firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 19:05:24 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EtgdmlkZAp2Y1rjR_9dWKSjntA1MwqMZE0SzB24sCX-FGReKz31egQ==
Age: 1779
uspsads.net/verification/
200 OK 11 kB URL HTTP/1.1 uspsads.net/verification/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1057)
Hash ce1ca6dbece5040c5788f082ab9c2da5
1fec21d818525f9727e4497b46375106a3adba09
f4b22bfd84e7995e3896b97ea8e45f087895b3237f53bdc6df4ab953e8275a95
Analyzer Verdict Alert fortinet Phishing
GET /verification/ HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1ZvG2NR%2BMBNGl5I4JlmEp%2BURDDED%2FUJYS1hMPXaNpWjwlD42danYaRs2AJ7uUOIRhLFed03nttlzx1Oz31HfbAf%2FBtfw0%2BglWqMM3S9djrYDR3tQ0VdDzyxvWdZL8w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a20042e880b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3915
Expires: Thu, 08 Sep 2022 20:40:18 GMT
Date: Thu, 08 Sep 2022 19:35:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gPRsg0SS5PlDhIx2BTDEv1UCmhtTRNEOBqRz3-f7m3AY_sYQ3fozPA==
age: 56909
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 19:35:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uspsads.net/verification/files/footer.css
200 OK 1.0 kB URL HTTP/1.1 uspsads.net/verification/files/footer.css
IP
File type ASCII text, with very long lines (2933), with no line terminators
Hash bd9bd732ec5db8a2fbe41c656ca1930a
73d160dcd9e107afdbd971997d3e4f7f844c0949
c1eb09bcc64f305fade2ddaab2d673565506506b215f7c0f95fe04d51bff664f
GET /verification/files/footer.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-b75"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R26AeTn%2B1f%2B9dWwFextKV2uMl1xia84MHOSefPAONiA4AkiuXX4%2FtG0TWoGTt1DK7qzjooWMyzDdQRWqGXnxcFW2l3tQKPHXdWmpOwe%2F%2FTSa%2FQ%2BEvPE4PnrlN7ZQYw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006b8ce0b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/calendar.css
200 OK 3.1 kB URL HTTP/1.1 uspsads.net/verification/files/calendar.css
IP
File type ASCII text, with very long lines (14589), with no line terminators
Hash d5022335429a418d60ba5d354b09f857
f66c94675e64a9a06a941ba339fd571cefbe69a3
de5d34903080b78fcea9a08519065a7ac02d71c08b6bc15ac8036961a75158d6
GET /verification/files/calendar.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-38fd"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KDKgzvIFEjjHT8U6elm5736ANevBzuBwRCoRhiEabHYN01P%2BvH4kuAE6h2l8XDCc8qGUCypDU1iatznlbf2aqWs29Y4Q9fPTpIdQnB%2B%2BCO%2BPBpQfZH%2FisOPny5p9iQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006bb6b0afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/metrics-all.js
200 OK 3.6 kB URL HTTP/1.1 uspsads.net/verification/files/metrics-all.js
IP
File type ASCII text, with CRLF line terminators
Hash e5d997200ef5dd000cbb0ad67229345a
623201282e4ddcca787b4bd6344f3d1dc94b6f30
ca1585e246ef65382f55de6b74fcb35dd5828165fc7ad01ecf24842ec1ed0512
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/metrics-all.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-2bde"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V73XHFqzL8oqsdHILBV0hflx2IzPUvZ2rebDIe0FTSymgKL6ORhFLt5yRrSupHD17j1jM5K%2FzmSFGAH2APmLD0LJsdAeOMz5bAtdties4ciLLUaDkgD9ylNO6tlDRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006bda2b500-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/bootstrap.min.css
200 OK 24 kB URL HTTP/1.1 uspsads.net/verification/files/bootstrap.min.css
IP
File type ASCII text, with very long lines (65371)
Hash 193bd2041481eea95ab7d2daa79322a0
db3519ffd51f2462b7d0e2a9fe46c27f6ca8cac0
7b47fb66f7dfe89c1bc6d20df1d21b079da9bf282dea2472e5eaeebb1175170e
GET /verification/files/bootstrap.min.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-1d903"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OQIj1H4WaejOT1SGpUZiRN7W0EYJhUu7eTD74W2d2bhK7XpFfbRL%2FYyvM%2BBCNYOmmiMqSNMhqpqu2dzbUaCoATP1DBJMvaq2B9v0INbLrxeE%2FEDFGOl7oGgKSeObKA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006bad8b512-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/jquery.min.js
200 OK 33 kB URL HTTP/1.1 uspsads.net/verification/files/jquery.min.js
IP
File type ASCII text, with very long lines (65453)
Hash 15b60419fb9c33d86602c0945898649c
00dc764b15787e44b75e7180d12c6a4dff131c09
8e8a7f1515102d92fac23c5f32854b0811c22d728d8e203e7551056aedc2dfb8
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/jquery.min.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-14b60"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZAm8YYPnTiL8K4frhA7Zra7TUr8ztVNYnp5%2BJWkmaUPjI8xuB5cp3SdOwU4KADYOr%2FSVu70UA2XIfFSIQI0vMfdmb%2BaiP1OmD%2B6e0qFxNUViopwcH4ywdvJiU8UEOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006b9bc0b49-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 18:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 19:29:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6MrIlOSv_r_ngWH1brOQyoa7gjfoeEabZOOG9LgvAEiC8rj3towIGw==
Age: 3405
uspsads.net/verification/files/optimize.js
200 OK 39 kB URL HTTP/1.1 uspsads.net/verification/files/optimize.js
IP
File type ASCII text, with very long lines (1972)
Hash 72bbf118152346bbddca16ddaeaa8fe3
d41e3fe51e81690b69a762c75c94e18558bdedc0
ff2840d0107cd7da90ca0d543780192ca8b163f18e4ffe4e1a773cfc8ed0bfbd
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/optimize.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-16b8d"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQQ%2FAS8Jaw5KPOtbRJuC5Y9UgEEPmwt4%2B3JGVEThfnxbpAkKloVbOgpvdIEKRxuomVWatShZUtBB8kDAXbeoKlk4D8UHQ6fy3YSLTj0T%2B%2F18yP7QvINOk6tZQMe7Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2006b9eab51d-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/datepicker3.css
200 OK 2.9 kB URL HTTP/1.1 uspsads.net/verification/files/datepicker3.css
IP
File type ASCII text, with very long lines (20872)
Hash 80765ee4c75fa1e800b4925bbf2e9779
339933d228c2796ad301bebd7b3c7130de75cb4f
0861cf8ba318b3a0d77e91cdb9ff6679bda73dcd14178b129a774bcc6144fef4
GET /verification/files/datepicker3.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-527d"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RyJ3f%2F1kMj75HnNMtXMn3BH%2BbL0i4s8hn03M0g9Uualc4TkmJqKuFiDlJTX%2FCFs6XhNKUnpxN3gGg8Mg8hAE23pI2K0E0smx7yexvBAaL83lmYf79V4yeSwpnHiguw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a20081aef0b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/tracking-cross-sell.css
200 OK 1.1 kB URL HTTP/1.1 uspsads.net/verification/files/tracking-cross-sell.css
IP
File type ASCII text, with very long lines (3075), with no line terminators
Hash a6fb41d1c498fadae6dd19e485efb12a
f1530928e561f779d12fc2072c706e038497780a
6705c1792e09bfca5f04cb0892821c0014f0abdd50e6fec06282df9aa4a9de58
GET /verification/files/tracking-cross-sell.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:03 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-c03"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d9p9qU92QjyGrhFEkOTjXyFPQV0PqSVq8%2BlasW9BM2hYcrTQrHoN4KlPfqqWti1u5Cx7OydElZEiaDKDm9MRHzw9CjlAnFdvHG0CQ8plE3TJjiMyFu9cxHJObTmKuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a20082ffab500-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/main.css
200 OK 16 kB URL HTTP/1.1 uspsads.net/verification/files/main.css
IP
File type ASCII text, with very long lines (49380), with CRLF line terminators
Hash 4ebde6cbe2011dfe7197ef68a1e33abe
eb2f8f291be7693d2b6a12b2a0ee9ff8af09dd78
586371a10ac5df6e6163d9798187b74dbd1907ef64e990c85744656c01ed65f3
GET /verification/files/main.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-1370f"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p%2FhIBpMzobGGqKzIbT6H35xyb7W4eT4Mlk0U%2FZ0gKvfG8NCIb5qM8OC0712cY4ho2tJ6tqqiksSWQwdQvlBRrWjHAe9EP%2Bxz6NbwdwUic0Vi2xVAKaHjAMs2bdWPlg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a20081d180afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/schedule-redelivery.css
200 OK 5.5 kB URL HTTP/1.1 uspsads.net/verification/files/schedule-redelivery.css
IP
File type ASCII text, with very long lines (23038), with no line terminators
Hash fac6ffc2f2177e7a5e3aa1bc9d1d76cd
ed9a4f187863f7ad08e2dc8cd21c334cbbd55136
45dafb57c65f6ba082baf6ab83ae54526831b7022817d58ec361088f51a0e496
GET /verification/files/schedule-redelivery.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-59fe"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ubLjmHsGNC3qI0%2BfCQ%2FCfij5hMbN2dT79HiKUbJNitmJrvThbOvYehGa1cq3gDFPbnHjxYqNmx%2FuS5QJ%2FHLu9B0vcxeDFqrvX8LBp4JvZomDxeEYdxMKNpx9Zp8R%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2008dc5e0b49-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/jquery-ui.min.css
200 OK 8.9 kB URL HTTP/1.1 uspsads.net/verification/files/jquery-ui.min.css
IP
File type ASCII text, with very long lines (29153), with CRLF line terminators
Hash 8e6660cefdb742f732bb06f0da76ac42
1b10a421229caf9f9465cdf89c426aeaa5dfdf63
fa9c87600db142c404a10df1876ef26ab389f2bc26bca8da9c32fe96dff04e22
GET /verification/files/jquery-ui.min.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-7d19"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lVOcDvMMUOTHJmlWZKJ%2BGEquCINnVl6cTmbVDH%2FSohO7EREPTtWjIj%2Fcu221xZ6n7A4Y3ykhdwUOMVYTNswHsP0Ffvg8dwcS0BgTApN1McNYMpQJodWSI1IACVLtCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a2008df05b512-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/require-jquery.js
200 OK 92 B URL HTTP/1.1 uspsads.net/verification/files/require-jquery.js
IP
File type ASCII text, with no line terminators
Hash 6ce214c362fc1910a6ccda7dde4f1628
a3c400aa0daaa3a2f5b285feccb369e35b486a89
20c4e055502233d4088725a990c6d26894639753e810ae967bfa21915ea61be7
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/require-jquery.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-4a"
Expires: Fri, 09 Sep 2022 07:35:03 GMT
Cache-Control: max-age=43200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2JGDK7R79uowtrHs47V%2B4rqiMBUjaq1N5zGPFYJ2412lBlcqNNxeH36TIfkmp%2BMCvkYFj8zewi9CG7ngdVEzCGS2UkQlTLNvTWDvvcNiips9W5CvCI6ixUVx6QLCTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20090e4db51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 19:35:04 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 479668
accept-ranges: bytes
set-cookie: __cf_bm=BgOBPg5OoYlALSprgsdBPXK3TmQvUJSwIkgwDWJS6ng-1662665704-0-AV3EsrcZ8Pff3a1doxmSRTYg4cKaPLPAjHZk2fYpWhFIu33jtTVwESQtbEcn25M3a39oKkfhj892kYAKMuZShhY=; path=/; expires=Thu, 08-Sep-22 20:05:04 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=N1ORHxFIGQ.xLrDekwG0Dbr4Nxin0f0T_3NRD3.rIyg-1662665704-0-AWwdwBXlaJrUhd3-m8ymz0bOxo9a3by3zx4TqXqMjlJ9ebD4RNoeJJG_SGNLsuR6UXENNMBZCZp41CQrDvIRIKA"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=N1ORHxFIGQ.xLrDekwG0Dbr4Nxin0f0T_3NRD3.rIyg-1662665704-0-AWwdwBXlaJrUhd3-m8ymz0bOxo9a3by3zx4TqXqMjlJ9ebD4RNoeJJG_SGNLsuR6UXENNMBZCZp41CQrDvIRIKA; report-to cf-csp-endpoint
vary: Accept-Encoding
server: cloudflare
cf-ray: 747a200a48500afe-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 19:35:04 GMT
Last-Modified: Thu, 08 Sep 2022 19:09:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
uspsads.net/verification/files/helpers.js
200 OK 359 B URL HTTP/1.1 uspsads.net/verification/files/helpers.js
IP
File type ASCII text, with very long lines (695), with no line terminators
Hash ac20e4f5fab4fdb5fd96e52ea753333e
ea7511feeda8d356b7aaec0b1b59f4b494d7ed17
53ed0feb82111b7392cdb9ad174e141411a7828b7b678000c1e7d101ee3a4168
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/helpers.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-2b7"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3uKK8KSnuZsXSyb9%2BdhVOZUDsCeylVqLvv3ruJM6ZciIOPXTeXkoe1XF9MYR3ONGk0NlGL5%2Ftqsb850aIrieZZZaEM7KNQKLyqHraEI7AChj2sQC7RjpfRv1tpyk%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20096cfd0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/search-fe.js
200 OK 943 B URL HTTP/1.1 uspsads.net/verification/files/search-fe.js
IP
File type ASCII text, with very long lines (2235), with no line terminators
Hash 8b03c32d0b4fd45274d8065b22748b98
ad07fba83fc72e1654c8d0174f2a21fc1d1c95ea
de7e32f73341919315190ec60995c6286faa518e9d428069f8414a4c52886a54
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/search-fe.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-8bb"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CDNVywCGhkE0KP2mypoqNosK34VvrB%2BNOuW2Wslvv12LT7nmJUfzsMm3PNLPGmTGEwHkvXy9EVYqwNMBsN%2FY%2FH67BV4gQlaCfHwEh4cuMqvLZ1TDRMFe%2FH8z0%2BOsMA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a20097a58b500-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/jquery.min.js(1).download
404 Not Found 115 B URL HTTP/1.1 uspsads.net/verification/files/jquery.min.js(1).download
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c79273e9b9de357e24b445594f31d7f8
e27e10e96ca7708dbad2cd41a416ffcab6a94600
941433f5957dd44b3ec474726aadfc556c41e94c1a6969d8fef8a931414f6baf
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/jquery.min.js(1).download HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OAYFqkm7lHceMydtULgfTJs2QsdRPHRvT8Iogqn8SRLmsmV9zqHCOfbPQblYPGaJQz2Kh1jyPXPut6Xx6gwb1VcSLNdVLPxSPOVUbWM9hXcmhPyLbsbU4VOjIKZINw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200a2e950b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/qt.css
200 OK 11 kB URL HTTP/1.1 uspsads.net/verification/files/qt.css
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 07f5ab3ac33bd56e990cd47c06c600b0
5184460e846d33b0a314b25f2b376c4d7cc8413f
1660166c3e89b5601ff0fb9e9f19d34ba9266c2e7dbff7dd8c8692d561bda893
GET /verification/files/qt.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-c800"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7G93rPCLzY6oHTag9a7ObTp2eCfdhz9wy5kO%2BfS%2FaDyrdBWYU1Vm9LaJOQSEZ5MHxATC4%2FCzzyvM2vnuyKWLCCwmsPBVnK7eFG9z%2FPHetFeZJUkblDfw2PicLwI2g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200a0feb0afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/resize-manager.js
200 OK 472 B URL HTTP/1.1 uspsads.net/verification/files/resize-manager.js
IP
File type ASCII text, with very long lines (1040), with no line terminators
Hash 88ca0e7f0cff5b8bc2286e6ce5bede78
5d894c18a159936ddf70a75fc281331f82017be4
e9f7e40be0ab0fab64c0268f71a8eb857e7b93cb9f9ae359c2a3669e1b2681b7
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/resize-manager.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-410"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q1Zzr%2BfKoY8GksT05hvAOxwj22rosRuzQH6DTJ%2F3gmjpcfdlR%2F9c4TI6amVOrdHmY5H%2Bt2O7aDmVamWnEB9%2BXkPrqwQULmlHKMCTYoHvnZHaQ1uKiNNlzQirmsh52A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200a29a2b512-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/megamenu-v2.css
200 OK 8.3 kB URL HTTP/1.1 uspsads.net/verification/files/megamenu-v2.css
IP
File type ASCII text, with very long lines (44725), with no line terminators
Hash 49bd02b9be9f208722738db0ceb10e21
5987de58fc1f653d214326b4f8af70bf84d9276b
ba310c90327f7329e7bc38fff86cd8c3f41cd27f1ddce426049710e391b6f47a
GET /verification/files/megamenu-v2.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-aeb5"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l7gTm5p4Z%2FdzxjZDpIrXbNaAGld86H%2Fzrt9JaftLUj%2FJdEwMdAGvGOtC81IHdaakER7A740HFnFq%2FMtXr3041t2PvlJkJpDinbohJzjkSBgTvEF%2FFjLHRR%2BJ%2FR26Ng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200abed10b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/megamenu.js
200 OK 3.4 kB URL HTTP/1.1 uspsads.net/verification/files/megamenu.js
IP
File type ASCII text, with very long lines (3410), with CRLF line terminators
Hash 677b4af710d6e2212e55389e7e90c4a7
af597d5ee084606993181ecedb28498c07cc4cf0
c60edf3abe6c3f56504a73ed9b37401df3d4dfc92b61c6e49d2bfaf68d298dfb
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/megamenu.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-3651"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TmR%2FHTRwL05W1A%2Fy%2BS5KuLn2UoZm4RBh%2Ff0PVK7nn2eAEmDJ%2BUxYm96cCmHoODcXiz%2BhLM3WQZLVJymb06nqt8ttVAU6%2BV9khzIrg56MHyQsp0apKYOWkXsURmX7ug%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200b699e0afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/modernizr.js
200 OK 4.9 kB URL HTTP/1.1 uspsads.net/verification/files/modernizr.js
IP
File type HTML document, ASCII text, with very long lines (11084)
Hash 371a29fd40754da983b621d3f027d7e0
fbc0ad85eb7e80bf91cd0a5008fe67af908a5778
7742691aee67d2a4d8e11a886b804c55e692959a451a8e6ecf37b5a5e9254745
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/modernizr.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-2bfd"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ik91wDg5MP16oIdR9YMC3TD1zAompTg8fUMooWD9XQASN6ozhTUMQx6Qc4xBxxojWDU3L1JiHbL5%2Fpuds0uDMn%2FF3jB4yFcQaWYpSn6cWpEKYetGW32s1pCfC7eGTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200adfa90b49-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/jquery-3.2.1.js
200 OK 34 kB URL HTTP/1.1 uspsads.net/verification/files/jquery-3.2.1.js
IP
File type ASCII text, with very long lines (32058)
Hash 0c9dfac97ef9767bdb1d61c8e13b8177
508f333247ddc1f459b8a8d45bea510f0c1e761f
b97b61850f9c39fd0f431187795fd1071fe2ad6d291dc62862d048abb8f9d53c
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/jquery-3.2.1.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-15283"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dqOe5Ch9aKcIlZJ0xvVTGN6ZzOx%2FtZ8vmAO7hGghgaeU5xm4dsnlD7tmMOKkvgEiKu3A5TOQqT6PwK0ek0OD8GAz%2F7CihsngtbLCQp%2B3PPGCUa%2F54n5aAEyv%2Bdtqug%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200acc8ab500-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oyqoNM+sNIn1/tqyJW648g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P78wv4owY9rSbDqdz5tuir3RImE=
uspsads.net/verification/files/jquery-3.5.1.js
200 OK 35 kB URL HTTP/1.1 uspsads.net/verification/files/jquery-3.5.1.js
IP
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash c56535729aed5e1ac1e61df181688858
7c467634b1d5cdf771be53dfff9960dc03930741
94b201a4dbd5e8432bdfd9591e04a6495935c0e8b97d50585ebbcac1ba9cc952
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/jquery-3.5.1.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-15d84"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6HGMXXzBTPMMexxTzeiCSEGOkUBUVwDsDEoKjHP4lG3dXJ6GcbQvfjXtAbaKMhpUzsuB67dbYXNWtlhGnlZTaBwItudot9oDQ2zE0w%2BgfW%2BAZ2a4r%2F4MWwm0FPvm3w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200a5879b51d-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/OneLinkUsps.js
200 OK 1.1 kB URL HTTP/1.1 uspsads.net/verification/files/OneLinkUsps.js
IP
File type ASCII text, with CRLF line terminators
Hash 9998728888e3efaf395338e400dcacda
974b6ca5844c06b165b2a19cb8bbaf5d069bb7f0
52f0530f84906bc0dd3b44be6f62419143537de582ed1e24c9110faa9748e01e
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/OneLinkUsps.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-e37"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GjBIOUaUUJttdBOVXYHQxENdsmQLZoOwwdxbVLq%2FrDlJ0IRis7vstiYvXfP6gBwrktQE%2FF8C8GTfgNCQqURvrY3Xfh0vzytfAr9jqT5AdgpdXCqZKzV%2Ba4LB8evIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200b7c3db512-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/main-sb.css
200 OK 2.9 kB URL HTTP/1.1 uspsads.net/verification/files/main-sb.css
IP
File type ASCII text, with very long lines (8795)
Hash a02856c5388700663b418af9a38d7b2d
4c4935d3e6f23a4f9e6017659a2a7622f277b854
dc059f2426c24f3ad95fb793fa7a19cbde9f0f27b215dea74776e91bbe796c3b
GET /verification/files/main-sb.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-225c"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2PYWO54B9W8Fhwu65FSmoLCs0V9W052Q%2BUUdc0EZsi4wpINbejbMqbMRfeO3lfaIrcVSZ0GpIeYg7sYdpldddbfO1iFoqioUf8mYWPW19Dllcpw46iCX%2FXM%2FugEZVg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200c8c1bb51d-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/ge-login.js
200 OK 2.8 kB URL HTTP/1.1 uspsads.net/verification/files/ge-login.js
IP
File type ASCII text, with CRLF line terminators
Hash 846943fc995cbaf51db65424fed24ba0
443906f0fa48b6de17a21c79cb0d561462897ac0
a6d37dc10dee76959c09437e4150ef7408cf2f0a1abed769a049d175c6c8937c
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/ge-login.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-245d"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F13OsplbH9uOKW%2FKKpUHkZ77Qsb4NMq%2BSRqzgiSEZJ2oT5en0BpLmKC3p7%2Bvy22Mb0E9np%2BIF4S9%2BuTe1FdBrrDdP95Eu01yyyW9wSlnfjm3VCgED4ansPWIHXDAxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200c086d0b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/require.js
200 OK 7.1 kB URL HTTP/1.1 uspsads.net/verification/files/require.js
IP
File type ASCII text, with very long lines (17192)
Hash dc50456279d2eb2828d6f94669f8fd4a
6085c43a5da7253149dda0608624ea8f180efd0c
9cd232818f196d980c884f5c7e702571a082582298090147944a614d8b0f9f07
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/require.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-440f"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5hxWmhWz1Lp%2BnKJRTWwRF8oXd%2F8B8pylB7DcorQsJXJ7SBHfa5%2B%2BnWI0u4u%2F2ygfweCyxrjKgIply9cums9UzLzeudI9OOq1OwUo%2Bw10469OcrEf6chtpRkrvzbpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200c1abe0afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/header-init-search.js
200 OK 333 B URL HTTP/1.1 uspsads.net/verification/files/header-init-search.js
IP
File type ASCII text, with CRLF line terminators
Hash 0056ba4dd224dfdc944f85cacb6348ae
38962e0e65429a2834d6ae1485060ba54a09dac6
9276f576a2155598c63de8414f9c2de505466fae8cb679f6bad200325051a773
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/header-init-search.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-388"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHrXEKV0EGqh5v8zR4CEKUYcGg0jdjCiv5Yy8yo3g9W8VYhNdE%2BD%2FuBkh%2B4wAALMuDzy2es5erzZu8ZD%2BBkAXiiS3WeZMMgEX35ViZoMSARLCZSSvd7sUdRT0fpfpw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200c39480b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/megamenu-additions.js
200 OK 541 B URL HTTP/1.1 uspsads.net/verification/files/megamenu-additions.js
IP
File type ASCII text, with CRLF line terminators
Hash f9956b259ea00f26bf3c81ed6319e4fd
633a3a661c01e454aed7d16fb5caf6e3f80d707b
86543011cb2df2e3a5e0a527688db50051bfaba92c7d5f5fd32c7c41e5daf448
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/megamenu-additions.js HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-541"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=61STAnsA8UQAWcoMWRzJ%2FyrD%2FquUNEs%2BNUoOowDy2D%2FarKDCBI9as0IdjDyD9FkWMTm7FRpQChXC4dxlAfKQSqUYncL0%2BQCAvae06cQ9uUPEnjRZn7EkPKjSMzrRjg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200c4ec5b500-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/footer-sb.css
200 OK 1.0 kB URL HTTP/1.1 uspsads.net/verification/files/footer-sb.css
IP
File type ASCII text, with very long lines (3179), with CRLF line terminators
Hash 4c3dc3619667c92761e94e44404a81b6
fc28dcf6074b91d956d91daf0080198a2e2516a5
a7010a474557e97997b8ece5179e421c71f9825be8db2eb1a73faba0433ed74c
GET /verification/files/footer-sb.css HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
Vary: Accept-Encoding
ETag: W/"60626470-c6d"
Expires: Fri, 09 Sep 2022 07:35:04 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BLYOE7Xqi33gTCn2IwozauEsykqc9sIp5tY1PhT8EpXOLbUILjshp6vnfxnJAiDrxtZwzemyAhI7Wznn%2FRMHOKR1W0%2F2DXZOccWf5UNFzjg2shVqFmbgYMr6mMGHxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 747a200ccec4b512-OSL
alt-svc: h2=":443"; ma=60
www.usps.com/assets/images/home/utility_languages.png
200 OK 1.5 kB URL HTTP/2 www.usps.com/assets/images/home/utility_languages.png
IP
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 66118
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/location.svg
200 OK 1.2 kB URL HTTP/2 www.usps.com/assets/images/home/location.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9d8433f178d5a7b839a8bf25552c62b0
c21cec68e524862992f4aa51bf6955b953a65112
d01cb5a23f9b7f4a0a3db27cfd3d90e3813e75ed498fdbabe4df3a859390bd4f
GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65871
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7F25)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/schedule_pickup.svg
200 OK 923 B URL HTTP/2 www.usps.com/assets/images/home/schedule_pickup.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9f9e044f92360c82183e3a31b774e7b2
273798ee8d4dead89367b835cdb7f65f51e81b47
e4b7ae480aae11558a890826cde2cc6fa10039a787052dfc72cdad3e7a772373
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66248
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/732F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_customer_service.png
200 OK 1.3 kB URL HTTP/2 www.usps.com/assets/images/home/utility_customer_service.png
IP
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3500d365cd94527c71fe9c70d5cda435
0c7bede628d74cefaf5fce1b675c0ce3c72c78c9
34b28a24c5414dab68a15be6613536d905faf33fbf1aed8ee4702caa60be9bca
GET /assets/images/home/utility_customer_service.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 65787
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "51b-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7EB6)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1307
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/featured_clicknship.svg
200 OK 493 B URL HTTP/2 www.usps.com/assets/images/home/featured_clicknship.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66397
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/images/utility-header/search.svg
200 OK 795 B URL HTTP/2 www.usps.com/global-elements/header/images/utility-header/search.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 78562ea313af96eca6581054fdbbc76c
b0f3fd320af131b3787b39c864ecac52de12a75e
7932a41ccc861366f60896fe808612a1361c85d654aef21c5d54f7673141c0a9
GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65672
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dcb/7ECE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/stamps.svg
200 OK 551 B URL HTTP/2 www.usps.com/assets/images/home/stamps.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 780aa534eb1541ac0834489beafdeea2
2593cddb6c1b7505016d3c1138e16ff556e42166
c2a1858fe0517c4c928dad150f22710f1771c1b43b92b79ceb0b20e44db61ee8
GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 40079
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7EC4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/calculate_price.svg
200 OK 772 B URL HTTP/2 www.usps.com/assets/images/home/calculate_price.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 42af7d5484bf8f80ac930313caa5941f
c3dbaf338d7fa81845487333c0cba5b8341bd140
f8f9b52e8d7b815deba988cfcdc6596e9e7b6671075907290c8e96679b18fb2c
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66313
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/7304)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/po_box.svg
200 OK 848 B URL HTTP/2 www.usps.com/assets/images/home/po_box.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66292
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/find_zip.svg
200 OK 793 B URL HTTP/2 www.usps.com/assets/images/home/find_zip.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65683
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/shipping-supplies.svg
200 OK 1.3 kB URL HTTP/2 www.usps.com/test/nav/images/shipping-supplies.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a8b39b328ba3e776e643f66844896e8
7a400d0f33c592651da919c728a30e46207a9449
05140d52bba76b4464360b852c3b78227cc2865c4512bf0010ee666f0c985f99
GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65876
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dcb/731F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/business.svg
200 OK 689 B URL HTTP/2 www.usps.com/test/nav/images/business.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 3b81ef43fc5b08bab4155c5fed116dc9
a5a804fb2f8f51b3e588d4edb01752eba0380f8d
a513b0f2fb200e9cf7b30ccfbde98f79e87a027c256d99f3159ad22dcb5cc4cb
GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66289
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dcb/7FBE)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/search.svg
200 OK 795 B URL HTTP/2 www.usps.com/assets/images/home/search.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ccfe748c6040d78e356b03d1a731585e
3e15bb471b3c3d0a5cebc3ccd137b5daf9273b7e
9a1b75fecaa2e0de127c36ddbb63c1bc2c44b3f81eed395734dee1ce837162fe
GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65684
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dcb/7F4B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/gifts.svg
200 OK 590 B URL HTTP/2 www.usps.com/test/nav/images/gifts.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e97f9908f9eef2a76ea4f48e00196980
f32d5a4b791567c690ea7095d93bec78e422db40
ad60c73a39b0fcd4b311654aab6f3954edb03f37034ad5567cf9f69d63d905f4
GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 65952
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dcb/7378)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/tracking.svg
200 OK 844 B URL HTTP/2 www.usps.com/assets/images/home/tracking.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 04034bbe69ef912819cee070ff866703
2c96d71004568c2b460a7f8b796ae45ad89999ec
959755a6f38fb278acd6abb223db552ecf757c291f437149663009aafb83a181
GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 82561
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dcb/7E95)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2
tools.usps.com/global-elements/header/images/utility-header/mailman.svg
200 OK 904 B URL HTTP/2 tools.usps.com/global-elements/header/images/utility-header/mailman.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e4bb1afb6143cb1307585f007399e0e4
7d28cd35cbdb8427d4a12274c3f455e57f4742e0
06410c31087cff92e7842a2e6aaef3b5b114192f77e2b652283250fdca6d5e30
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: tools.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
age: 49185
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "723-55885af730a40+gzip"
last-modified: Wed, 06 Sep 2017 13:54:41 GMT
server: ECAcc (dcb/7311)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-frame-options: SAMEORIGIN
x-ruleset-version: 5.1
content-length: 904
X-Firefox-Spdy: h2
www.usps.com/test/nav/images/collectors.svg
200 OK 561 B URL HTTP/2 www.usps.com/test/nav/images/collectors.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8439e88bd2e43656b157f9c184635032
ddcb40776177a5eac36973e53f2f8bab73e65ea3
5ea3f924c3453a9b8a3f79251377f385f83c8cf9618129427795adf186b9338e
GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66262
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dcb/7FEB)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/change_address.svg
200 OK 935 B URL HTTP/2 www.usps.com/assets/images/home/change_address.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66343
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/holdmail.svg
200 OK 768 B URL HTTP/2 www.usps.com/assets/images/home/holdmail.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2f40bbb9da0d97f2ba3f3efcfd7533af
34c76f88cdda4be234b58a76e466bc7a972f14ea
f1d176e77951f74582e7e311d99f98f7ce582bdb30051987f257eb3393ee2069
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 66345
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dcb/7EFC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F7BB)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F779)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F7B7)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 52171
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26294
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 7041
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
uspsads.net/verification/files/logo-sb.svg
200 OK 1.6 kB URL HTTP/1.1 uspsads.net/verification/files/logo-sb.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 847371fba375363701356e61ec20c109
a4537b5ee6c8953feee3b854a5ccfa981de33885
513ff8c8ef7f44812b006b05de63e5158287f0015085d4a71a733a7bd2479854
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/logo-sb.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-de5"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NKCSc%2Bh3szsMlUd%2BqT6x9Gz4ghluLP8FccNOJAV4CQoXgIw3y5n2tZeqbQ4o5exI8megcSacNgaIX%2FbYg1ti6rVl%2FY89crllm3bzYABVVhK9MOSlbbX5M14N0QP0rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e1ba60b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F7A8)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://uspsads.net
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Thu, 08 Sep 2022 19:35:04 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
uspsads.net/verification/files/go-now(3).png
200 OK 20 kB URL HTTP/1.1 uspsads.net/verification/files/go-now(3).png
IP
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
GET /verification/files/go-now(3).png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: image/png
Content-Length: 19969
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: "60626470-4e01"
Expires: Sat, 08 Oct 2022 19:35:04 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p5REicFqCV1NCeFnZBG7tncsZNQ4o421gdmJ6SEE2bXZtuzd1GShzYZF4irS3VRSoVjKl9BPovpZGNW24DA6aRUIbYaLEfiqVrU9FHW8xbNIxNM8I7uE6JeWQ6SwsA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e18f9b512-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/go-now(1).png
200 OK 8.0 kB URL HTTP/1.1 uspsads.net/verification/files/go-now(1).png
IP
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
GET /verification/files/go-now(1).png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: image/png
Content-Length: 8026
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: "60626470-1f5a"
Expires: Sat, 08 Oct 2022 19:35:04 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q0eu32DXqAC7o5hTqG9yDBA5%2But5tYEpviBKgRVPAZZeqWywZLhdulAv1yr7rFZO8%2BxHHfUVSVtczz9FinJ7cbgGROfmZWcARV2uqbHKyKgvo9YvQs2pKbxhZJhy1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e1e96b51d-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/go-now(2).png
200 OK 27 kB URL HTTP/1.1 uspsads.net/verification/files/go-now(2).png
IP
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365
GET /verification/files/go-now(2).png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: image/png
Content-Length: 26972
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: "60626470-695c"
Expires: Sat, 08 Oct 2022 19:35:04 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2BVZqZvvkbIk0I%2F8FghLDZWNwvm2j43vLYXxUQg9rEDqDjikY5etJGgt8j3maA7sHe0Y2ovsw8D65R%2Bm7WhNoH0nNaUfIT1AIEDC%2BxfZDiINtg1CEgnruqc9wtvDrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e19c7b500-OSL
alt-svc: h2=":443"; ma=60
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 54284
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
uspsads.net/verification/files/go-now.png
200 OK 20 kB URL HTTP/1.1 uspsads.net/verification/files/go-now.png
IP
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
GET /verification/files/go-now.png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: image/png
Content-Length: 20334
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: "60626470-4f6e"
Expires: Sat, 08 Oct 2022 19:35:04 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nd4vz2QZ%2BPaArMXBKJcSzvMUod4AEr0ab%2BQZ8A7A50IZHBixcqVmA6qazQcdg3FQZp56BRcxD5jBtec99xWC8Q1IJ%2Bnml0rc%2B%2B8kN1IMyrRBD1V5h7ggmUP1PzKQHw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e1d6c0afe-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:04 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T%2BDeaUs7YQCaJvlS245fhMka9m6eYZ%2F0xdWcj0TXxVHD%2FFQxey3FU4IDMg1pTXA7dX2wenCztueHCpDKmp6u1T%2BIoAa1rIS%2F63uD3MS6NkjXeRFKIKOvDD4Qk21inA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200edcdc0b49-OSL
alt-svc: h2=":443"; ma=60
www.usps.com/test/nav/images/cards-and-envelopes.svg
200 OK 1.1 kB URL HTTP/2 www.usps.com/test/nav/images/cards-and-envelopes.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d63c3636efb2bbcb327ed13b714367b
c7e326811c101213173c2a585d1e9700731816ed
c63dd4b3239df8b0709202228ad62b9e06ec96c346d8f86f9e33a554973b795f
GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 28158
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Thu, 08 Sep 2022 19:35:04 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dcb/7F6F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2
uspsads.net/verification/files/go-now(4).png
200 OK 22 kB URL HTTP/1.1 uspsads.net/verification/files/go-now(4).png
IP
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
GET /verification/files/go-now(4).png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/png
Content-Length: 22133
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: "60626470-5675"
Expires: Sat, 08 Oct 2022 19:35:04 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Svi9sLYk7DgJNijDYQ9tUmj2fL0Ur7qoECQ4%2BixjUbdMu0Bq8pvUlew%2FZC1DMAFph%2Bia64Qr53wgTrSvHDQKxsOTmbeQB7db4mxmgaHu0%2BmjlizYk6xODsMh70MflA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200e1bca0b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GpxYxrIh9vum9oA%2FvgZ0bA2E5Xe7%2BT3XpIgm%2BQdxZbdOVnoWSnnYO80p6OLB4pqk3wHBUxQxU%2BTiG0%2F2yEB87LQaoF87pQjQ6u0CDeFsqksUnRv0RNZUmhRqVhF1iw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200f7ba9b512-OSL
alt-svc: h2=":443"; ma=60
www.usps.com/global-elements/lib/script/resize-manager.js
200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://uspsads.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 79890
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Thu, 08 Sep 2022 19:35:05 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
uspsads.net/global-elements/footer/images/footer-logo.png
404 Not Found 109 B URL HTTP/1.1 uspsads.net/global-elements/footer/images/footer-logo.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/footer-sb.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gf1jeVZ50MRf2PGapIJxOPMVJwlX4EbWmGLyWILUGn0UZWycZpML40ZftnEpDHm7fE4EjZO7p26K2IAbvWR1EVxO4rIy1y%2B30wpOEexA%2FA3QrPwtotNMtIZN80SEvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20102e6e0b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5rxewKu1oTdfwAgzUvaiycYB9EaeSdMBDfKURCSuoJyrqcBRg4nZxfUeHdM0zsQDHg7XFlhqCGqTUP0CPNjqGEiUhNR2Sn69FhZP8i1i6EL4h4LduGSrOBogBLBypQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200f7907b51d-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/images/logo-mini.png
404 Not Found 109 B URL HTTP/1.1 uspsads.net/verification/images/logo-mini.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /verification/images/logo-mini.png HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/footer.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q3%2FQn4JRQ1dwVtEHSaFYbHOimUOmmrcXSGumWHqYDu%2FPjgvInOwdZ2vBaksfLkaA5ZZzf05IMFFBu4Hbsr7L3Y2tN1F%2B%2FgxfufwoJPfLZPKB85YSaibhVwar5dJIkw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a201018160afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/images/nav-red-chevron.svg
404 Not Found 109 B URL HTTP/1.1 uspsads.net/verification/images/nav-red-chevron.svg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /verification/images/nav-red-chevron.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fC4rj6jIbeLF%2Fo8yq3Otrrd4U3nkJ%2BHMboJkBGRfSbuVX4iivBcgBi9jIyodPI8enjp6KWyw3CdZsoX1BDgKhBF%2BY%2BHsMtXUL74aOmidrp33wpCvVtvb3yv5XkTO1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a200f8c26b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/tracking.svg
200 OK 849 B URL HTTP/1.1 uspsads.net/verification/files/tracking.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6560767eee2a4db03d53d74e1b76a2bd
9e5453f5aaf53d19cdee7d74a45a72b378c703d3
0c36f5cbd7faac8b11b33e7c83e9c262e939b7ca1b11cdf88a76ca8a3de74ed3
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/tracking.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-619"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QiYnG0VVcDevOHU61f%2BibK%2BhXhTA5nJVvGqvGLgCPN5bjBCkbBaPO6pWIqBrtmrXcR0ijqERp7HZMGMTusODta1b4djElhfPr5gDzFThCJPIFiRXLiBXS8fSitAVqA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2010cdc8b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/mailman.svg
200 OK 916 B URL HTTP/1.1 uspsads.net/verification/files/mailman.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e44a059770062ea9e53e4ee790b2fc49
fa76361c9293d67ea730c96d59b213d1f26fa26f
58bd4dc94e427658f4b2059d40664bbb62d96adf619acbac8e6cbd52b7f08630
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/mailman.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-723"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E2ECoGliqA5aBfU05vGod4D2c7brJkEhG6Wov3EPmR5CZPEibWX09vf2HsyqQmmvBWLRHx8S5s%2B7zFiuuKQKcUbCpJWDvC0G0Lg0V0TLoIlXYKyT44cGY5mQwjLZeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2010dc39b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1P4pPvHhS%2FmAqw%2B2IPqc24UWcDdxRg%2Bmzxa7HQmDcAQppbnolXqtCsoNoU77PqBMC1x%2BUk34%2B6tAcXob26k6f4rXAY93Emeb1ePwejryOmN%2FUKEsTK%2Byd95lec5rlA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2010cf490b49-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/location.svg
200 OK 1.2 kB URL HTTP/1.1 uspsads.net/verification/files/location.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 626bb6428afbaf3f294ec80a07b40939
cb76540da3b4c4dea49f76e29b55e78eab54ac48
bfd67c0e04662208880d21756af9a64612a7ade33f5b229a419c1149843cc44b
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/location.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-a1a"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fTnfonb%2BScMrdBoeH8YOV%2FIBZj1SKzwRWOV2V5o5lPOqIlpR6PySjJ0NHnpIX5tykt3fXyuzflUKPEU73ixTKVk9wDOLYhumYcC6nIJ0WpeXO87uFQBNAWS8fogDiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2010d8f50afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aeMkH1QULT2XzaSIYY7r9kP6Zb8%2FW0tWx3ZZGPZu8TPjiy6fTJA%2FDousPpPiN4v0kZwOcLnzTkL9aUanhCihDsvEZFVqvjDowu2el31Ma9IoV8W0DkGkSWRtf3VpPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20108fe20b02-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
404 Not Found 146 B URL HTTP/1.1 uspsads.net/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSOxYoQCYibU5T%2BjlEyF3b6PsoOqLPJiRBipFEW%2BJ7B5LmVd7uY2NFGc8xT9DjHAuwr9F9HFxT2e5%2FfBko6vXlddAOEzQ7jQIWDFcFTqudixf8criWKnOCjLaekUsg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2010de00b500-OSL
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/stamps.svg
200 OK 562 B URL HTTP/1.1 uspsads.net/verification/files/stamps.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e6f4476e77a16e8a529bfe5ef259f17
ddf8bbf3624c83306bc6330c23c870a5957a0788
ddcf06dc83e35c63bfcf3fdd3c3322558b0b944ff887066fd9f9811fb4e1cf8c
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/stamps.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-44f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Anr%2FUSUAjsnZcdsygUZeQonO8fnulfCn9r9qiOe7D%2ByyYLz8s%2FMZfs1Y2AuK1LmtPYqCJ7TECN%2FGifHMVPoBr1kM%2BcbQOWun3TaXFjMEYZOV7TJmoxf6eChNNOoodw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20117eeab512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/schedule_pickup.svg
200 OK 932 B URL HTTP/1.1 uspsads.net/verification/files/schedule_pickup.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9e31067a58923c45947c1b4f5a0a443a
bf5cbe15657f2fb768bdb8268587e2d31ca91e56
d4891798c66b3003a1de1ddc561bf66917322d0b3bc822ea89824772e3831a2b
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/schedule_pickup.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-6ef"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2BKBr59%2FB%2BILGJ1q6itZ2steGviMk1rTlD3ljRAFUD0CvcgvPGM2uFD5iOiTC%2FrDGMUorRmo1WIvV2TZc%2FJhmJXrLr6KqxTiD%2FcJDPorbVuk7at3pibcdn3n7deVzg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20117d1fb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/calculate_price.svg
200 OK 778 B URL HTTP/1.1 uspsads.net/verification/files/calculate_price.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4acc44461f37d2b0cef25cc2d73d91bf
ecd0b61c6a3c4bf7da5aca4e1989e9be9c7c509a
cee8db4d25123de4a9dfb9e06cd575d6b1d834dc264d5cbf6d77179bace878e3
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/calculate_price.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-8fe"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nsOKGcdnQGEkuQQFpnjpvA6nJwHGOZlEJUnww5X8%2FjjktkMlD5SZp1IKU8Y9Nrh%2B9bzJd03DjZcWenUoQnDYeMJgtewVH%2FK73Ok5hUPcbkeklnNffuYxuRDx6G0ywg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a201188240b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/find_zip.svg
200 OK 799 B URL HTTP/1.1 uspsads.net/verification/files/find_zip.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 790ac5d2add5ae51cf6f03d5cd2c3d59
3d1b4c4910e3380cd490d1220b10dfb2193fdf35
43da5af54150cbb3a6ab2209ddbe2ec3fc4d815596f5cd6a54354b20dfdd1099
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/find_zip.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-5bf"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42eX3pDaSku9i4fnWJJJhaG%2BqBbESJCtyrrhIag34SjiSe8Xxz%2B8ifDjnGJcUbpFa2JvQDY%2BUGRU0334wpsTotuUccwzPwKDQrBUs2R%2Fr6LddbcZCBrSgCjiEBeiQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a201189cd0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
404 Not Found 109 B URL HTTP/1.1 uspsads.net/verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/8fda1e47-19be-46c7-8d83-8d4fb35572f0.ttf HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GWri9gWahpV%2F0OMkT38jcp0U8HCtyrQpuGc4xvvadPiR2qD9nUP8laRREcB3hPVJD%2Bt2x7aeWml%2FiA1VVx3PZ%2BASdLAH8fXAbqajhDEtOIkh0XW0xD18XUejIWV1Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012283db500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
404 Not Found 109 B URL HTTP/1.1 uspsads.net/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QpdetN8KbTaALLzr3Wc6elcsN7YlHNP365O4DeMghJrWrDTTPh%2FeI8oyqh5JeMcz17tRvXiKvD%2F5%2FETeBpaS7tGUjcOs2DdBwA4UJ5VOBnz6rA6oOYGIsK9ofSi%2FUw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2011da460b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/change_address.svg
200 OK 939 B URL HTTP/1.1 uspsads.net/verification/files/change_address.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b9288bec1928eba9c994a726dfc3fe90
3f3e6fd763fcd93af4a73a3666e7ef8c3ea6f8d4
2053d2af7589e7b8c5659ba0bd11addfdbe6b1beda24301e3aff01aae6627280
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/change_address.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-74d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DtPjdfb%2BkHRTsEzNZa%2FIj5dmRu4so7Bql5fNKdkm%2Fpay6FMIAUNCb%2BAmOcpBqtiHbFcCQYWoJOAvc0rW5YUWcF3dymvZNps1KneDiizRxsmVGYg%2B2c6RDfBFm0QImQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012da670b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/free_boxes.svg
200 OK 652 B URL HTTP/1.1 uspsads.net/verification/files/free_boxes.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 04e241c42bbc0f7b0a5cc60512e51c21
987653032e90d95314234a85f0093b0e8a4e9ae8
ef8877d03eaaa26c22435714fd8cd9c06335c90fe60b7d1eb5b60ef72386507b
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/free_boxes.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-42a"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=apgU4%2BMpd8%2FJ7X4th2DaaIwBRjLMLV22bhIPAoxy2aBvaqTJ5n8QmL6qGQeDVvcDQNYEbVNYp1ldvhywGT%2FtTEHcKCmIuKhm%2FZYyYIddiMuGZX5PUmOC1G3GCgU%2FEw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012d92fb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/holdmail.svg
200 OK 779 B URL HTTP/1.1 uspsads.net/verification/files/holdmail.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0e7b6b062186837c39efcb886d906445
65a0628febd97cd5ae89c6d39a37a2c91d99ea9c
12473e77909256ca855c07d632ca2920e5dbc28f4ec835a59ab5aa6dfa2ee219
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/holdmail.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-5a8"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TJLj3S4qQJsqN77jDrPuqOvfMhuAboGuFb5wJe52wEGUX5kuIE7IluOOYvkFGiXOIKHmbfuIb7hGawa21aevIwCgsRJKiXjgz8DHz3fQ2B0Ba6eJPer6kKBVdUXxAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012cf3eb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 19:35:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 19:35:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 19:35:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 19:35:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 09267c271a56ba4c2d4197543f264fac
67ae4acd88571da51b81fa7ed963b7f2a71845b4
906163f9e1bb8908ae7fcfbf4debc2a42fd14a3f90c8814536025a57ee851dbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffca3b7c7-528e-421a-8910-451f0b9b667f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8162
x-amzn-requestid: decb1d93-bcc9-4a71-a054-c537ad7d1add
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJvndF1fIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2c95-27cef2465fd0e6c849da81af;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:55:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: C_J0m9xfkCb5qsoO934KB2Ldk1-yMaMXkgiv9gWus7JqjN3M_HCpdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 18:01:20 GMT
age: 5625
etag: "67ae4acd88571da51b81fa7ed963b7f2a71845b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:29:44 GMT
age: 50721
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7459
Expires: Thu, 08 Sep 2022 21:39:24 GMT
Date: Thu, 08 Sep 2022 19:35:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lbCmv9fV9iBGOQvxRzleYwC5dBYeu1kRgSSkC2hycDmavyXj-KlFSw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:24:59 GMT
age: 76206
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cd778a615e9a4ca3a25119790398434
d6daca74fc85d39274b3c7536f34528bef93ae97
e6b5a7a525e314e09c30985b22da7c34806df09cbe98ad52b00dcbf93a0dc054
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba17b3c-58f5-4458-8dc2-8e4a7cf8d782.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7251
x-amzn-requestid: 26b2021a-4440-47ce-8dba-d971cae60cc1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9bmHcmoAMF3Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f7d-5471edce7de2374c3b8af888;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: d3MrDEyDFDylQKyfxONQ12_7IBvRAg8o0rSZ64WNRGNvDHqQyDmqJA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:17:17 GMT
age: 76668
etag: "d6daca74fc85d39274b3c7536f34528bef93ae97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: MG4_YJuVqfSCQ80FTdo5XU8xIi74XtILVbIQAbByh54QNOoMJCyS-Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5abfab33f248090bb0f31ca137ce9464.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:47:05 GMT
age: 78480
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f73ee4e91b38eaa36cadd4c437785f8
6ceea057f5ae50b9cef505da0a358e3d3b7d6a38
778d28e14b28c154843403470136d0efdcdd5e93e4b5aab784c12d4344e7af6f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F822fb287-f1f6-45a1-be54-4fa7385bb163.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11365
x-amzn-requestid: d50039cd-381c-4221-997e-9231d40ecfbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9V0EHEoAMFeag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f58-11cab61904bd14462cd13d0d;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Qhobt81rs5gqg8hcr1Su3J3MNFt4_gR2hLHkIl5xDDS1HF9g_3ecCg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:40:35 GMT
age: 75270
etag: "6ceea057f5ae50b9cef505da0a358e3d3b7d6a38"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uspsads.net/verification/files/featured_clicknship.svg
200 OK 495 B URL HTTP/1.1 uspsads.net/verification/files/featured_clicknship.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash 848d7b68e94af791e0dbf9e5fcf07b32
76efeb2bd6f766ecf66271f84d6000e9368a342d
dddba131270dd3ef35e47e35d89969bf06e0321e50351e224764ae93170fe09d
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/featured_clicknship.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-436"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SOJcIygeLHlwYIobyRksGYb%2BQZB4Y%2BTXaacwcAHOHtQpXjJe9ESEUnK%2BwMkOf4rhi3AMqNmNoVZd5MqWlG%2BqeAzuMMKRabrmICxpPVWuRkLxBOQapz3Vf7UTk%2FT6Aw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20132c000b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
404 Not Found 109 B URL HTTP/1.1 uspsads.net/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/main.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7mLU3X2tsiMN%2F9z7ftFjHr6FyqxIA2bEfRnrfQsbclnvV8wQv0lIuZAm1t4gLOzSK4BBiuloCazgY7qCWASRyPVn7xlIUe152otzL%2BJEuEki7cRlURKqBlQHUjMGhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012c962b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/po_box.svg
200 OK 859 B URL HTTP/1.1 uspsads.net/verification/files/po_box.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 26ba388e3905bb7ebd6118422a4c33d2
a4d416ce77d25b3cf06c28305f7d14bfeda49196
7d666d135b5d65338744f8906c632f675aacdabf4e1b54a8140df113d3eac551
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/po_box.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-667"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mle91VJZVo2Pa6vTNIo3hJJKnv0TxAXZOnFbXxyVps0zP5fRx25OwkkFKPbeCplfcVX8mVwn3zapWygAk2yPdm0apL331XRe%2BisaeM3EeLWUBqg3n8pZ4QUhMaXVcg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2012dbba0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/global-elements/header/images/package-intercept.svg
404 Not Found 109 B URL HTTP/1.1 uspsads.net/global-elements/header/images/package-intercept.svg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/megamenu-v2.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kpKAwT2RdN26w0FA8g7%2BtZLkSsSWMsiO%2BjJz7JbUfO9%2BMvPno8ZofoM4RdwvAkQySBz%2F9yqrp5%2Fm9OzslJUNSwMzUfgMVyw%2B2v9x4ouIvkmCbA%2BYozZDaJZiWxnC%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20138a4fb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/global-elements/header/images/utility-header/mailman.svg
404 Not Found 109 B URL HTTP/1.1 uspsads.net/global-elements/header/images/utility-header/mailman.svg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/megamenu-v2.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tkghe9W6dSg%2BlscqBRlOt1K5JSmINleeTdBO3VWdHxoX%2FQdum1S4pWDwqL3iJfYgXrbG%2BnLxbncoC%2B7gERie5YI0%2BXdAfGMfwhIznsR%2B0%2B77XPyr6Uy48heNtATgqA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20138b980b49-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/global-elements/header/images/schedule-redelivery.svg
404 Not Found 109 B URL HTTP/1.1 uspsads.net/global-elements/header/images/schedule-redelivery.svg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/megamenu-v2.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hiyjGN26euyKmBfNfBArYZmTGqn8ZX8vYXI8%2BHjAG6Kc7uWd4B1w49djn5aCL%2FqWC2YpiTGgmQwh%2B7TpUl8X4idJvEuT9LK0bH4qfeWoNH9sX%2BDAakljAyPaF3FTQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a2013984bb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/hamburger.svg
200 OK 291 B URL HTTP/1.1 uspsads.net/verification/files/hamburger.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 52e31e4c8f42685e98ec1d9849a26d54
c024883f61c6d61a9e4a18b936171f1fd342b99a
448157c5d1a46534842541f3ace52d93fc5c2e132c650afe8f79b1310af70509
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/hamburger.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-222"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TkkEh97UGz%2BrsM31UtI3GXcf2oZ61ZqDS2Mz5cjRJCLaNr6eOENno4Ak9%2FAV252eCKg9rXCM%2F67HMOCWqvvEw1Sh61wkMK4%2FVbXe3sIgILU0VVeYGF93mu8R3DrtdA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20141ba7b512-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/search.svg
200 OK 808 B URL HTTP/1.1 uspsads.net/verification/files/search.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6186370a66ec6ee4b59f296dc7842c39
2dc317f4bea9adfbe99198b1827504449a709a69
78bb319864d641893b8d408b4143f65a0a1e0324ea5e6fea5be418cc6f5eac58
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/search.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-5b9"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jr9hEl2QbIa%2F9n%2Fngty%2FNq%2BR9l68w5GlJHU%2BTh9EzRyaBLT7mE425VJU2iLG%2BnlTs%2B1SgprF1g7iz3GaG%2F6%2BbS9%2BtSrw75dTM6wxKzi2FJpkL4m3qPZxDLC4xZmJoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20143b8bb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg
404 Not Found 109 B URL HTTP/1.1 uspsads.net/global-elements/header/images/icon-personalize-stamped-envelopes.svg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
Analyzer Verdict Alert fortinet Phishing
GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/files/megamenu-v2.css
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B84Jl6pCtZhOmf3%2F3VX63vhBZ9G4cXNZPlJbqvTvkNf%2F87DsclxVHWAfm%2BLbIQBthIUpyySB31wKlWMXxzF9yDO6qPccF9bSaaxtgvkT5PdcyPSv%2F2Ijkwf61f9wcA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20140d060b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/verification/files/logo_mobile.svg
200 OK 918 B URL HTTP/1.1 uspsads.net/verification/files/logo_mobile.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8cfb59dbe50430e104c4772fe5800b71
63f6ea21d43f2aec6d3aeefbf649030092412281
47902d371ab0b783153f49657e9fb5519c35e51990bd0bac875480acff850329
Analyzer Verdict Alert fortinet Phishing
GET /verification/files/logo_mobile.svg HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Mar 2021 23:36:16 GMT
ETag: W/"60626470-80c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l2zNMWssyfNljGiAfZe6n2%2FBfsF2SFUcU8Ht7F7sRtwfjfu8IExnGqI3tNnXj7sUasAXG1WV%2FpaJz%2FReC%2FPYK2bbXodxeAaqlGAOeFG%2FynEl%2FC6m9gCS0qy2VsC6GA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20142d4e0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
uspsads.net/favicon.ico
404 Not Found 109 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3bf8e5b194e806e33f65dfafeb99b824
e47321a5ce2bd7d63c3981c10dff614b0a449ba7
10dbaa1586440560d323e0d6aae3dd0d915e3be05b4975518b61190657827a3d
GET /favicon.ico HTTP/1.1
Host: uspsads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://uspsads.net/verification/
HTTP/1.1 404 Not Found
Date: Thu, 08 Sep 2022 19:35:05 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BqzNWowbp6tEmkVjmppqE7qa4nPObs2MxW43Qae%2FcFZNFqjLpEU5khCCaJNLM8PhWZ%2BbjJB1usT1ab524CWSyoAJcouY%2FDvL98JC0r6ZvFfu8F22JhitV%2BOVsA9pWg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747a20157b02b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
104.21.57.179
34.120.237.76
93.184.220.29
104.21.57.179
23.36.77.32