| tracking-all.pages.dev/go-now.png | 172.66.45.12 | 200 OK | 20 kB |
URL GET HTTP/3tracking-all.pages.dev/go-now.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced Hashd0dad9004bae0df70b06b75557b1df62 4a080764de6b97902413f5c836432a30da348517 2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /go-now.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 20334
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "b961eb6137bc8c31aa187fc29681a728"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JiMht4fBMrfm4pTQt3VGi6FDAzDRr%2ByPGCofkXhvTNMNM3%2FHFmgGGucamRYKf5%2FXniAn9q1JIh%2BHNVC7krj45h%2BPnuy0ZcUBCl9%2FY%2F%2BLfeyiShligWmBSuibj%2FFv0V8oqC0Mkg2Lynrz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a6056bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/social-facebook_1.png | 172.66.45.12 | 200 OK | 1.9 kB |
URL GET HTTP/3tracking-all.pages.dev/social-facebook_1.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash5d1fed200f7befa569074a293cf2abed 11bacbc9debe99986d9a6e974e9a819aaa74be29 9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /social-facebook_1.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 1873
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "bda31b9f2905aa787ce4a2e0f9644643"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P0Rq2KT53vYH57FwY21DuxhF2bK4TaWJyx0b%2FmMI4oqxvzAJ60GaMvh1dSR2SXNb%2Bz93NzQpnoxZHVVwMe19TB6dg55ya9z9AXKIG1m%2Fjri0%2BiYmco7LNbb%2BztRBC1WebSxkxt5ICocq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a7b56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/social-youtube_3.png | 172.66.45.12 | 200 OK | 2.5 kB |
URL GET HTTP/3tracking-all.pages.dev/social-youtube_3.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced Hashe38ff6af4b8ff088fcb2dc92410b759b 529c88413dbc330fa05a0629b2084ca7931f453e c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /social-youtube_3.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 2461
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a99a8251090a480bc78212e551a52bf8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jSwCCWnmhjf%2Ff3QBJ4swtaDOwXXV6WTFM%2FzGN3rn7oCbZBPkRnSpXBYfqRPxqJD55f29gDJOyk%2F8Q9XkKyHHRvJz7F2QG18cEnRBRz05BNg%2FDwTrLdyrNMBd5a4JCijcnQ%2FK3NxNifzl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a8456bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/go-now(4).png | 172.66.45.12 | 200 OK | 22 kB |
URL GET HTTP/3tracking-all.pages.dev/go-now(4).png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced Hash22ab573e325c944450873345437b0887 0446e4d20c824d38ef4d427cf7e025c8f034f11a d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /go-now(4).png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 22133
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6e603ded2d3673839edcc5577ca82270"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GO4EdQ5hOz5st9NG9%2FZx4y8fFykLSxHdrKyhsbAiUJqn0ZVge7cGkuRtzsKquNHnvJUopIvwkdDVoPKMUN7V68gqkLqavDxZgz5l6zHph5Nb1Xht8vPbEgL%2BMhA7GL0XY8Vj0OlrPBxu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a6c56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/social-pinterest_6.png | 172.66.45.12 | 200 OK | 2.3 kB |
URL GET HTTP/3tracking-all.pages.dev/social-pinterest_6.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash010bf7d7901ccaa3905cfe4b7c1cb50d 9c174f76a3ed50a173637d44793d6bc15a818112 67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /social-pinterest_6.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 2325
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fd2fa91cc34b2ce4030c158ab7dde4d9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=md4UfEv48eukgYdB6qqTQ1b4sisOXhAz6zXiXrRiIKfs3EtshGsxVSZUnh8W0kcRe%2BWk8ZSiFjGp80Z%2F8SGbx8PfDLot9selm0zhYy5fO9pI5dRm7vY6Wozf64UgCkPq6imyAv%2BgDyx5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a8156bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/go-now(1).png | 172.66.45.12 | 200 OK | 8.0 kB |
URL GET HTTP/3tracking-all.pages.dev/go-now(1).png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced Hash49754396635190a6532dd376acc76ee1 526df243e2adbf5719b082c5e04190ed40209ccd 0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /go-now(1).png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/png
content-length: 8026
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "24d52f2ac445eebf325bc0021f4c2edd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EriFTZ3gB580pqOlj4np7hu%2BvfesaDrLEfOXsYftrlWxU%2FCItd%2BOvw8qqlhFSTJkTnCqUT3wPEf1r%2F6foDkZVRwqZtz1WD3494IUq%2FsYk7Rm6wbIQKVuTEcAbizsYgvxOER6bH4GHbb%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a6256bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/payment/jquery.min.js | 172.66.45.12 | 200 OK | 32 kB |
URL GET HTTP/3tracking-all.pages.dev/payment/jquery.min.js IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /payment/jquery.min.js HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"29c4e63801623c5ad6a13313b0cd8d2c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xuWv6jzZsv%2BmN5FVy4E%2FVHVAHs9f%2FBtRM2mMG6mHt2g2xbRCC4ihtYzX11WmolGRIZya6TZD0MPICoGkoWbve1OPjJopK64j7dsSuPxyLlnZEo2VIy4p1aEL9s%2FOnaU9%2FJJ0sysAMMF8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a2756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/go-now(2).png | 172.66.45.12 | 200 OK | 20 kB |
URL GET HTTP/3tracking-all.pages.dev/go-now(2).png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 195 x 167, 8-bit/color RGBA, non-interlaced Hash2de2fdd02c6b6d71e73e331544c6a5ee 83902e3bde44ba9f0a8aedf4b74ba34a4821ddea e0e7dbe39381b4d75660b091499377fa1962dc194370b09470e9b80d19526f07
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /go-now(2).png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/png
content-length: 19481
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "46d59a9adb259b56685fb86c2ff0877a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nX5p%2BdHvNbRwspLi1QfSgVRhecAHAiJXfBQo8Kpcb7M0izH4rsMaBurJjPom6y9XEosI0uq4IT9JEqY03Mig%2FrphbwGx2zpofJVNtn1EiyVucEuoybqSN277GFGNd4PnR90LwFc7o23G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a6556bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/social-twitter_2.png | 172.66.45.12 | 200 OK | 1.8 kB |
URL GET HTTP/3tracking-all.pages.dev/social-twitter_2.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced Hash4f6b06552f2054fecb5a3ab3956d7a79 c1257b76200738ad53147be110920f84efd479b3 248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /social-twitter_2.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/png
content-length: 1842
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4c4c80e2a945b5fc1e169307fe1f1160"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ysW1YTR96Fe%2BNtrx9S6KQ0bX1LI%2B0EZKatxAixdXNH0zgd0K%2BLGLaBncsBo5P4WFvbbVxwfuWU%2FJIwgiAl6FTHomGChwjBMmfcnF2yILgYE8Lrtd7MTeJv6AElr%2FSYSbdo5JKPu33R88"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a8056bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/go-now(3).png | 172.66.45.12 | 200 OK | 20 kB |
URL GET HTTP/3tracking-all.pages.dev/go-now(3).png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typePNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced Hash6311ef7a60f86d77aa48fcc48a675a31 96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c 70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /go-now(3).png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/png
content-length: 19969
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "127774f46c6fe0a5be34e6ea0314b054"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bfup3KmM9h1fdmMKtJBhPtkpToPhIQfclwIMhMXqLb6NBrSF1wY4e8hZvalLiL37kewKphRdmSnj5xndtQA3TgmxX52KAueOS7mZWELVsoMZBmlHscR3NHsO5cY2tVA4vtfKxMFZMgEJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a6956bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.d35537ad.woff | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.d35537ad.woff IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9991) Hash9d5a866e30108990b47b4bf0c1febc22 f596eabca589dd0aaea9461d76cdad1abf541ccc 2ac5493609b0cf63c5a776cc12cc16fbd93721571c14b899619cd3d84e38e28f
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.d35537ad.woff HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
content-length: 66396
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPtWCgdqJPsI0661iTa0g0iOwq8mAcKRZMrZJc4MwBinlVpaY5na0q7LV1IiR1ZWscK26CQo2vXez8rZrxbRqJ0U6EgznLfVBbUt%2F1C8XpYaqSwnxh5C8GEQHIjPosndU6gFmzRn%2BE%2B%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d1091c56bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.4ae8231a.woff | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.4ae8231a.woff IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9991) Hash9d5a866e30108990b47b4bf0c1febc22 f596eabca589dd0aaea9461d76cdad1abf541ccc 2ac5493609b0cf63c5a776cc12cc16fbd93721571c14b899619cd3d84e38e28f
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.4ae8231a.woff HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
content-length: 66396
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L7OYhMo5TodNpTrl%2FnX%2BCr2BvdymSjh10oqfb0AfqivG99%2BB6PZDrattgEVnZBfzwqVkOlo5pXmWqomOibYDwLw5tvWGKq9mMr%2FgIVxthdp1d6iwvtNy5NUtJgpcwSeD6LZFB6Gs7Pih"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d1092456bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.ce2acce0.woff | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.ce2acce0.woff IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (9991) Hash9d5a866e30108990b47b4bf0c1febc22 f596eabca589dd0aaea9461d76cdad1abf541ccc 2ac5493609b0cf63c5a776cc12cc16fbd93721571c14b899619cd3d84e38e28f
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/5b4a262e-3342-44e2-8ad7-719998a68134.ce2acce0.woff HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
content-length: 66396
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ebkOFC1t30UMi%2FvJE66%2BP53Kg4w41s5%2F5R%2BofNUDfFtrOcwdprIJ5Ig4pOHgIXoCkkCc1e3PcAZzJRFYx9R7ruYRTY%2B5BXWe%2FUjAdHtiIII%2BucoO2XRZB1r%2FSEEQSAnxocYjlHBboFW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d1294356bf-OSL
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/bootstrap.min.css | 172.66.45.12 | 200 OK | 26 kB |
URL GET HTTP/3tracking-all.pages.dev/bootstrap.min.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeUnicode text, UTF-8 text, with very long lines (65306) Hash94994c66fec8c3468b269dc0cc242151 ec16bd19bf4ae9bc2e2336ac409a503bbbdaacad 62f74b1cf824a89f03554c638e719594c309b4d8a627a758928c0516fa7890ab
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /bootstrap.min.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7d6543e645802865b81ee632b87ff766"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BcFSPRDsVQwXZ3lvIK2VZLRdLf7HyQFjHu4VWRaU4yr35WmGWSPOn85MNMtiteR0bqIfNlACdHinuRrinf6pnAZj9TmJneb%2BcrcOseJEJFy8%2B0J9BAcOaL9a%2Fw60bf7y9ncQTA5xR7%2BV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc2a2156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/holdmail.svg | 192.229.221.165 | 200 OK | 768 B |
URL GET HTTP/2www.usps.com/assets/images/home/holdmail.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash4c8f3d7064524311ef86ddd0ded768d1 53ca5f29f603435821d07019cf123e430626f54e 2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa
GET /assets/images/home/holdmail.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27551
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "5a8-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
server: ECAcc (dce/26D6)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 768
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/tracking.svg | 192.229.221.165 | 200 OK | 844 B |
URL GET HTTP/2www.usps.com/assets/images/home/tracking.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash2fb7b372aea93502ca192e5a633d1aa1 ce358703cce32b2176cf6ec94e17341cb6f93f03 58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
GET /assets/images/home/tracking.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27507
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "619-5494e7f71e280+gzip"
last-modified: Fri, 24 Feb 2017 22:46:18 GMT
server: ECAcc (dce/2689)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 844
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/po_box.svg | 192.229.221.165 | 200 OK | 848 B |
URL GET HTTP/2www.usps.com/assets/images/home/po_box.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd3793852de4f419211843c1f4c05ddb4 8c7eccab4e3865a04553d720c150e4506d8990a0 7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27496
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dce/26C8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
|
|
| www.usps.com/test/nav/images/cards-and-envelopes.svg | 192.229.221.165 | 200 OK | 1.1 kB |
URL GET HTTP/2www.usps.com/test/nav/images/cards-and-envelopes.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashef48ce62cb3d361e1d8b2938c40e71dd f2c96ac70aab81500fa0d12f5ab61f07b79b8a54 893b5448cdde44b4db29800aeed45e278b1e640ea4585a5f4a5e4725e64bae84
GET /test/nav/images/cards-and-envelopes.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26975
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "8a9-560f10e8c16c0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:11 GMT
server: ECAcc (dce/26DF)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1056
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/calculate_price.svg | 172.66.45.12 | 200 OK | 1.5 kB |
URL GET HTTP/3tracking-all.pages.dev/calculate_price.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash6204f7fb48ef86964b4b1cce343ebdde d60b7e47e22615fdea2a24e102200090b466b862 edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /calculate_price.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"34047a3cf96dd32c1cb88715628eff67"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V7w%2FUvKsv9nMz%2B4DGJFo17MKT54fU2kMFq20w3OLsTTHeqOwv0A4bLz27UaIKcvgr3MDAfTw3PCXfxbbpTs0YOJvr9iEbo9Al8NPX9TW2ZPWJEE%2FLHJr8o%2B7d%2Be7iu%2Bxzmkk4KMeZDRj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a4e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/logo_mobile.svg | 172.66.45.12 | 200 OK | 1.7 kB |
URL GET HTTP/3tracking-all.pages.dev/logo_mobile.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashf8ad388b3e39b860c97de0029ae98a21 9b032ef4ef4100dda1ba44be4836e6956b11387c 9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /logo_mobile.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d92080c2dbf20d448867604f136e9ef7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pfoL1fZAC2%2FTlPd8h1%2BdNwuU6XcQUDOWEqlml4nwt3E03MvKxbOHIACz1Np8oyyU12OWVJRqrs8WOsvsnZfv8cc54u1tbRbGiFa6FSC1sQ%2Bre7Ai5%2B0NdQ9B%2BcrwIbRD8NZTN9H7egI7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a3856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/hamburger.svg | 172.66.45.12 | 200 OK | 823 B |
URL GET HTTP/3tracking-all.pages.dev/hamburger.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash37c94e8de8729be2b0b9833bafa28f3b c675396f6d65666dd6047b6e92cbd5429556dbac b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /hamburger.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"68257fe8de35f01f6d78a9dc8fa9e2a9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NXKrgSX5OKlY4kg1IMBcUYXuJS5FQDzvMGGH%2Fy9XMmtKn4B0J2jJFVsdDKkbtkXQF2TNkWqOrWxkWjpljUHp1hyDpF7iGysmsYBPBc6xOb3zOfjGLEyBrwiqrv1OiJRyklgfnm1%2BAQYR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a3456bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/tracking.svg | 172.66.45.12 | 200 OK | 1.7 kB |
URL GET HTTP/3tracking-all.pages.dev/tracking.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash2fb7b372aea93502ca192e5a633d1aa1 ce358703cce32b2176cf6ec94e17341cb6f93f03 58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /tracking.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"08ff063563006baa42f75845a976bf8e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nOAtLdDgV1iBMyvANKj2tQKsU6lEn9BrnAPfD1viBh9H8aks%2F%2BGas%2FRtK8Vrit41z7UQBYt9P0DqUp1CyaMbn6T3sd1tPaK%2B%2FCvwq7hY4wCCnjLMHU9lFRl7WYOLXkRWmWZzL0Ilaffp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a3e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/location.svg | 192.229.221.165 | 200 OK | 1.2 kB |
URL GET HTTP/2www.usps.com/assets/images/home/location.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash9b913bc84d41ec1c78da5889d36e1431 21b0075c9ec43a7ec769dde1d1ec8149b0686c0f 87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
GET /assets/images/home/location.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27559
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "a1a-5494e7ee88e40+gzip"
last-modified: Fri, 24 Feb 2017 22:46:09 GMT
nncoection: close
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1209
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/search.svg | 192.229.221.165 | 200 OK | 795 B |
URL GET HTTP/2www.usps.com/assets/images/home/search.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashace472e478185d5f5ecd18c7d821eff7 c4c97892e41d3dd838912c42fd7a7b212f671d1b c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
GET /assets/images/home/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26904
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "5b9-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/26EA)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/change_address.svg | 192.229.221.165 | 200 OK | 935 B |
URL GET HTTP/2www.usps.com/assets/images/home/change_address.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash3955e49630deb78cc1212ba20d83bafc 881ba502127d57c48784703683869abf4c8e28d8 b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27507
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dce/26E4)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
|
|
| www.usps.com/test/nav/images/collectors.svg | 192.229.221.165 | 200 OK | 561 B |
URL GET HTTP/2www.usps.com/test/nav/images/collectors.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash9105cfa1479096038365d18beb23cb1f 648c5b01118cf059eede56d9dae1713ab26d965c b2728704f99e68b8edfa2b8efcb1f40e77d3abd5f6f04388c9a09232b1711043
GET /test/nav/images/collectors.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27507
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:53 GMT
etag: "461-560f10f803ac0+gzip"
last-modified: Fri, 22 Dec 2017 17:22:27 GMT
server: ECAcc (dce/26C9)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 561
X-Firefox-Spdy: h2
|
|
| www.usps.com/test/nav/images/shipping-supplies.svg | 192.229.221.165 | 200 OK | 1.3 kB |
URL GET HTTP/2www.usps.com/test/nav/images/shipping-supplies.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash5c5579a50964d4972d1954bff4ee232d c78b384713cf7a8a5515a54f17c6e70ebdde98fc c12815f27ecdfd09b2920c1eea21ae7abb8e107349d6bb8b39707a0cd9a3e591
GET /test/nav/images/shipping-supplies.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26923
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:53 GMT
etag: "9f8-560f10eaa9b40+gzip"
last-modified: Fri, 22 Dec 2017 17:22:13 GMT
server: ECAcc (dce/26B0)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1282
X-Firefox-Spdy: h2
|
|
| www.usps.com/test/nav/images/business.svg | 192.229.221.165 | 200 OK | 689 B |
URL GET HTTP/2www.usps.com/test/nav/images/business.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash0d366834f312798111ebe3990766f8f4 e3ce708bf0b0b1924156674aca900898d407331c da2e0f69eb8ea4aa9ffe45c2ad6d330eb7922e0e14f8aaca4e577be0fb8b4bea
GET /test/nav/images/business.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27501
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:53 GMT
etag: "4d2-560f10e7cd480+gzip"
last-modified: Fri, 22 Dec 2017 17:22:10 GMT
server: ECAcc (dce/268F)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 689
X-Firefox-Spdy: h2
|
|
| www.usps.com/global-elements/header/images/utility-header/search.svg | 192.229.221.165 | 200 OK | 795 B |
URL GET HTTP/2www.usps.com/global-elements/header/images/utility-header/search.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashace472e478185d5f5ecd18c7d821eff7 c4c97892e41d3dd838912c42fd7a7b212f671d1b c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
GET /global-elements/header/images/utility-header/search.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26878
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:53 GMT
etag: "5b9-549b126599f40+gzip"
last-modified: Wed, 01 Mar 2017 20:28:05 GMT
server: ECAcc (dce/2688)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 795
X-Firefox-Spdy: h2
|
|
| www.usps.com/test/nav/images/gifts.svg | 192.229.221.165 | 200 OK | 590 B |
URL GET HTTP/2www.usps.com/test/nav/images/gifts.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashdf6fcab6c4caf86e8a1401a4fc36f885 860352cea6899553cb4e7111097b35bd007c65e7 986ebc6c0f0c4b5bdb2513352dbbf3f501a36abd1dcd0c17a9c215efd95191a7
GET /test/nav/images/gifts.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27507
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:53 GMT
etag: "3ee-560f10e9b5900+gzip"
last-modified: Fri, 22 Dec 2017 17:22:12 GMT
server: ECAcc (dce/26E0)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 590
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/favicon.ico | 192.229.221.165 | 200 OK | 32 kB |
URL GET HTTP/2www.usps.com/assets/images/home/favicon.ico IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash3f0f72ed57a54b97cda500bcf0545efb 2f252619c18e729d98e16b96d37cd7cd567b38eb 67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
GET /assets/images/home/favicon.ico HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 27504
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/x-icon
date: Wed, 08 May 2024 15:59:53 GMT
etag: "7d26-547e0aa1fa400"
last-modified: Mon, 06 Feb 2017 18:18:56 GMT
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 32038
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/featured_clicknship.svg | 172.66.45.12 | 200 OK | 1.1 kB |
URL GET HTTP/3tracking-all.pages.dev/featured_clicknship.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash4eaba35653e775df78f96942d040dcc3 f5fd90e8f32041520795f0c82a1652124a02f93c 08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /featured_clicknship.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"bfd53f6148f6ecf97e915e3304f91f93"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GmdTj6nMbhoUq9ISJhPGQ0%2Fx3IKVAuoOBBGk0LVHM5hCi6D%2BC6880Xt69gU%2FB1qMad9yjqSatECQL5I52h6SKCOtUpnGxYr218Zad9s5GQBVnpgMoEQf8gugGr%2BbRgpqGd4pxEW%2B8yqh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/find_zip.svg | 172.66.45.12 | 200 OK | 1.5 kB |
URL GET HTTP/3tracking-all.pages.dev/find_zip.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash947f73db1be85b62c0a78fd947ea8f48 4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6 65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /find_zip.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4afeb29bd1d3f3acca338b0e24e4330a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rm5jsVFxYS%2FKHV3lag1O8GoWctTlAkaJSvZThYrd5pchATllPuUTVYfUfheo0G1RSl9v5sIv6W%2F5bI8e%2F4drzbZFNKv2yD4FafKYdb7LNnqqVM2wyJiF51OPpzQXoS%2BE8fRyZ%2BjwgZE0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/footer-sb.css | 172.66.45.12 | 200 OK | 3.2 kB |
URL GET HTTP/3tracking-all.pages.dev/footer-sb.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeASCII text, with very long lines (3193), with no line terminators Hash4a6ce4ebfe84e7439d3512d66c90d536 e655ae4472f859a133b1b1541279ca574d182776 0bc86b4d608e2763c9806ec572acd7bcfce09654e69c4f85b21da61098b0f9fd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /footer-sb.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"5ccd948810f2a5bdbdece98fcb0df41f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qcql5KJWN6YjMjeyXgIfwNOmbdsMV2Mmmmd6nKlAO5h47VYk8SCGK8zr5rFlfC6oJgHG8Y%2BE7QJzO%2BD63fc2WfViQIahIq2uMpEfM7fpRPtxSRrIbBKrkHVwGpB5XkygtRinJUsX8MQb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a7956bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/schedule_pickup.svg | 192.229.221.165 | 200 OK | 1.8 kB |
URL GET HTTP/2www.usps.com/assets/images/home/schedule_pickup.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashc523f85f9a06acc80cd618f10c18063a d385730a45e237ac82907718aa3c7d78f2dd74b2 7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86
GET /assets/images/home/schedule_pickup.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27540
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "6ef-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/2695)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 923
X-Firefox-Spdy: h2
|
|
| | 172.66.45.12 | 200 OK | 66 kB |
URL User Request GET HTTP/2IP172.66.45.12:443
CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET / HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=du%2BuenZ8eMFgivGbUXS01xCJTleKFF69RWCkM4L46T%2Fl%2BrX2FBYWBVCqcJXxse%2B5SOotRGBWIuNGPTwg3AP3NME2xGMCIbeW%2FZyekl1QHtOkRjCxF3zCqOtFSOS2dlYtpBXpeDsHG29c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8c938d90b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/logo-sb.svg | 172.66.45.12 | 200 OK | 3.6 kB |
URL GET HTTP/3tracking-all.pages.dev/logo-sb.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashbd8c973ec0b53678ec2e4dc5134fa653 e643657e09913383e36bfb797352a7223e202f15 3c24c49690aa84ba6ff95c560fb35c92ea3b7b7f6d7a4355f8628b19b3e1f97d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /logo-sb.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"7b88cbc299ec71cd953d9133f84518c8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bnKu3nAeBgm6HBjqBSi6Ede9D%2BCnFD%2B7RDKuZj5%2B1S%2BbxFVKLh7WjrOyML9L6GdwkAfmCe37gauI519bMrJT3niZxTQsb15hC%2FF%2BYj4lw9ckQqkcF7XngLCba6NkP6m%2BR%2FseM2TSlCs3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a3356bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/search.svg | 172.66.45.12 | 200 OK | 1.5 kB |
URL GET HTTP/3tracking-all.pages.dev/search.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash72686f982dfebbd9157958b01f2ce9e6 525eb380721cdc53b170b7ed00d9a87f6ab71167 92f4f127afbc23dba0b9a8edd2b7baf572c6f2abec350a4d992e372b000e674c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /search.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"065319b850c9691d22616897e3e8a178"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bb2l48l%2FESm1RKWu7ILYXSGZYkY0NmWBeoaqY1WaH5fTBAxujCWcvjlzmffhDr2eqh6udapbFNQlNHPENccMBn0Iu0qdMws0CUHjUU0VEW0Wz925UfVGKM7CXRHRvCoqZL2I2yHU7nsB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a3a56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/megamenu-v4.css | 172.66.45.12 | 200 OK | 44 kB |
URL GET HTTP/3tracking-all.pages.dev/megamenu-v4.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeASCII text, with very long lines (44445), with CRLF line terminators Hash31aa5c3ebef1bb2e79cd8dee20262845 fd9ceb609f4c60e0e8c5561cb933c84a85af12b7 65e09ec697225883fb227b54f59a2c421b5af7a3b4f557770ab15d8934ff44ce
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /megamenu-v4.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"689875afe59dfc8f379640132cf39244"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6zo2bnHhWfZ3YbiQ5wsgU%2FsqLY2ErkhFTd7np2X1FtpJdiiZkD3vEUgprK5vn6wq%2FUrUL87hSX%2BjmAcAij238XeUl5gmhfl5XZ93gy5nw%2B8568oXqS3f6u2o%2FbO%2BAmQpXcVe6ymMY3IY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a7556bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.95916e30.ttf | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.95916e30.ttf IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.95916e30.ttf HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=03YG9tOq69ON6RQ2aqvw9YlRzWJrRdO5TWiPtIXKcpxaPTYNU0Xo2yEHdsZDXlVGVFd21eQ%2BjE3ridWCURR%2FeK1smEw0zAfu7tQRsE%2BYOOWrnJTCGlK6JBB3g9Umu2wvgod0ZssvdZIL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d189c756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.00f83ae9.ttf | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.00f83ae9.ttf IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.00f83ae9.ttf HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0g2E8ejcyJjmdoVzIITWSJ8METsJtSDEcT1wpJKldkI3J8%2F9%2BQ4QmDZyVFAMqcd6Frkdcav9Fm02YBhvhNBKTslqneV31OXKIzEOF4kEtlnaAyZuTWpKb0S0rr2RsthvMgoQ06efWnZY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d189dc56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/location.svg | 172.66.45.12 | 200 OK | 2.6 kB |
URL GET HTTP/3tracking-all.pages.dev/location.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash2b06f7a382ea90d910403786f60f9d81 9f10825ebeb9516e451a6077b1d0049a352b48e3 a0e33a0b87e479cf85c9df62303b3952357a0645e6c7c36627a43fccaafad182
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /location.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"41af342ea1a59edbbdbdc0c7c7a83d37"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8IGixzkT2B4P4A96zEjGiLwpyK3HftA8AsPRYaGbZGRZ1hT6V3KRM5AdtgXZvaB4p5GhXH7Eu36JBXKTYZq6fw3uZYsPk4J%2BDc4ansl2t7g62n8ZnCisccaSDZAs75yL3iGWL%2FN5yATS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a4256bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/global-elements/header/images/icon-personalize-stamped-envelopes.svg | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/global-elements/header/images/icon-personalize-stamped-envelopes.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /global-elements/header/images/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/megamenu-v4.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d5GrNhluqpLqT%2Fr9KqBOUqZEVoY%2BQd7gNbdPDhp0E%2FqOddE2lN%2BA7%2FSFHpn5Q1J8k8JN8L%2BJUBEM22rcaG7O41bECRKvbH0gqfA7DgjIojH4IjzBzYr8sBffj%2BShNJx3DXcgSPjJbIIB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d0e90656bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/free_boxes.svg | 172.66.45.12 | 200 OK | 1.1 kB |
URL GET HTTP/3tracking-all.pages.dev/free_boxes.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashe7462fb4ef0723c03ebac6aa9526541d 72952a4ed5e25022fe16dd1fa5584c7c76706894 281fbdd399ccac84f423007a4262f191dc0637eb8e04583d85c2e01395085314
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /free_boxes.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"b895d010a7ef7e385a146b8958daaa1e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x5igZ1osCjNNR4PSJgKjghOQ9Ml2dDz4DdfbbNYkil2JwXZNqsPwRu93xse17T9XfhCav3qF1nq53EY67vm4dYt6NFQtFE20qdwZa3jxZxIfTi%2FyJmbCCE53rUGelKNq%2B6Z4BbvHKQXT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5c56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/featured_clicknship.svg | 192.229.221.165 | 200 OK | 1.1 kB |
URL GET HTTP/2www.usps.com/assets/images/home/featured_clicknship.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash4eaba35653e775df78f96942d040dcc3 f5fd90e8f32041520795f0c82a1652124a02f93c 08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26916
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dce/26C5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
|
|
| www.usps.com/assets/images/home/stamps.svg | 192.229.221.165 | 200 OK | 1.1 kB |
URL GET HTTP/2www.usps.com/assets/images/home/stamps.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashaa929e4b4109978bc993e27357aae805 90fa6376d480e4b223c10365a264147417064271 2734c778268298b5302a62fb13085c40eff83b394ccfcfbc0bc70918589f45f7
GET /assets/images/home/stamps.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27529
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "44f-5494e7f535e00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:16 GMT
server: ECAcc (dce/26A6)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 551
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/idxs-icon.svg | 172.66.45.12 | 200 OK | 1.9 kB |
URL GET HTTP/3tracking-all.pages.dev/idxs-icon.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash583ef52bd60e417556db5f135ccde412 95657d33aff9e4378ebe4d23588822e15decf037 5a5fd0aafb20d9cb95bf9e3e7110d8877c7bfe8a990e6b5d4ba59148da355bf2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /idxs-icon.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d4db73f2ab664364b57511a365a3dc14"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J2I%2BDxNEXaKVppmiKS%2BrGxT3klyez%2F7m5IgeoG1voxXKL3sjNgBUuiEENKUZ4WSE48Qc6RGWYHyTL82D4V9%2FA8CV9CvRCbAx%2FgEl61ZXyCEQjWe7dWhNT4twFK%2FA%2FTyKyfSm6Mtw2pGK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc5a7056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/3.css | 172.66.45.12 | 200 OK | 930 B |
URL GET HTTP/3tracking-all.pages.dev/3.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeASCII text, with very long lines (930), with no line terminators Hash9d8f9ca804d1547304a4697a71854267 166749969830f5ef86e18e2dceec90aecae67a0b d2fe6cb3e10b13a65b0c3569b4e617f16072bcbba3b7b537abe7dab999435d21
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /3.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"482f09cb417743eac1d864afb1ac76c7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=reNFvzwKwuq%2Bjv5Ch07WFBs4GQBQQKf3TdjRBeepbgJICBvfSWhDMFRKhewvnjebXjxE1EmLiknSX98mm0ZYTp%2BK6pc%2BJqErDJ2zjBZ%2FmX4sIkp%2BR4JQIm%2Fjx2BG1cdyqU5XfIOpQ0Il"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a3156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/mailman.svg | 172.66.45.12 | 200 OK | 1.8 kB |
URL GET HTTP/3tracking-all.pages.dev/mailman.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash7e63b1510cfe1e7b2e2c00dbe7b48f49 7b13f782d0ea7d101e612cab914da1574180fa76 3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /mailman.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1e87147e306dc04d3f53da5ff627cb47"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sQ0D2MECrXw6P5BA%2BZj0NUyDbPOf8MM7X%2F%2BadmaM%2BGoPFWfXfRkX%2FTxJG8xDW%2FSeFQKwcy4RVuURjIkfwdgizfAXggFKNgAwcVxpIFZNGcwxOZOY%2Ftn9Id%2FE1%2B%2BpMsPGTvmWQDrYF11C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a4056bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/1.css | 172.66.45.12 | 200 OK | 335 kB |
URL GET HTTP/3tracking-all.pages.dev/1.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Size335 kB (334784 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /1.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1b741105c965d7e9541e1c1d4b98a895"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rEEWmTT07SHjdZeneuUkn2hg1yASTuiBBeY9ikyB0SyEQOXYI%2B9jiJDYbbgKdMkd07CLDnpE04AnGrM7tGe3asnO5wS38MaKeGI0lxCIdMuGAYdkJQgQaGoXqr62Vv5WWAZYb%2BhdOCxu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a2c56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/stamps.svg | 172.66.45.12 | 200 OK | 1.1 kB |
URL GET HTTP/3tracking-all.pages.dev/stamps.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashaa929e4b4109978bc993e27357aae805 90fa6376d480e4b223c10365a264147417064271 2734c778268298b5302a62fb13085c40eff83b394ccfcfbc0bc70918589f45f7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /stamps.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"e9b251dbcdbedfe173c0b77c7f4d209e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YW7PkPSA8P3SaIJhrElktl4PSH9wr9nz2mzVdCJyJrNb2rT5ZbTrSzHiNVNyJSWKeeAMucHU4sEdR9ereVi3VOEQaMqeIN53w8yqExdsqY537%2BeD0gRAhRISdZ1sj6HrnO4rjrc33tQB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a4856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 | 104.16.40.28 | 200 OK | 0 B |
URL GET HTTP/2fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 IP104.16.40.28:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 593968
accept-ranges: bytes
set-cookie: __cf_bm=KBkTy7f_wgXn_7C8961vg3ZSnzxZxROMD1aTrP32xLU-1715183992-1.0.1.1-4sWld2lIorrkrIcdwlRjLdLSJUCPCdMev98dMYX25fNbxXjEAVkVSbLRHtb1mfWyic5ST2w1Vn81uYjyDeVkrA; path=/; expires=Wed, 08-May-24 16:29:52 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cdea5dbe44-CPH
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/global-elements/header/images/package-intercept.svg | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/global-elements/header/images/package-intercept.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /global-elements/header/images/package-intercept.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/megamenu-v4.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4PHYhXlaiwEvSqemUeBIX9OSgojTaeqzJjiMeOqP4hYoY3ccXwzf8NKETvqol5Q409E5YeBeKNi1uPv2GpqO4SK8oQ2VjQSHHEpIBUQQjlLZrQQGHYpnr%2BbSVZPXcx4cbkbQo%2BLDH8mp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d0d8ef56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/global-elements/footer/images/footer-logo.png | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/global-elements/footer/images/footer-logo.png IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /global-elements/footer/images/footer-logo.png HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/footer-sb.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Th6ydNY42NuANGr180FKfKwMfxthttptGuEbdysNRVPO07xILqDVrJgLdvlMiajxla%2BcgRd5JSiD2LOqNtr8mFssnYp7U7WdEBBnGNGK8UNKvj379ZRdHGL0zUhINNKhTlDAK35xK9fd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d0f91b56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/calculate_price.svg | 192.229.221.165 | 200 OK | 2.3 kB |
URL GET HTTP/2www.usps.com/assets/images/home/calculate_price.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash431fb89252e46304ea7f6f956146f2b7 bd1018ec7dfa59258d8b81a2f914291ede34f27f be94cb1ae2d86c4a1e0b79e6dcea5decd7f5ab1e96e171946de72117094b13a1
GET /assets/images/home/calculate_price.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 26894
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "8fe-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dce/26E1)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 772
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/holdmail.svg | 172.66.45.12 | 200 OK | 1.4 kB |
URL GET HTTP/3tracking-all.pages.dev/holdmail.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash798a735992c99ecdc76454f1c093261a 89058df9342a184b64cdff41a11798ba07628829 cd9c59aa1822c5bf50b3250455ca1d6a7aceded7ad9d92c1e5072367384c1652
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /holdmail.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3fd14111ad8ad6413542913d86680c76"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bsl%2F97tMPqBfNNbNzWtqqLHxmEzsbC89fUGCBKxKGF%2B2Y5vnq0RA86In9NXCNy65DI3ezHEobtu2VwVYd9BCWIW9PDgVU3aXb8hTioa%2Bq2CKlKygkbySjNNNv4BFF0CPlJbFWPwJiwTv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5256bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/change_address.svg | 172.66.45.12 | 200 OK | 1.9 kB |
URL GET HTTP/3tracking-all.pages.dev/change_address.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashba4d97e788e337701dae39405dc2f442 7e0d950d83c7e7eb6102ee1b5175b1db8ce56551 38ff1ba4f58c85e428e833b6bfa50ce3ddba6b350b3aa68779325f1afaa13b5c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /change_address.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f0cc254464b7b134a50c3dfde3e418e4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pcucvPL8iUmTYC7WwQUmr2Y5sD7IOYhNN6tNPpA5qFZDuHR9MCFLqD1DG5b6A9%2FRHZkp%2BgxNkHvXtUpcxHSMQHZZsHu8rrNxpo4dLUiyKNUnFvIR9jrCWmCpnnTh%2FzfD%2F38hSCDOOEqt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5456bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/po_box.svg | 172.66.45.12 | 200 OK | 1.6 kB |
URL GET HTTP/3tracking-all.pages.dev/po_box.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hash2cc2a9cd603e3badb3f767a4a4728f5c 40f414f0ff209023650ca7014ec2a57939229d1d e60ecbbbdfaf3944b4ec3ffdb090954b0ede6607da1cdbf9fb7d2963fdee61b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /po_box.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"77c1939854249e106d2a03ec8e581322"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MfALiRTQqtgeMVT3j%2BT9azerz7cpmEwD7CPwKR8xKg2aA%2FLhEj05cUo%2FV%2FvVYLje3PYNe5VpcUNUNOsJYC7gW%2BnA3%2Fc4RzWQzqWQZflY6KZ%2Fn0micI2owrmgEVlv9Enj9ljoSekK2fDg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a5a56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.76e09978.ttf | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.76e09978.ttf IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.76e09978.ttf HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/2.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1UJi2sAdGgmA0Av64EEzxuroMBuFRNEQNovj%2B2l2C%2FcS2oYO3mhI1MPGHC1mYQZ78mrnQsepfzosMAYPSUuqQSNI1DoLtZ48%2Bxjav8lyjh3OSbj%2B2SQmmgP0kQFqKQtdvIAGoCxXO62h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d169a756bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/payment/megamenu-v3.js | 172.66.45.12 | 200 OK | 13 kB |
URL GET HTTP/3tracking-all.pages.dev/payment/megamenu-v3.js IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeJavaScript source, ASCII text, with very long lines (13400), with no line terminators Hashb62e27b15837b70e7dab99846ac90ab3 9a49415c5e47149a5324705eaf78b4b68ce10edf 50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /payment/megamenu-v3.js HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"129dd6898f8ece808e780458ea1eac93"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pdubfMYvY55NdsUoU7j0FmECihxLyoPqlcSZmsqzEJEV24NEGZWht4rkWh7IReROA2xF4wde%2FNPdy%2FO3Wz%2B4vR7iN8gHUfSSnw9aGL7QZ1jUUGAwTMk2QA52JdHBgu02RLdm3QEP3EuB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a2856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/assets/images/home/find_zip.svg | 192.229.221.165 | 200 OK | 1.5 kB |
URL GET HTTP/2www.usps.com/assets/images/home/find_zip.svg IP192.229.221.165:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash947f73db1be85b62c0a78fd947ea8f48 4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6 65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 27455
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Wed, 08 May 2024 15:59:52 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dce/26CF)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
|
|
| tracking-all.pages.dev/global-elements/header/images/schedule-redelivery.svg | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/global-elements/header/images/schedule-redelivery.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /global-elements/header/images/schedule-redelivery.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/megamenu-v4.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5h1D2k9nYjNsTd6tZr%2FHFYeGTeW63R06sx3KmV01twbnlBI5P%2FzCUcXpTqEMiS0Kmvy4OUWZ64ICRT5yD%2FlUnsdYCTJepy%2BQ6ZOA7gVwb9PPe1MbyLCx7gcX%2BZX0piPL8ESbBbcNU1vg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d0d8f156bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/2.css | 172.66.45.12 | 200 OK | 126 kB |
URL GET HTTP/3tracking-all.pages.dev/2.css IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeASCII text, with very long lines (43288) Size126 kB (125756 bytes) Hash4ee316fd51e5a78d53d5a0cea628e478 a83b38336bbfa7ab48cb0ef724e2eebd32d14b66 4f8624a1273b50e48a9cb7b9a37601888d16ce98021042e7173e1270375b1222
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /2.css HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"a8fbe4d99777868cf30b0d01cc656f5d"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BlGY9dtCmNR%2FoWnjGnO%2F5FvaeyJJsUyACh8Gc7FyPeahd9Wg%2F49Uu912o4St0Zjb2KKcs%2Fji383QXCkyg%2Fniqj6PvMrzEsmx2UbEX3vtQS88RO53HXu94Tv5LQ%2B40eTZcg2eCnRr8GoU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc3a2e56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/schedule_pickup.svg | 172.66.45.12 | 200 OK | 1.8 kB |
URL GET HTTP/3tracking-all.pages.dev/schedule_pickup.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
File typeSVG Scalable Vector Graphics image Hashc523f85f9a06acc80cd618f10c18063a d385730a45e237ac82907718aa3c7d78f2dd74b2 7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service |
GET /schedule_pickup.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:51 GMT
content-type: image/svg+xml
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8096cba01b24abb183bb1197422fce68"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NUsUknHmuqUJBaeLqyTiGmX%2BGPPy2fFFf%2Blvm87eJFyA5%2B6Z57rAHkVx3eLm4qkEJKpMah9hhwOHDBEkP1fVxjHdmsFN%2BtgX3ZCdjY4QQtvhhTXs5NW4h7mkpkE1aCQ8VMdmfWsB7PSc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8cc4a4d56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| tracking-all.pages.dev/global-elements/header/images/utility-header/mailman.svg | 172.66.45.12 | 200 OK | 66 kB |
URL GET HTTP/3tracking-all.pages.dev/global-elements/header/images/utility-header/mailman.svg IP172.66.45.12:443
Requested byhttps://tracking-all.pages.dev/ CertificateIssuerGoogle Trust Services LLC Subjecttracking-all.pages.dev FingerprintB5:AD:E5:23:F6:58:6F:3D:D7:DD:A8:E2:01:A5:36:18:F1:B7:B2:5D ValidityWed, 08 May 2024 04:47:37 GMT - Tue, 06 Aug 2024 04:47:36 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service |
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: tracking-all.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tracking-all.pages.dev/megamenu-v4.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 15:59:52 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"cdd69510583e98163d7573e5f4ee61dd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2Bf2GLhiwfdT2xVjbI3J%2Bvjb3fLdP3gNkFMYdzoKx2NVU3JpYwW8UH1V3kegr0DIiwZLi3prONHmgprin0uh5YGzmgIP4KHAksHTPMyJXL7JYVi1scIUqeoj1nYMMpaTnJh%2F1q2kSDj5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880aa8d0d8e856bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|