Report - uppssqwery.com/

Report Overview

Submitted URL
uppssqwery.com/
IP
20.117.188.172
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-10-03 21:58:45
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
204

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.186.209.73
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	48 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.25
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
uppssqwery.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	386 kB	20.117.188.172
www.usps.com	11794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	37 kB	192.229.221.165

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service
2022-10-03	medium	uppssqwery.com/	United States Postal Service

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-03	medium	uppssqwery.com/static/picture/schedule_pickup.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/po_box.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/location.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/logo-sb.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/holdmail.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/find_zip.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/logo_mobile.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/calculate_price.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/stamps.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/search.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/mailman.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/change_address.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/tracking.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/free_boxes.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/featured_clicknship.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/picture/hamburger.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/js/header-init-search.js	Phishing
2022-10-03	medium	uppssqwery.com/static/js/jquery.min.js	Phishing
2022-10-03	medium	uppssqwery.com/static/image/business.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff	Phishing
2022-10-03	medium	uppssqwery.com/static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff	Phishing
2022-10-03	medium	uppssqwery.com/static/js/metrics-all.js	Phishing
2022-10-03	medium	uppssqwery.com/static/js/megamenu.js	Phishing
2022-10-03	medium	uppssqwery.com/static/js/jquery-3.2.1.js	Phishing
2022-10-03	medium	uppssqwery.com/static/image/mailman.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/image/stamps.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/image/find_zip.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/image/change_address.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/css/main.css?t=1657032800	Phishing
2022-10-03	medium	uppssqwery.com/static/js/modernizr.js	Phishing
2022-10-03	medium	uppssqwery.com/static/js/ge-login.js	Phishing
2022-10-03	medium	uppssqwery.com/static/js/megamenu-additions.js	Phishing
2022-10-03	medium	uppssqwery.com/static/image/location.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/js/optimize.js	Phishing
2022-10-03	medium	uppssqwery.com/static/css/footer-sb.css?t=1657032800	Phishing
2022-10-03	medium	uppssqwery.com/static/css/main-sb.css?t=1657032800	Phishing
2022-10-03	medium	uppssqwery.com/static/image/featured_clicknship.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/image/calculate_price.svg	Phishing
2022-10-03	medium	uppssqwery.com/	Phishing
2022-10-03	medium	uppssqwery.com/static/css/footer.css?t=1657032800	Phishing
2022-10-03	medium	uppssqwery.com/static/js/OneLinkUsps.js	Phishing
2022-10-03	medium	uppssqwery.com/static/image/gifts.svg	Phishing
2022-10-03	medium	uppssqwery.com/static/js/require.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	uppssqwery.com/static/js/header-init-search.js	904 B	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/header-init-search.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen6681 Hash d8cb563907e68e9649948c6f521efe60 f5b7cf8123929db8162a2af51d07dd11c21fbac3 fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a Loading...

	uppssqwery.com/static/js/megamenu-additions.js	1.3 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/megamenu-additions.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen6022 Hash 847cc8bd91110ff714275c5a29fbd404 cff690cc070f9539cc1c325ed150b819018e8df7 a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd Loading...

	uppssqwery.com/	1.9 kB	2023-03-07	2023-03-08
Pretty URL uppssqwery.com/ IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15:29 Last Seen2023-03-08 06:25:48 Times Seen1 Hash 52e285240db2cbe67e8a074ee023bea6 575e4ad44a5cafbf8965d3f82b67ecbac3f3d78c 9c920afa0578de62c14d6a57cd712f6d5aad3a4208cde3571ac2ef09f613ba08 Loading...

	www.usps.com/global-elements/lib/script/require-jquery.js	74 B	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/require-jquery.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen9108 Hash ea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9 Loading...

	uppssqwery.com/static/js/optimize.js	93 kB	2023-03-07	2024-04-17
Pretty URL uppssqwery.com/static/js/optimize.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:04 Last Seen2024-04-17 18:24:10 Times Seen1160 Hash 8a59b241d202a479a0b46f967afcfefa 2e3e28efbc1d20256eabb526bc59b2ac17dc90f7 611e8b291568bc69886b5cf92f1cf782092132d85098e851013bcff53c3f5c92 Loading...

	uppssqwery.com/static/js/modernizr.js	11 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/modernizr.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen5446 Hash 66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6 Loading...

	uppssqwery.com/static/js/OneLinkUsps.js	3.6 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/OneLinkUsps.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen6042 Hash b60628830a1d34363f98c9443b856555 ba386fdd91d2db7fb6749982caa78bef59028077 68482663e769a15815d142d88f7a4d8105c02fe2bd37a9899a019b518f17a2b3 Loading...

	uppssqwery.com/static/js/ge-login.js	9.3 kB	2023-03-07	2024-04-17
Pretty URL uppssqwery.com/static/js/ge-login.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:04 Last Seen2024-04-17 18:24:11 Times Seen1127 Hash 252bc5d05d5ac9f132978968489a9b37 49cfe0b8d8d08038bf070f11addd9ab53c9ae67e 12de71624f55c7c5e1f462fdfde80f207c449f478917d21c82e65f5b9672cbfd Loading...

	uppssqwery.com/	27 B	2023-03-07	2023-04-02
Pretty URL uppssqwery.com/ IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15:29 Last Seen2023-04-02 21:20:10 Times Seen3705 Hash d679a370635fd03a222368c143751d85 7eacb12232cbb3fa0ac526e917eca6e6a95f873a b5df22f95ada1fe2b3c64ed31446e1391d3723d688cf0bfbd84d0da0a8fe678a Loading...

	www.usps.com/global-elements/lib/script/resize-manager.js	1.0 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/resize-manager.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen8843 Hash 90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887 Loading...

	uppssqwery.com/	5 B	2023-03-07	2024-04-18
Pretty URL uppssqwery.com/ IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 21:13:30 Times Seen2666 Hash 230a091930a82c5ae47e29610ee98ceb 6376b33e5123bf09a271789a272103f957c8f38d 4dc501d66cd78903b81b1a53459d0432939728c537bbe9ffab55ab81521cb352 Loading...

	www.usps.com/global-elements/header/script/search-fe.js	2.3 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/header/script/search-fe.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen8119 Hash f7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b Loading...

	uppssqwery.com/	1.0 kB	2023-03-07	2023-03-08
Pretty URL uppssqwery.com/ IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:15:29 Last Seen2023-03-08 06:25:48 Times Seen1 Hash 17ad56c2a1d511382fddde69b397e991 462dac6ecc166d9f4539308d210337dc7786a74b 9186302729dda68d36784700558a697478abe168275fd68f30cf6b8cebb01b43 Loading...

	uppssqwery.com/static/js/jquery-3.2.1.js	87 kB	2023-03-07	2024-04-20
Pretty URL uppssqwery.com/static/js/jquery-3.2.1.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-20 04:17:10 Times Seen61267 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	uppssqwery.com/static/js/require.js	17 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/require.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen6770 Hash 16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377 Loading...

	uppssqwery.com/	24 B	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/ IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:06 Times Seen5675 Hash 56d62f55706e2e153678329e7bcd94d8 c00d14b88b1fa94b12c0aafb761e676e73758fc9 6949901ccecaa8c8c40ac181981a5a291b81648a0a5ab42223db4875bdd5235c Loading...

	www.usps.com/global-elements/lib/script/helpers.js	695 B	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/lib/script/helpers.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen9084 Hash 5372347b4f98f60b33579180ef6a3567 02064f1641c40b35c14a0da9ee310de54ff76cd5 7fa317b049ed33139394313aba29f27b7f11a226270bf10ce1c26d674c0177e4 Loading...

	www.usps.com/global-elements/footer/script/jquery-3.5.1.js	90 kB	2023-03-07	2024-04-19
Pretty URL www.usps.com/global-elements/footer/script/jquery-3.5.1.js IP 192.229.221.165 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen12826 Hash 9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38 Loading...

	uppssqwery.com/static/js/metrics-all.js	11 kB	2023-03-07	2024-04-17
Pretty URL uppssqwery.com/static/js/metrics-all.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:04 Last Seen2024-04-17 18:24:10 Times Seen1224 Hash 65ab5df156a2a51b278f9967fc154f28 db841daeeb75283b73216a616f52489f6f3bebc3 c7a923623e0ef6cf3ec2c4afa6b3f757ee1f183ac9503e7295629fff50a27597 Loading...

	uppssqwery.com/static/js/jquery.min.js	85 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/jquery.min.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:06 Times Seen5582 Hash 8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062 Loading...

	uppssqwery.com/static/js/megamenu.js	14 kB	2023-03-07	2024-04-19
Pretty URL uppssqwery.com/static/js/megamenu.js IP 20.117.188.172 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-19 17:50:07 Times Seen3810 Hash f91cb845e3581dd07e23db07e02c2366 ffb9ee2cad8c59914fcc3000ba8153a167036738 df75a5a617c9d258b4127a64b9c19a4c2c8b95b2036b97530a3d513c672cf110 Loading...

HTTP Transactions (79)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 21:04:24 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x8W6U8_Exsjb4bOdbb8_T_0TNzW6zjWnjlP4aouV2BWVhy4bVp8EkA==
Age: 3250

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.25

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.25:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ET5Kj6n5rhGWL3O-QrvHezDSRpMhpzYLMX1tk7GqopaXlC4YnbztuQ==
age: 59407
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13106
Expires: Tue, 04 Oct 2022 01:37:00 GMT
Date: Mon, 03 Oct 2022 21:58:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2759b1e2efa9d5c30fb41c5290d93228
832ac7cba2029f74b4059da7129a1639bcc91066
a52b0189d6d887456f443118081f0d450fae07025466c363f5029dc7f05f8570

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A52B0189D6D887456F443118081F0D450FAE07025466C363F5029DC7F05F8570"
Last-Modified: Mon, 03 Oct 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Oct 2022 03:58:35 GMT
Date: Mon, 03 Oct 2022 21:58:35 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/go-now(2).png

20.117.188.172

200 OK

27 kB

URL HTTP/2
uppssqwery.com/static/picture/go-now(2).png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (26972 bytes)
Hash
b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/picture/go-now(2).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 26972
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/schedule_pickup.svg

20.117.188.172

200 OK

1.8 kB

URL HTTP/2
uppssqwery.com/static/picture/schedule_pickup.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.8 kB (1775 bytes)
Hash
d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1775
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/go-now.png

20.117.188.172

200 OK

20 kB

URL HTTP/2
uppssqwery.com/static/picture/go-now.png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20334 bytes)
Hash
d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/picture/go-now.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 20334
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/po_box.svg

20.117.188.172

200 OK

1.6 kB

URL HTTP/2
uppssqwery.com/static/picture/po_box.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.6 kB (1639 bytes)
Hash
d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/po_box.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1639
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/location.svg

20.117.188.172

200 OK

2.6 kB

URL HTTP/2
uppssqwery.com/static/picture/location.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.6 kB (2586 bytes)
Hash
9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/location.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2586
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/logo-sb.svg

20.117.188.172

200 OK

3.6 kB

URL HTTP/2
uppssqwery.com/static/picture/logo-sb.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
3.6 kB (3557 bytes)
Hash
0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/logo-sb.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 3557
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/holdmail.svg

20.117.188.172

200 OK

1.4 kB

URL HTTP/2
uppssqwery.com/static/picture/holdmail.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.4 kB (1448 bytes)
Hash
4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/holdmail.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1448
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/find_zip.svg

20.117.188.172

200 OK

1.5 kB

URL HTTP/2
uppssqwery.com/static/picture/find_zip.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.5 kB (1471 bytes)
Hash
e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/find_zip.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1471
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/logo_mobile.svg

20.117.188.172

200 OK

2.1 kB

URL HTTP/2
uppssqwery.com/static/picture/logo_mobile.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.1 kB (2060 bytes)
Hash
f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/logo_mobile.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2060
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/calculate_price.svg

20.117.188.172

200 OK

2.3 kB

URL HTTP/2
uppssqwery.com/static/picture/calculate_price.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
2.3 kB (2302 bytes)
Hash
6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/calculate_price.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 2302
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/stamps.svg

20.117.188.172

200 OK

1.1 kB

URL HTTP/2
uppssqwery.com/static/picture/stamps.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.1 kB (1103 bytes)
Hash
2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/stamps.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1103
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/search.svg

20.117.188.172

200 OK

1.5 kB

URL HTTP/2
uppssqwery.com/static/picture/search.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.5 kB (1465 bytes)
Hash
ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/search.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1465
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/go-now(1).png

20.117.188.172

200 OK

8.0 kB

URL HTTP/2
uppssqwery.com/static/picture/go-now(1).png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (8026 bytes)
Hash
49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/picture/go-now(1).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 8026
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/go-now(3).png

20.117.188.172

200 OK

20 kB

URL HTTP/2
uppssqwery.com/static/picture/go-now(3).png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19969 bytes)
Hash
6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/picture/go-now(3).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 19969
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/mailman.svg

20.117.188.172

200 OK

1.8 kB

URL HTTP/2
uppssqwery.com/static/picture/mailman.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.8 kB (1827 bytes)
Hash
1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/mailman.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1827
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/change_address.svg

20.117.188.172

200 OK

1.9 kB

URL HTTP/2
uppssqwery.com/static/picture/change_address.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.9 kB (1869 bytes)
Hash
3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/change_address.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1869
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/tracking.svg

20.117.188.172

200 OK

1.6 kB

URL HTTP/2
uppssqwery.com/static/picture/tracking.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.6 kB (1561 bytes)
Hash
2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/tracking.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1561
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/free_boxes.svg

20.117.188.172

200 OK

1.1 kB

URL HTTP/2
uppssqwery.com/static/picture/free_boxes.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.1 kB (1066 bytes)
Hash
dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/free_boxes.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1066
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/featured_clicknship.svg

20.117.188.172

200 OK

1.1 kB

URL HTTP/2
uppssqwery.com/static/picture/featured_clicknship.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Size
1.1 kB (1078 bytes)
Hash
375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 1078
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/hamburger.svg

20.117.188.172

200 OK

546 B

URL HTTP/2
uppssqwery.com/static/picture/hamburger.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
546 B (546 bytes)
Hash
37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/picture/hamburger.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/svg+xml
content-length: 546
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/picture/go-now(4).png

20.117.188.172

200 OK

22 kB

URL HTTP/2
uppssqwery.com/static/picture/go-now(4).png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22133 bytes)
Hash
22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/picture/go-now(4).png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: image/png
content-length: 22133
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/js/header-init-search.js

20.117.188.172

200 OK

904 B

URL HTTP/2
uppssqwery.com/static/js/header-init-search.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with CRLF line terminators
Size
904 B (904 bytes)
Hash
d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/header-init-search.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
content-length: 904
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 03 Oct 2022 21:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 03 Oct 2022 22:08:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JR4NYMd1h9-dH9ahzVU_Qq_p_aSMzs4hbhPOiKX0pVODNEI4cFWreA==
Age: 1742

uppssqwery.com/static/js/jquery.min.js

20.117.188.172

200 OK

31 kB

URL HTTP/2
uppssqwery.com/static/js/jquery.min.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
31 kB (31121 bytes)
Hash
340d189d4e7161da1343e3610fef47a0
2d67db8029507c29931ab9442f78f1a956f5997c
7da496caf6271b1f95c7d36d70721265210657dc71202346dd40c43d980a8866

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/jquery.min.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/business.svg

20.117.188.172

404 Not Found

47 kB

URL HTTP/2
uppssqwery.com/static/image/business.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
47 kB (46786 bytes)
Hash
cdc9a1023f78eb4b1605d8eaf2774c57
ee682cb29a168e1c79119d8073aaa0e620546986
010bf6e99ddb1d470f61496c8eb31b1665fed7300d670e127d4b24cd6b920de8

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/business.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff

20.117.188.172

200 OK

59 kB

URL HTTP/2
uppssqwery.com/static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Web Open Font Format, TrueType, length 58690, version 1.0\012- data
Size
59 kB (58690 bytes)
Hash
a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/font/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/main-sb.css?t=1657032800
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/font-woff
content-length: 58690
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

uppssqwery.com/static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff

20.117.188.172

200 OK

52 kB

URL HTTP/2
uppssqwery.com/static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Web Open Font Format, TrueType, length 51685, version 1.0\012- data
Size
52 kB (51685 bytes)
Hash
a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/font/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/main-sb.css?t=1657032800
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/font-woff
content-length: 51685
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 21:58:35 GMT
Last-Modified: Mon, 03 Oct 2022 20:29:09 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471

www.usps.com/global-elements/lib/script/helpers.js

192.229.221.165

200 OK

358 B

URL HTTP/2
www.usps.com/global-elements/lib/script/helpers.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (695), with no line terminators
Size
358 B (358 bytes)
Hash
a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46

HTTP Headers

GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 34906
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2

www.usps.com/global-elements/header/script/search-fe.js

192.229.221.165

200 OK

930 B

URL HTTP/2
www.usps.com/global-elements/header/script/search-fe.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (2264), with no line terminators
Size
930 B (930 bytes)
Hash
044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71

HTTP Headers

GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 15653
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2

uppssqwery.com/static/css/qt.css

20.117.188.172

200 OK

10 kB

URL HTTP/2
uppssqwery.com/static/css/qt.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
10 kB (9959 bytes)
Hash
94c2a771aaa898bdb2e31126e743c9e0
7323ddee4b58095df6fa88eeaa660e87baa8c3cb
cbfbcfd4f81927b073e7fe992b9085bbd5dd0f9f2c4311bbb5d66fcbfb4b528e

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/qt.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.186.209.73

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.186.209.73:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7lfsJaao18HSlZdqkNIybQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /Y+E6WVhSf3mGFxvPXrxhh7w6Zg=

www.usps.com/global-elements/footer/script/jquery-3.5.1.js

192.229.221.165

200 OK

31 kB

URL HTTP/2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (65450), with CRLF line terminators
Size
31 kB (30950 bytes)
Hash
2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba

HTTP Headers

GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 62896
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2

www.usps.com/global-elements/lib/script/resize-manager.js

192.229.221.165

200 OK

468 B

URL HTTP/2
www.usps.com/global-elements/lib/script/resize-manager.js
IP
192.229.221.165:0
ASN
#15133 EDGECAST

File type
ASCII text, with very long lines (1040), with no line terminators
Size
468 B (468 bytes)
Hash
7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e

HTTP Headers

GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 2101
content-security-policy: default-src 'self' https:;                                              connect-src 'self' https:;                                              font-src 'self' https: data:;                                              frame-src 'self' https:;                                              img-src 'self' https: data:; media-src 'self' https:;                                              object-src 'self' https:;                                              script-src 'self' 'unsafe-inline' 'unsafe-eval' https:;                                              style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 03 Oct 2022 21:58:36 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2

uppssqwery.com/favicon.ico

20.117.188.172

200 OK

32 kB

URL HTTP/2
uppssqwery.com/favicon.ico
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
32 kB (32038 bytes)
Hash
3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:36 GMT
content-type: image/x-icon
content-length: 32038
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9656
Expires: Tue, 04 Oct 2022 00:39:33 GMT
Date: Mon, 03 Oct 2022 21:58:37 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10490 bytes)
Hash
bed17699f6b123b33b8df416b23c4cac
36458cca636c4ffc873df8acd254ff726b1a9544
65dac85ddf2d9918696ea270a5a3d034e07e43ca5714f169747feee09fc4b897

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F954ddf3b-951c-46b3-a8ce-00e3bd3ef239.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: a7e4d6b4-be77-41a9-94dd-83167d5b002e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5tUrE72oAMFZYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d5c1d-1ba0805b629e657b60ff1b85;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 07:11:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DZ6ZMlje50ktV6_cABRx3fr4Dke7Z2UhNhBDi1aCK00kRPTlnG691A==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 17:03:47 GMT
age: 17690
etag: "36458cca636c4ffc873df8acd254ff726b1a9544"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8158 bytes)
Hash
721a8d8f94c3796abf021978fcdbc831
3fc3aeae907a0ce0db21753c67c1000681e48b8e
cb497b15e7c2e49930b99f8d6659f0394acefb7b11613ca04397ee782dac759d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a090b5-0736-4ddd-b6ca-3c76661e7051.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8158
x-amzn-requestid: 424c8c6c-7075-4ace-97e6-2b0a609d1b7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXDxGRlIAMFZrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-046d963a345c15e81dc74e4d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: AM8Ox9ObWGoXI-QnnoI7QkY5mOh8j6xBPetTrhyVktVO40ekk4X2Eg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:33 GMT
age: 784
etag: "3fc3aeae907a0ce0db21753c67c1000681e48b8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TVz3oiy-Z2r9lGFDgsnGNxotvvAPeOaa7LMzqs432QjZpZo-PNt1-g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 62146
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

uppssqwery.com/static/css/schedule-redelivery.css

20.117.188.172

200 OK

13 kB

URL HTTP/2
uppssqwery.com/static/css/schedule-redelivery.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
data
Size
13 kB (13139 bytes)
Hash
80e67d7bc1a61a3c413506ea1018749c
b305e25c0000db8849968b625f4a733dd200f9dd
bd4c8aac57bfba93711f46a26c9de050257a893a198579a8aa859d288be32a5d

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/schedule-redelivery.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8657 bytes)
Hash
f1af609199093985d73fd1d256482c12
a54f3f4af645c1c93299360bc7dcf06bbae8de81
047e15a2d3ea5b7d1f3d22cdac2ac0446c6267c99deb0b12576366088d29d5b3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d8a8cc8-8c9a-4305-bb96-a248c5e44655.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8657
x-amzn-requestid: 172be66b-6140-4ff6-a061-22d177e75c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YtlXZGujoAMF2vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63288295-6f74795f2b26d54409b2f388;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 14:54:13 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JuivAaE3zJE1Hyn9GdpPB3Z94FvDmfvGyuIYPrAOFlhyClh9yQfefQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:59:39 GMT
age: 86338
etag: "a54f3f4af645c1c93299360bc7dcf06bbae8de81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9083 bytes)
Hash
523edd86af4757d0bc5fa5b3b8a3596a
8118ee462077c291b9d6f1402b85b55a9ceba8c2
c27de9970317636df8c4a517a9ed38e573235b351bf92c9b8bb1f964cd100031

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: fda71fd3-ef25-4a63-94ae-1bfc8aef8d14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXD2H0DIAMFjrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-198915fc17ce3dab571b7575;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _JxPe8uPQIgRKoJxtJAKjXpVy1hCW0rFcs8K_erJOHbVNpw339Pz6w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:33 GMT
age: 784
etag: "8118ee462077c291b9d6f1402b85b55a9ceba8c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

uppssqwery.com/static/js/metrics-all.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/metrics-all.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/metrics-all.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/calendar.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/calendar.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/calendar.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/megamenu.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/megamenu.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/megamenu.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/jquery-3.2.1.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/jquery-3.2.1.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/jquery-3.2.1.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/mailman.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/mailman.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/mailman.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/image/stamps.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/stamps.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/stamps.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/image/find_zip.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/find_zip.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/find_zip.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/image/change_address.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/change_address.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/change_address.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/css/datepicker3.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/datepicker3.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/datepicker3.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/main.css?t=1657032800

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/main.css?t=1657032800
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/css/main.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/megamenu-v2.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/megamenu-v2.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/megamenu-v2.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/modernizr.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/modernizr.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/modernizr.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/ge-login.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/ge-login.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/ge-login.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/utility_languages.png

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/utility_languages.png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/image/utility_languages.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/css/bootstrap.min.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/bootstrap.min.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/bootstrap.min.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/megamenu-additions.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/megamenu-additions.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/megamenu-additions.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/location.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/location.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/location.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/js/optimize.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/optimize.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/optimize.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/footer-sb.css?t=1657032800

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/footer-sb.css?t=1657032800
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/css/footer-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/main-sb.css?t=1657032800

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/main-sb.css?t=1657032800
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/css/main-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/utility_customer_service.png

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/utility_customer_service.png
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/image/utility_customer_service.png HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/image/featured_clicknship.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/featured_clicknship.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/featured_clicknship.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/image/calculate_price.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/calculate_price.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/calculate_price.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/css/jquery-ui.min.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/jquery-ui.min.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/jquery-ui.min.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/tracking-cross-sell.css

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/tracking-cross-sell.css
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service

HTTP Headers

GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/html;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
content-language: en-US
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/css/footer.css?t=1657032800

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/css/footer.css?t=1657032800
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/css/footer.css?t=1657032800 HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/js/OneLinkUsps.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/OneLinkUsps.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/OneLinkUsps.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

uppssqwery.com/static/image/gifts.svg

20.117.188.172

404 Not Found

0 B

URL HTTP/2
uppssqwery.com/static/image/gifts.svg
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/image/gifts.svg HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

uppssqwery.com/static/js/require.js

20.117.188.172

200 OK

0 B

URL HTTP/2
uppssqwery.com/static/js/require.js
IP
20.117.188.172:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	United States Postal Service
fortinet	Phishing

HTTP Headers

GET /static/js/require.js HTTP/1.1
Host: uppssqwery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwery.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 21:58:35 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations