8029507c29931ab9442f78f1a956f5997c
7da496caf6271b1f95c7d36d70721265210657dc71202346dd40c43d980a8866
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.min.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/business.svg
20.117.188.172404 Not Found 47 kB URL HTTP/2 uppssqwery.com/static/image/business.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash cdc9a1023f78eb4b1605d8eaf2774c57
ee682cb29a168e1c79119d8073aaa0e620546986
010bf6e99ddb1d470f61496c8eb31b1665fed7300d670e127d4b24cd6b920de8
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/business.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
20.117.188.172200 OK 59 kB URL HTTP/2 uppssqwery.com/static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format, TrueType, length 58690, version 1.0\012- data
Hash a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/main-sb.css?t=1657032800
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/font-woff
content-length: 58690
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwery.com/static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff
20.117.188.172200 OK 52 kB URL HTTP/2 uppssqwery.com/static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format, TrueType, length 51685, version 1.0\012- data
Hash a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/main-sb.css?t=1657032800
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/font-woff
content-length: 51685
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 21:58:35 GMT
Last-Modified: Mon, 03 Oct 2022 20:29:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 34906
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 15653
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
uppssqwery.com/static/css/qt.css
20.117.188.172200 OK 10 kB URL HTTP/2 uppssqwery.com/static/css/qt.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 94c2a771aaa898bdb2e31126e743c9e0
7323ddee4b58095df6fa88eeaa660e87baa8c3cb
cbfbcfd4f81927b073e7fe992b9085bbd5dd0f9f2c4311bbb5d66fcbfb4b528e
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/qt.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7lfsJaao18HSlZdqkNIybQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /Y+E6WVhSf3mGFxvPXrxhh7w6Zg=
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 62896
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 2101
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
uppssqwery.com/favicon.ico
20.117.188.172200 OK 32 kB URL HTTP/2 uppssqwery.com/favicon.ico
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer Verdict Alert openphish United States Postal Service
GET /favicon.ico HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:36 GMT
content-type: image/x-icon
content-length: 32038
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bed17699f6b123b33b8df416b23c4cac
36458cca636c4ffc873df8acd254ff726b1a9544
65dac85ddf2d9918696ea270a5a3d034e07e43ca5714f169747feee09fc4b897
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: a7e4d6b4-be77-41a9-94dd-83167d5b002e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5tUrE72oAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d5c1d-1ba0805b629e657b60ff1b85;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 07:11:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DZ6ZMlje50ktV6_cABRx3fr4Dke7Z2UhNhBDi1aCK00kRPTlnG691A==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 17:03:47 GMT
age: 17690
etag: "36458cca636c4ffc873df8acd254ff726b1a9544"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 721a8d8f94c3796abf021978fcdbc831
3fc3aeae907a0ce0db21753c67c1000681e48b8e
cb497b15e7c2e49930b99f8d6659f0394acefb7b11613ca04397ee782dac759d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8158
x-amzn-requestid: 424c8c6c-7075-4ace-97e6-2b0a609d1b7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXDxGRlIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-046d963a345c15e81dc74e4d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AM8Ox9ObWGoXI-QnnoI7QkY5mOh8j6xBPetTrhyVktVO40ekk4X2Eg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:33 GMT
age: 784
etag: "3fc3aeae907a0ce0db21753c67c1000681e48b8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 62146
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uppssqwery.com/static/css/schedule-redelivery.css
20.117.188.172200 OK 13 kB URL HTTP/2 uppssqwery.com/static/css/schedule-redelivery.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 80e67d7bc1a61a3c413506ea1018749c
b305e25c0000db8849968b625f4a733dd200f9dd
bd4c8aac57bfba93711f46a26c9de050257a893a198579a8aa859d288be32a5d
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/schedule-redelivery.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1af609199093985d73fd1d256482c12
a54f3f4af645c1c93299360bc7dcf06bbae8de81
047e15a2d3ea5b7d1f3d22cdac2ac0446c6267c99deb0b12576366088d29d5b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8657
x-amzn-requestid: 172be66b-6140-4ff6-a061-22d177e75c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YtlXZGujoAMF2vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63288295-6f74795f2b26d54409b2f388;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 14:54:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JuivAaE3zJE1Hyn9GdpPB3Z94FvDmfvGyuIYPrAOFlhyClh9yQfefQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:59:39 GMT
age: 86338
etag: "a54f3f4af645c1c93299360bc7dcf06bbae8de81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 523edd86af4757d0bc5fa5b3b8a3596a
8118ee462077c291b9d6f1402b85b55a9ceba8c2
c27de9970317636df8c4a517a9ed38e573235b351bf92c9b8bb1f964cd100031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: fda71fd3-ef25-4a63-94ae-1bfc8aef8d14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXD2H0DIAMFjrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-198915fc17ce3dab571b7575;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _JxPe8uPQIgRKoJxtJAKjXpVy1hCW0rFcs8K_erJOHbVNpw339Pz6w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:33 GMT
age: 784
etag: "8118ee462077c291b9d6f1402b85b55a9ceba8c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uppssqwery.com/static/js/metrics-all.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/metrics-all.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/metrics-all.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/calendar.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/calendar.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/calendar.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/megamenu.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/megamenu.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/jquery-3.2.1.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/jquery-3.2.1.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-3.2.1.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/mailman.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/mailman.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/mailman.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/image/stamps.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/stamps.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/stamps.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/image/find_zip.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/find_zip.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/find_zip.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/image/change_address.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/change_address.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/change_address.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/css/datepicker3.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/datepicker3.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/datepicker3.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/main.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/main.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/main.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/megamenu-v2.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/megamenu-v2.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/megamenu-v2.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/modernizr.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/modernizr.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/modernizr.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/ge-login.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/ge-login.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/ge-login.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/utility_languages.png
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/utility_languages.png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/image/utility_languages.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/css/bootstrap.min.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/bootstrap.min.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/bootstrap.min.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/megamenu-additions.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/megamenu-additions.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-additions.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/location.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/location.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/location.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/js/optimize.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/optimize.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/optimize.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/footer-sb.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/footer-sb.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/footer-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/main-sb.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/main-sb.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/main-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/utility_customer_service.png
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/utility_customer_service.png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/image/utility_customer_service.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/image/featured_clicknship.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/featured_clicknship.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/featured_clicknship.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/image/calculate_price.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/calculate_price.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/calculate_price.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/css/jquery-ui.min.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/jquery-ui.min.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/jquery-ui.min.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/tracking-cross-sell.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/tracking-cross-sell.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/
20.117.188.172200 OK 0 B IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/html;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
content-language: en-US
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/css/footer.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/css/footer.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/footer.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/js/OneLinkUsps.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/OneLinkUsps.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/OneLinkUsps.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwery.com/static/image/gifts.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwery.com/static/image/gifts.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/gifts.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwery.com/static/js/require.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwery.com/static/js/require.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/require.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2