r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b7407cc102d62a5acd5e61f8a79bed36
c2f4890a62454e514962b55b7fc14228339c8e90
be282de92da261128a7c8471f3067466aa9930fd0ab2a2cdda8cd2d6ce2bbd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE282DE92DA261128A7C8471F3067466AA9930FD0AB2A2CDDA8CD2D6CE2BBD74"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9746
Expires: Wed, 08 Feb 2023 06:56:14 GMT
Date: Wed, 08 Feb 2023 04:13:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12953
Expires: Wed, 08 Feb 2023 07:49:41 GMT
Date: Wed, 08 Feb 2023 04:13:48 GMT
Connection: keep-alive
uspieass.com/
34.125.143.251301 Moved Permanently 162 B IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 08 Feb 2023 04:13:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://uspieass.com/
Strict-Transport-Security: max-age=31536000
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 03:34:12 GMT
content-type: application/json
age: 2376
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2775
Expires: Wed, 08 Feb 2023 05:00:03 GMT
Date: Wed, 08 Feb 2023 04:13:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ltdnpqm2zbRwWI05/a1sljYRL+gBT4QCNICG1o5Hx4m6wSE7ZdcZAnwDdbQuYv96PVgdKB3hFFo=
x-amz-request-id: DEBKE5BDZ7BS2354
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 03:35:46 GMT
age: 2282
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 03:14:52 GMT
age: 3537
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3635
Expires: Wed, 08 Feb 2023 05:14:24 GMT
Date: Wed, 08 Feb 2023 04:13:49 GMT
Connection: keep-alive
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash ac0f8ba004b81c61a81e4af271289ee2
b6d7c249d40c112ab7cef416a24c40f0423c5e35
ebd91841febde5b517883e477a8fbb0fb38ebd15df883f053aee64903ff087e2
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 04:13:49 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 06:05:24 GMT
Expires: Tue, 14 Feb 2023 06:05:23 GMT
Etag: "b6d7c249d40c112ab7cef416a24c40f0423c5e35"
Cache-Control: max-age=524493,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796188effd08b4eb-OSL
push.services.mozilla.com/
54.148.242.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.242.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QWqV/nYqI8lqsTTLpXvyfQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7dKHy5yk2B2Us0wXaeU6WTshF20=
uspieass.com/static/images/loading-icon-transparent-background-12.jpg
34.125.143.251200 OK 82 kB URL HTTP/2 uspieass.com/static/images/loading-icon-transparent-background-12.jpg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 630 x 637\012- data
Hash 9e0373c2b4410c49439dfd822c5fd16e
427f86c03751b7e107fd282bbe32be18fc2e0898
05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
Analyzer Verdict Alert openphish United States Postal Service
GET /static/images/loading-icon-transparent-background-12.jpg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Wed, 21 Sep 2022 07:47:06 GMT
etag: "632ac17a-13ea4"
expires: Fri, 10 Mar 2023 04:13:49 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/config/urlConfig.json
34.125.143.251200 OK 884 B URL HTTP/2 uspieass.com/config/urlConfig.json
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash b824bae32b584c82d19e0659541f5846
d01143d6e86ab6abd4eb000bcb4b861d5b456dc1
d10fc2c36d1fa868304f18253044c701a5f12f68fb520a6538b507b47f15e8ad
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /config/urlConfig.json HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: application/json
content-length: 884
last-modified: Thu, 02 Feb 2023 10:22:58 GMT
etag: "63db8f02-374"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3617
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 04:13:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3617
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 04:13:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3617
Expires: Wed, 08 Feb 2023 05:14:08 GMT
Date: Wed, 08 Feb 2023 04:13:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a9c2a9eee923b84d4e06438a8b2acaff
520b122e3ce52220af153fee26bb7067283f9075
9ff4236fdcd05210a9c8bb48ea68179e142b1b05c8b19dd66282590dff69fa22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcf61053-67f6-4767-ad44-fa802c5ef5b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10058
x-amzn-requestid: 94374454-1e89-4c43-895b-0a90f39b851d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O5vEgcoAMFctg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c50a-0bf11cad4b0818c36188ba91;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: riOms0gHUSORGsYmbsQ95pKZckJUQRfCLtL3W5gGQn9kAG2vk7nM5w==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:11:10 GMT
age: 161
etag: "520b122e3ce52220af153fee26bb7067283f9075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: 9f067f0c-2991-41ae-8dd0-5719a5438abc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PHwEn4IAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c564-730d01807c13643373d64897;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eSU1CSydRTodwnN5DNTXbYD3d3kYFCHiCvPRq5DZTTDSTH2L-GV_1g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:19:17 GMT
age: 21274
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 75485
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TCX7ZFhV73kN0UBshXeb0qdSkY-8qdeNN6EgioqOUmSAnraEhAohMQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:11 GMT
age: 23500
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 726928e5de19ef978faebbe933c34008
bdaba3ed0c7efb65de88af96063d830683c8499b
c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8644
x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjRHBFoAMF4_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xU_uVO78ZQRKon3Cz-fVcHJuPEMMgzDsVuY8BXoKL6ntJwkl-SLeQA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:03 GMT
age: 23508
etag: "bdaba3ed0c7efb65de88af96063d830683c8499b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7543be9bef0afb8f61344286b7136dd7
e1537aa408cde39d2a314cc2a14f7f7a04a84eb1
162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CV8Q0EwlleoBURF3IvwUGDm_ANrg_SINlUR3cl6OhqySJPejP6T0hg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:41:21 GMT
age: 73950
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 0eed41d918948598a5ea510c55b9c27e
4762aa905d7b1072906df3096bceeceda0f23ded
8e41cfd7180c701a80ac2969c6cf70cdd892b366954cf1f5af0fcb1bd5cb3305
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 04:13:51 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Sun, 05 Feb 2023 19:11:23 GMT
Expires: Sun, 12 Feb 2023 19:11:22 GMT
Etag: "4762aa905d7b1072906df3096bceeceda0f23ded"
Cache-Control: max-age=398850,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796188fa7a01b4eb-OSL
jiexike998.top/click/queryIp
34.125.107.108200 OK 12 B URL HTTP/2 jiexike998.top/click/queryIp
IP 34.125.107.108:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /click/queryIp HTTP/1.1
Host: jiexike998.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://uspieass.com
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:51 GMT
content-type: text/plain;charset=UTF-8
content-length: 12
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2
uspieass.com/favicon.ico
34.125.143.251404 Not Found 146 B IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /favicon.ico HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 04:13:51 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
jiexike998.top/websocket/123
34.125.107.108101 0 B URL HTTP/1.1 jiexike998.top/websocket/123
IP 34.125.107.108:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /websocket/123 HTTP/1.1
Host: jiexike998.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://uspieass.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tvKXeUiFjuLZoZI8HulYFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Wed, 08 Feb 2023 04:13:52 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: /F0Viq8j+oOInviAu8R1R+IJmsA=
Sec-WebSocket-Extensions: permessage-deflate
uspieass.com/__imp_apg__/js/sed-usps-70fc8edc-qa.js
34.125.143.251404 Not Found 146 B URL HTTP/2 uspieass.com/__imp_apg__/js/sed-usps-70fc8edc-qa.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /__imp_apg__/js/sed-usps-70fc8edc-qa.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f2d491173dd9b707af2febe853840e85
76b31e640c9f56fdd28762262d77456e9d3e6fcf
d82577797ad17fa4c51e5fc10217bd2809767c66457a3cf4c98295ca452ebad8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2475
Cache-Control: max-age=146409
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:53 GMT
Etag: "63e2b0bf-118"
Expires: Thu, 09 Feb 2023 20:54:02 GMT
Last-Modified: Tue, 07 Feb 2023 20:12:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
uspieass.com/static/css/conditionalchatlink.css
34.125.143.251200 OK 12 kB URL HTTP/2 uspieass.com/static/css/conditionalchatlink.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash fab8bc55373610223676956e35daea9f
0f3b21f39bb436c4a5f03dd3dbdb28763e2fa318
89742f5cd5d4646b3e58f02d15e0a7b20a3e7da5fb62dda9b12530d0319f5388
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/conditionalchatlink.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-cb57"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/picture/logo-sb.svg
34.125.143.251200 OK 3.6 kB URL HTTP/2 uspieass.com/static/picture/logo-sb.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo-sb.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 3557
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-de5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/hamburger.svg
34.125.143.251200 OK 546 B URL HTTP/2 uspieass.com/static/picture/hamburger.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/hamburger.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 546
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-222"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/logo_mobile.svg
34.125.143.251200 OK 2.1 kB URL HTTP/2 uspieass.com/static/picture/logo_mobile.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo_mobile.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 2060
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
etag: "632a2574-80c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/search.svg
34.125.143.251200 OK 1.5 kB URL HTTP/2 uspieass.com/static/picture/search.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/search.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1465
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-5b9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/tracking.svg
34.125.143.251200 OK 1.6 kB URL HTTP/2 uspieass.com/static/picture/tracking.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/tracking.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1561
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-619"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/mailman.svg
34.125.143.251200 OK 1.8 kB URL HTTP/2 uspieass.com/static/picture/mailman.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/mailman.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1827
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-723"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/location.svg
34.125.143.251200 OK 2.6 kB URL HTTP/2 uspieass.com/static/picture/location.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/location.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 2586
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-a1a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/stamps.svg
34.125.143.251200 OK 1.1 kB URL HTTP/2 uspieass.com/static/picture/stamps.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/stamps.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1103
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-44f"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/schedule_pickup.svg
34.125.143.251200 OK 1.8 kB URL HTTP/2 uspieass.com/static/picture/schedule_pickup.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1775
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
etag: "632a2574-6ef"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/calculate_price.svg
34.125.143.251200 OK 2.3 kB URL HTTP/2 uspieass.com/static/picture/calculate_price.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/calculate_price.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 2302
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-8fe"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/find_zip.svg
34.125.143.251200 OK 1.5 kB URL HTTP/2 uspieass.com/static/picture/find_zip.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/find_zip.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1471
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-5bf"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/holdmail.svg
34.125.143.251200 OK 1.4 kB URL HTTP/2 uspieass.com/static/picture/holdmail.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/holdmail.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1448
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-5a8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/change_address.svg
34.125.143.251200 OK 1.9 kB URL HTTP/2 uspieass.com/static/picture/change_address.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/change_address.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1869
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-74d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/po_box.svg
34.125.143.251200 OK 1.6 kB URL HTTP/2 uspieass.com/static/picture/po_box.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/po_box.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1639
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
etag: "632a2578-667"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/go-now.png
34.125.143.251200 OK 20 kB URL HTTP/2 uspieass.com/static/picture/go-now.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/go-now.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/png
content-length: 19969
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-4e01"
expires: Fri, 10 Mar 2023 04:13:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/header-init-search.js
34.125.143.251200 OK 904 B URL HTTP/2 uspieass.com/static/js/header-init-search.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/js/header-init-search.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
content-length: 904
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-388"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/idxs-icon.svg
34.125.143.251200 OK 1.9 kB URL HTTP/2 uspieass.com/static/picture/idxs-icon.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ff0c118bc3a45d92e2d45e57416abee5
9b5b3759e5e7e2148269063f1575d22cb2126b41
ab9283d446c093b7acf18a7e95a21a9b834b12f19f26e8776ff3407fc83e5b6c
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/idxs-icon.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/svg+xml
content-length: 1876
last-modified: Tue, 20 Sep 2022 20:41:32 GMT
etag: "632a257c-754"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/social-facebook_1.png
34.125.143.251200 OK 1.9 kB URL HTTP/2 uspieass.com/static/picture/social-facebook_1.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-facebook_1.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/png
content-length: 1873
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-751"
expires: Fri, 10 Mar 2023 04:13:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/social-twitter_2.png
34.125.143.251200 OK 1.8 kB URL HTTP/2 uspieass.com/static/picture/social-twitter_2.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-twitter_2.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/png
content-length: 1842
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-732"
expires: Fri, 10 Mar 2023 04:13:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/social-pinterest_6.png
34.125.143.251200 OK 2.3 kB URL HTTP/2 uspieass.com/static/picture/social-pinterest_6.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-pinterest_6.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/png
content-length: 2325
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-915"
expires: Fri, 10 Mar 2023 04:13:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/picture/social-youtube_3.png
34.125.143.251200 OK 2.5 kB URL HTTP/2 uspieass.com/static/picture/social-youtube_3.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-youtube_3.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: image/png
content-length: 2461
last-modified: Tue, 20 Sep 2022 20:41:18 GMT
etag: "632a256e-99d"
expires: Fri, 10 Mar 2023 04:13:53 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/images/favicon.ico
34.125.143.251200 OK 32 kB URL HTTP/2 uspieass.com/static/images/favicon.ico
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/images/favicon.ico HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/x-icon
content-length: 32038
last-modified: Wed, 19 Oct 2022 10:16:19 GMT
etag: "634fce73-7d26"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/css/bootstrap.min.css
34.125.143.251200 OK 24 kB URL HTTP/2 uspieass.com/static/css/bootstrap.min.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 61da02c8a1da79bdd8fb4602dc17672d
739d5fc4c8c7b8cc63bc07447c6071cd031cac4a
984a1a7c8770f6f3a45cac10f3d31b9017b6193d71b6a44dba3a5616e0300acc
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/bootstrap.min.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-1d8fc"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/css/footer.css
34.125.143.251200 OK 2.5 kB URL HTTP/2 uspieass.com/static/css/footer.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 9048c0b3a75f83dd75be067386ce2134
b17ad8a784f621bb2b3a60423b644117e9ae41bc
2a5670d25513e5d064845448dfa61ea06e90eb8a76b25c328c98b8929eff3369
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/footer.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-b60"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/images/chinese_characters.gif
34.125.143.251200 OK 2.2 kB URL HTTP/2 uspieass.com/static/images/chinese_characters.gif
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 44 x 102\012- data
Hash 6cfd66aca15e28ed9e77672fa22604b7
79f78e9167a5853d740486cdae627034cf2a7085
dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/images/chinese_characters.gif HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/gif
content-length: 2173
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-87d"
expires: Fri, 10 Mar 2023 04:13:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/css/tracking-cross-sell.css
34.125.143.251200 OK 1.2 kB URL HTTP/2 uspieass.com/static/css/tracking-cross-sell.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 1df95bd79380b2f58838e45e25f10652
332c909b5dd453c1a11af1ff164ed707af4ac12b
9a39a992a95bf1018bf5cedee5cdb77df53d4546ec414dbc3a77792c888cc0c7
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-bec"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/images/mailman.svg
34.125.143.251200 OK 1.8 kB URL HTTP/2 uspieass.com/static/images/mailman.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/images/mailman.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 1827
last-modified: Tue, 20 Sep 2022 20:41:36 GMT
etag: "632a2580-723"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/fonts/stamps.svg
34.125.143.251200 OK 52 kB URL HTTP/2 uspieass.com/static/fonts/stamps.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/stamps.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/fonts/find_zip.svg
34.125.143.251200 OK 52 kB URL HTTP/2 uspieass.com/static/fonts/find_zip.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/find_zip.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/megamenu-v3.js
34.125.143.251200 OK 55 kB URL HTTP/2 uspieass.com/static/js/megamenu-v3.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash f696a2eb519a22f119e636bc93b8fae1
849a632baf3a5c100d4942f1aac16cbd746b3f70
9eca8d6f2e42ef298b31c8ff2f5ee4c43cd7e8dbb8d002d3e5889386bea64c54
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-v3.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
vary: Accept-Encoding
etag: W/"632a257a-3458"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/jquery-3.5.1.js
34.125.143.251200 OK 87 kB URL HTTP/2 uspieass.com/static/js/jquery-3.5.1.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 89482a8e04364f7b79557d5c0f33f1d9
62a03bbc2f21fa0a61253e392896f6f54b3104fe
abae8b245cd9ada75b646800a3f271f0a88e154fd2c07f95d85a06e8a5bf68f1
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-3.5.1.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
vary: Accept-Encoding
etag: W/"632a257e-15d84"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/location.svg
34.125.143.251200 OK 52 kB URL HTTP/2 uspieass.com/static/fonts/location.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/location.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:32 GMT
etag: "632a257c-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
104.17.224.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP 104.17.224.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Cookie: __cf_bm=LVclE_O97f0U4BrE6ePmvzGYovBr1CADf9xZCZi7pFY-1675829634-0-AcBjvS5iwqBJHepz1PTE2fFZAZ+8HHuPWHn2Omupy8UCQMx2TYPMvCu4gIDZLphrDVJdCHNrGgfiT/LE409mUmw=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 123760
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 796189113d73b51e-OSL
X-Firefox-Spdy: h2
uspieass.com/static/js/bootstrap.min.js
34.125.143.251200 OK 12 kB URL HTTP/2 uspieass.com/static/js/bootstrap.min.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ff58d96df34b9b61b9571a99e066c0b9
6bf29b8c074b3c7d814afb7428f564e064c88807
d26ab377d39b09d1c94096d5526df526c0799571aa6dec5f84565d58f39708ef
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/bootstrap.min.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-9049"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/modernizr.js
34.125.143.251200 OK 57 kB URL HTTP/2 uspieass.com/static/js/modernizr.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 2fd195161a233320330512e5d1b09c02
a8ce9a477fb732789756d3d54aec25c4c7b30860
67ce3128074d154849195916cbf659615e079fa05367439946b4559ce76995a7
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/modernizr.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
vary: Accept-Encoding
etag: W/"632a257e-2bfd"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/megamenu-additions.js
34.125.143.251200 OK 53 kB URL HTTP/2 uspieass.com/static/js/megamenu-additions.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 6884f2894be0aa89a8237e29d2a16697
b602ed587c63d08b35faa34e1b4bf3d09d0118d4
fece8119b0bf3ebc36d4b7695a6019e999887acbc99f3e6facfdf4ce178f65f4
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-additions.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-541"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
jiexike998.top/click/addClick?ip=91.90.42.154
34.125.107.108200 OK 0 B URL HTTP/2 jiexike998.top/click/addClick?ip=91.90.42.154
IP 34.125.107.108:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
OPTIONS /click/addClick?ip=91.90.42.154 HTTP/1.1
Host: jiexike998.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ip,sink,sinks
Referer: https://uspieass.com/
Origin: https://uspieass.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: text/plain;charset=utf-8
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
X-Firefox-Spdy: h2
uspieass.com/static/js/onelinkusps.js
34.125.143.251200 OK 53 kB URL HTTP/2 uspieass.com/static/js/onelinkusps.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d1af2f1887e9074f1d5b51db55198a5c
1afae6061aedcf4029ee6a90d6bd05b4ea74e80d
8cbd62f9897238e79e250eac5cd23a8d15cb80e76b2262bc96e04e1b04298b68
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/onelinkusps.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-e37"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/require.js
34.125.143.251200 OK 7.2 kB URL HTTP/2 uspieass.com/static/js/require.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 0f0aed7807871fda8e025ad91145c56c
7e43c8b81f3c35b8fc9575f4dc448a105c05a7de
99534a660f336475603c551aeaebbe94cc370ded8fe6c658b75c7e484ecaab36
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/require.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
vary: Accept-Encoding
etag: W/"632a2570-440f"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/schedule-redelivery.svg
34.125.143.251404 Not Found 146 B URL HTTP/2 uspieass.com/static/fonts/schedule-redelivery.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/schedule-redelivery.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uspieass.com/static/js/vueConfig.js
34.125.143.251200 OK 54 kB URL HTTP/2 uspieass.com/static/js/vueConfig.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 9c3b68fb79b760139eadf8eeed2280e1
291eebd1805dbb437a4f89dfe999de379703ecf0
1140b4eb3a6f4f53f405d71da68ed0cb66da365050f3ac765e7df94bc6065b22
Analyzer Verdict Alert urlquery suspicious Suspicious - Suspicious JS code
openphish United States Postal Service
fortinet Phishing
GET /static/js/vueConfig.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 09:06:41 GMT
vary: Accept-Encoding
etag: W/"63d63721-10a4"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/ge-login.js
34.125.143.251200 OK 55 kB URL HTTP/2 uspieass.com/static/js/ge-login.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 1dae9b8df4ffe72aab658244aecd1853
49fb1bc0aa9c50acf737b9a97bb66df10b0ad901
31aefbfe748f38a2389445126ddf92fa65dbe5901e668759ae568947f90a420f
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/ge-login.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
vary: Accept-Encoding
etag: W/"632a2578-2460"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/po_box.svg
34.125.143.251200 OK 52 kB URL HTTP/2 uspieass.com/static/fonts/po_box.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/po_box.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/fonts/shipping-supplies.svg
34.125.143.251200 OK 2.6 kB URL HTTP/2 uspieass.com/static/fonts/shipping-supplies.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5c5579a50964d4972d1954bff4ee232d
c78b384713cf7a8a5515a54f17c6e70ebdde98fc
c12815f27ecdfd09b2920c1eea21ae7abb8e107349d6bb8b39707a0cd9a3e591
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/shipping-supplies.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 2552
last-modified: Tue, 20 Sep 2022 20:41:16 GMT
etag: "632a256c-9f8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/jquery.min.js
34.125.143.251200 OK 36 kB URL HTTP/2 uspieass.com/static/js/jquery.min.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 908dd6c64f3415fa6a255d7f379b5df8
2d78e7e46493f7baa3243091955281ab5026aba7
843ae63efb9fef26f43d1b867d6b36bf3fa42b00f9c56be3e3abeab6c71616c4
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.min.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:16 GMT
vary: Accept-Encoding
etag: W/"632a256c-14b60"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/icon-personalize-stamped-envelopes.svg
34.125.143.251404 Not Found 146 B URL HTTP/2 uspieass.com/static/fonts/icon-personalize-stamped-envelopes.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uspieass.com/static/js/jquery.keyboard-focus.js
34.125.143.251200 OK 1.6 kB URL HTTP/2 uspieass.com/static/js/jquery.keyboard-focus.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 29526a7faffd99d65a3cf93341a3f88a
e8534af864515585e90dcc60b98bed993a346c72
d9e6e3d55fac76b9c2dac1c00df623070bed0e717b9decf0ed039071db5a3818
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.keyboard-focus.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:36 GMT
vary: Accept-Encoding
etag: W/"632a2580-45f"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/validator.min.js
34.125.143.251200 OK 3.8 kB URL HTTP/2 uspieass.com/static/js/validator.min.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 9a9b4f537be6fd21db4e619ece7c7841
52ff112ce2cfec55d252cd4cd6bdd1632d34d5b0
819a61d09c1f7d6a7f6d63df0dafe90587b0a4994ef7ccc1014d90d11afd8dd5
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/validator.min.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
vary: Accept-Encoding
etag: W/"632a257a-1da0"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/business.svg
34.125.143.251200 OK 1.2 kB URL HTTP/2 uspieass.com/static/fonts/business.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 0d366834f312798111ebe3990766f8f4
e3ce708bf0b0b1924156674aca900898d407331c
da2e0f69eb8ea4aa9ffe45c2ad6d330eb7922e0e14f8aaca4e577be0fb8b4bea
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/business.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 1234
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-4d2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/jquery.ui.js
34.125.143.251200 OK 90 kB URL HTTP/2 uspieass.com/static/js/jquery.ui.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash a3030488a3be0518c3f5f33104d8c078
e8d5c8c488edf98f5a16ea905a1001fa8bc854a8
c9c934358be87d095ac056865384d54e6f389198a4d56f5f64f7a2529aa13553
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.ui.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
vary: Accept-Encoding
etag: W/"632a256a-45731"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/images/printcustomsforms.svg
34.125.143.251200 OK 2.5 kB URL HTTP/2 uspieass.com/static/images/printcustomsforms.svg
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2535), with no line terminators
Hash f7337d7d3b1b1af555348038d684bc08
0063ebb65ebec0cd39e3d060d71cfe25398e41e2
8c84efd0a5e9bb67a1ecc895c6ab1ffe3731cf0664d1502d95234b0521cfb797
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/images/printcustomsforms.svg HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/svg+xml
content-length: 2535
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-9e7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/css/main-sb.css
34.125.143.251200 OK 3.0 kB URL HTTP/2 uspieass.com/static/css/main-sb.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 1c993b7fac8c05c5b3a662d5e5b11143
47cc6b566de579a8d77ac2021adeb605cf4fbb69
8feb8faca2140c3dc5d0bd16f436d4bed71b24aa4ef1e9fab9ce42bba8357349
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/main-sb.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-1f01"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
34.125.143.251200 OK 32 kB URL HTTP/2 uspieass.com/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 31696, version 2.655\012- data
Hash 10290cd4148c956fa2287d2ab5c71631
0186c7c5f9e12701022362effcab5c7f08ef0a29
0419465d8b720ca4a1a4307e1aaf37c9c1fda715473e458a9e7d1a94854c68e3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspieass.com/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: font/woff2
content-length: 31696
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-7bd0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
34.125.143.251200 OK 40 kB URL HTTP/2 uspieass.com/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format (Version 2), TrueType, length 40372, version 2.655\012- data
Hash 9bb1ce2aa7fed31792aa1750d0306831
6a538f9d945eaa6f7e8f97b4530183347d20bee5
5e284133b1b11165e7354b29cfabb5f214c473f0ca18198a49c052d8df3f172f
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspieass.com/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: font/woff2
content-length: 40372
last-modified: Tue, 20 Sep 2022 20:41:32 GMT
etag: "632a257c-9db4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/images/footer-logo.png
34.125.143.251200 OK 5.4 kB URL HTTP/2 uspieass.com/static/images/footer-logo.png
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/images/footer-logo.png HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/static/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: image/png
content-length: 5390
last-modified: Tue, 20 Sep 2022 20:41:26 GMT
etag: "632a2576-150e"
expires: Fri, 10 Mar 2023 04:13:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.fonts.net/t/trackingCode.js
104.17.224.78200 OK 47 kB URL HTTP/2 fast.fonts.net/t/trackingCode.js
IP 104.17.224.78:0
Hash 8132d8a7b72a2068622a4872a1396de7
b912159cd62a4c274bc3a62b159e5b9023381b2f
90a477644e9a5483c64bf7c17f577c62468644410fc885e158bd229c043c4211
GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Cookie: __cf_bm=LVclE_O97f0U4BrE6ePmvzGYovBr1CADf9xZCZi7pFY-1675829634-0-AcBjvS5iwqBJHepz1PTE2fFZAZ+8HHuPWHn2Omupy8UCQMx2TYPMvCu4gIDZLphrDVJdCHNrGgfiT/LE409mUmw=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 1956
expires: Wed, 08 Feb 2023 04:18:54 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 79618910ed5bb51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
34.125.143.251200 OK 59 kB URL HTTP/2 uspieass.com/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Web Open Font Format, TrueType, length 58690, version 1.0\012- data
Hash a6e2d3921c9ea0fd81897d9ae7a33ba4
bc31969f2fb1926a15cd678b3e573c37a44e5421
f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspieass.com/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: font/woff
content-length: 58690
last-modified: Tue, 20 Sep 2022 20:41:26 GMT
etag: "632a2576-e542"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/data.js
34.125.143.251200 OK 52 kB URL HTTP/2 uspieass.com/static/js/data.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 7d4600c552c11655860e35f30ae298ad
503030841dc82d451170748811864e3dcb219c5b
6cda36dece4d94b033ec2a2873bc37869a2cbfb8334ee0981586a341fecede82
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/data.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
vary: Accept-Encoding
etag: W/"632a2572-924"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MVCC8H
216.58.207.200200 OK 128 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MVCC8H
IP 216.58.207.200:0
File type ASCII text, with very long lines (65324)
Size 128 kB (128540 bytes)
Hash 9439d5abdb49285646788eecd3cf44fd
9635c13f3bb71f1734149706f4515db518b18ab1
b91ec5dc352c50d555b4329e197ad384114f3723be98998c73d58b123eabebc9
GET /gtm.js?id=GTM-MVCC8H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 Feb 2023 04:13:54 GMT
expires: Wed, 08 Feb 2023 04:13:54 GMT
cache-control: private, max-age=900
last-modified: Wed, 08 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 128540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uspieass.com/static/js/optimize.js
34.125.143.251200 OK 74 B URL HTTP/2 uspieass.com/static/js/optimize.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/js/optimize.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
vary: Accept-Encoding
etag: W/"632a256a-1cedc"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 57419
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 08 Feb 2023 04:13:55 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 38172
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 08 Feb 2023 04:13:55 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 85415
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 08 Feb 2023 04:13:55 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 24620
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Wed, 08 Feb 2023 04:13:55 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Wed, 08 Feb 2023 03:45:20 GMT
expires: Wed, 08 Feb 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 1715
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&gjid=1709371208&_gid=1611857117.1675829688&_u=YCDAiEABBAAAAEAEq~&z=1054846137
64.233.164.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&gjid=1709371208&_gid=1611857117.1675829688&_u=YCDAiEABBAAAAEAEq~&z=1054846137
IP 64.233.164.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&gjid=1709371208&_gid=1611857117.1675829688&_u=YCDAiEABBAAAAEAEq~&z=1054846137 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://uspieass.com
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://uspieass.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 08 Feb 2023 04:13:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 5bcb9125c18e4ed3562ceb950dc6eaad
a6c6944804b772de3a487723e3e866c0219de230
94947430d745a6648a2e87f163bf474b4fd4513519360bf4bfecfabc141e5ff1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 04:13:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ed3f32fef9b843f5511bb882c0a38358
a1a60921f7cb6ab14b645c77bb7d77c20b8201ef
9a4b9e269aa66258c1d9b10fb1af899a3e669de3e244dcfd843a0bce87646f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-80133954-3&cid=684500741.1675829688&jid=1108097863&_u=YCDAiEABBAAAAEAEq~&z=859710780 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 08 Feb 2023 04:13:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 2ccbef7dcf1b1d32956833f5127c1ad5
af220576c82f064130ee7bfa3ea966d033e51707
f6eceec81f5b6deb7005fa9f3855ecb54e4bd6b3159c705decf0921e3a49067d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-3NXP3C8S9V>m=45je3260&_p=148161945&cid=684500741.1675829688&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675829688&sct=1&seg=0&dl=https%3A%2F%2Fuspieass.com%2F&dt=Welcome%20%7C%20USPS&en=page_view&_fv=1&_nsi=1&_ss=1&ep.virtual_site_name=No%20Virtual%20Site%20Name%20Found&ep.query_string=
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-3NXP3C8S9V>m=45je3260&_p=148161945&cid=684500741.1675829688&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675829688&sct=1&seg=0&dl=https%3A%2F%2Fuspieass.com%2F&dt=Welcome%20%7C%20USPS&en=page_view&_fv=1&_nsi=1&_ss=1&ep.virtual_site_name=No%20Virtual%20Site%20Name%20Found&ep.query_string=
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-3NXP3C8S9V>m=45je3260&_p=148161945&cid=684500741.1675829688&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675829688&sct=1&seg=0&dl=https%3A%2F%2Fuspieass.com%2F&dt=Welcome%20%7C%20USPS&en=page_view&_fv=1&_nsi=1&_ss=1&ep.virtual_site_name=No%20Virtual%20Site%20Name%20Found&ep.query_string= HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uspieass.com
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://uspieass.com
date: Wed, 08 Feb 2023 04:13:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js
104.110.27.57200 OK 528 B URL HTTP/2 resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js
IP 104.110.27.57:0
File type ASCII text, with very long lines (587)
Hash 71a1662328b51a4f8fc95331f9761f95
9c90aff5763eec0fda56e356f724b1b00ec8e909
8688c732f182e53287011e694495a27476abcf74b4f3e58e1c012442eb7d8216
GET /wdcgov/2/onsite/embed.js HTTP/1.1
Host: resources.digital-cloud-gov.medallia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pd62jYX7hxUSTvqb9Vr4D3NSYnQO/DxhRw/SpBP94olqeE4uECZQTo6UTFw2D0qEdJvB+O6C70w=
x-amz-request-id: NACD1QCSJRQGVGQ7
last-modified: Mon, 06 Feb 2023 21:18:55 GMT
etag: "271aa6059bf19d72bb098ed5b30b24bb"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 08 Feb 2023 04:13:56 GMT
content-length: 528
access-control-max-age: 86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
uspieass.com/static/js/landing.js
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/js/landing.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/landing.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
vary: Accept-Encoding
etag: W/"632a2578-235a"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/redConfig.js
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/js/redConfig.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/redConfig.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 16:45:14 GMT
vary: Accept-Encoding
etag: W/"63b8501a-2bfd"
expires: Wed, 08 Feb 2023 16:13:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/css/main.css
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/css/main.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/main.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-14778"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/css/footer-sb.css
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/css/footer-sb.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/footer-sb.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-bef"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/
34.125.143.251200 OK 0 B IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: text/html
last-modified: Sun, 29 Jan 2023 07:54:46 GMT
vary: Accept-Encoding
etag: W/"63d62646-f4e"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/axios.js
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/js/axios.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/axios.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: application/javascript
last-modified: Sat, 10 Nov 2018 04:07:50 GMT
vary: Accept-Encoding
etag: W/"5be65996-a6f0"
expires: Wed, 08 Feb 2023 16:13:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/js/vue.js
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/js/vue.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/vue.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: application/javascript
last-modified: Thu, 13 May 2021 06:21:20 GMT
vary: Accept-Encoding
etag: W/"609cc560-53883"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/css/megamenu-v4.css
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/css/megamenu-v4.css
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/megamenu-v4.css HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:53 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-a71c"
expires: Wed, 08 Feb 2023 16:13:53 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uspieass.com/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uspieass.com/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: font/woff2
content-length: 39112
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-98c8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uspieass.com/static/js/jquery-ui.js
34.125.143.251200 OK 0 B URL HTTP/2 uspieass.com/static/js/jquery-ui.js
IP 34.125.143.251:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-ui.js HTTP/1.1
Host: uspieass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:49 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:07:04 GMT
vary: Accept-Encoding
etag: W/"63643b88-5c8"
expires: Wed, 08 Feb 2023 16:13:49 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
jiexike998.top/click/addClick?ip=91.90.42.154
34.125.107.108200 OK 0 B URL HTTP/2 jiexike998.top/click/addClick?ip=91.90.42.154
IP 34.125.107.108:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /click/addClick?ip=91.90.42.154 HTTP/1.1
Host: jiexike998.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sink: USPS1
sinks: 2
ip: 91.90.42.154
Origin: https://uspieass.com
Connection: keep-alive
Referer: https://uspieass.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 04:13:54 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2