firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 30 Sep 2022 20:16:13 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: foYZ1GfZhuXeioBgwuK7_ez1evHaG6d5RajP-dsGRYSubgCOE-p0kA==
Age: 503
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10102
Expires: Fri, 30 Sep 2022 23:12:58 GMT
Date: Fri, 30 Sep 2022 20:24:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dcc4499d374a2853afa2d5836acbe65a
4ba69db4852144bf192d1803b69b39a6b881feb8
e4cab1657f3e7a3c2d219a7802955629f414ac772ea4576c30aa7a71533a10c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E4CAB1657F3E7A3C2D219A7802955629F414AC772EA4576C30AA7A71533A10C7"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6712
Expires: Fri, 30 Sep 2022 22:16:28 GMT
Date: Fri, 30 Sep 2022 20:24:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wDvN0fBQz6QQamf4F6q/2OylGAa/ChwZcrPYkOSQ4igWHFCMMAC0nkMcN5qOXz3Fecft2o0EvTc3YuqJxykcow==
x-amz-request-id: 4HKEFKD05BT1DTBW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 30 Sep 2022 19:48:44 GMT
age: 2152
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31fcf71c3a0411f08bae2d3e7bdcb9ce
474e142a711fed9fb5283674b909fbf7502e8cd8
fde67cf2396f1a75101acb9d50935bb1a11cebe6ebefcf2d94ee56c070107566
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDE67CF2396F1A75101ACB9D50935BB1A11CEBE6EBEFCF2D94EE56C070107566"
Last-Modified: Wed, 28 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 01 Oct 2022 02:24:36 GMT
Date: Fri, 30 Sep 2022 20:24:36 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/logo-sb.svg
20.117.188.172200 OK 3.6 kB URL HTTP/2 uppssqwe.com/static/picture/logo-sb.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo-sb.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 3557
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/hamburger.svg
20.117.188.172200 OK 546 B URL HTTP/2 uppssqwe.com/static/picture/hamburger.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/hamburger.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 546
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/search.svg
20.117.188.172200 OK 1.5 kB URL HTTP/2 uppssqwe.com/static/picture/search.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/search.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1465
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/tracking.svg
20.117.188.172200 OK 1.6 kB URL HTTP/2 uppssqwe.com/static/picture/tracking.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/tracking.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1561
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/mailman.svg
20.117.188.172200 OK 1.8 kB URL HTTP/2 uppssqwe.com/static/picture/mailman.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/mailman.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1827
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/location.svg
20.117.188.172200 OK 2.6 kB URL HTTP/2 uppssqwe.com/static/picture/location.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/location.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 2586
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/stamps.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwe.com/static/picture/stamps.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/stamps.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1103
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/schedule_pickup.svg
20.117.188.172200 OK 1.8 kB URL HTTP/2 uppssqwe.com/static/picture/schedule_pickup.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1775
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/calculate_price.svg
20.117.188.172200 OK 2.3 kB URL HTTP/2 uppssqwe.com/static/picture/calculate_price.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6204f7fb48ef86964b4b1cce343ebdde
d60b7e47e22615fdea2a24e102200090b466b862
edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/calculate_price.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 2302
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/logo_mobile.svg
20.117.188.172200 OK 2.1 kB URL HTTP/2 uppssqwe.com/static/picture/logo_mobile.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo_mobile.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 2060
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/find_zip.svg
20.117.188.172200 OK 1.5 kB URL HTTP/2 uppssqwe.com/static/picture/find_zip.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/find_zip.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1471
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/po_box.svg
20.117.188.172200 OK 1.6 kB URL HTTP/2 uppssqwe.com/static/picture/po_box.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/po_box.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1639
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/free_boxes.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwe.com/static/picture/free_boxes.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/free_boxes.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1066
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/featured_clicknship.svg
20.117.188.172200 OK 1.1 kB URL HTTP/2 uppssqwe.com/static/picture/featured_clicknship.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash 375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1078
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/go-now.png
20.117.188.172200 OK 20 kB URL HTTP/2 uppssqwe.com/static/picture/go-now.png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now.png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/png
content-length: 20334
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/go-now(1).png
20.117.188.172200 OK 8.0 kB URL HTTP/2 uppssqwe.com/static/picture/go-now(1).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(1).png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/png
content-length: 8026
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/go-now(2).png
20.117.188.172200 OK 27 kB URL HTTP/2 uppssqwe.com/static/picture/go-now(2).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(2).png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/png
content-length: 26972
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/go-now(3).png
20.117.188.172200 OK 20 kB URL HTTP/2 uppssqwe.com/static/picture/go-now(3).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(3).png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/png
content-length: 19969
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/js/header-init-search.js
20.117.188.172200 OK 904 B URL HTTP/2 uppssqwe.com/static/js/header-init-search.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/header-init-search.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
content-length: 904
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/go-now(4).png
20.117.188.172200 OK 22 kB URL HTTP/2 uppssqwe.com/static/picture/go-now(4).png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
Analyzer Verdict Alert openphish United States Postal Service
GET /static/picture/go-now(4).png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/png
content-length: 22133
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/change_address.svg
20.117.188.172200 OK 1.9 kB URL HTTP/2 uppssqwe.com/static/picture/change_address.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/change_address.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1869
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/css/megamenu-v2.css
20.117.188.172200 OK 8.4 kB URL HTTP/2 uppssqwe.com/static/css/megamenu-v2.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash adaf523db6d69f6822d9295f5054b638
7c8d50aa3d635922149b9d73a15b0b49a5ff3d28
8c2d8dc1d80a1e04daf55bede3819dc9bf91d9abecc8cf4e0622b79c4102d1f1
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/megamenu-v2.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/
20.117.188.172200 OK 32 kB IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 8a895cc51e0d451616e558a1146822f9
26b8a581e80e0e456b0b9d6e364d4af8985dd281
0b7beab5f1b2567424f7027ebc408e37721d74b53a08f2575b573b208cc15765
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET / HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:36 GMT
content-type: text/html;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
content-language: en-US
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/font/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
20.117.188.172200 OK 47 kB URL HTTP/2 uppssqwe.com/static/font/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Web Open Font Format, TrueType, length 46657, version 1.0\012- data
Hash 3beb1cf49dc702cd4de8618eeb344dd4
080e1b4dc8b43ddb06961a3490857cdb936a8c2a
ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/font/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/main-sb.css?t=1657032800
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/font-woff
content-length: 46657
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/image/calculate_price.svg
20.117.188.172404 Not Found 59 kB URL HTTP/2 uppssqwe.com/static/image/calculate_price.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash af5725f0b94b6c3562ee220689d3504b
cdd103c9f0328e1ee382529d7df4f536408834a7
92dbd970e65d925e01ec765ccc6ff4d9dbf64a65c6da0aee64982223771f49d1
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/calculate_price.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/image/tracking.svg
20.117.188.172404 Not Found 52 kB URL HTTP/2 uppssqwe.com/static/image/tracking.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 266369283eee33530852a90d65522733
0e206dcb74b178c21f225d98fc27d1931462ef1b
1f1808992d1daedc348f39906b5de161a029f54cbe1ba252d7fdd0d8c24e1536
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/tracking.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/image/featured_clicknship.svg
20.117.188.172404 Not Found 612 B URL HTTP/2 uppssqwe.com/static/image/featured_clicknship.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 98245eba39f758f9a22c3bb882650440
c9613f829e5dacc69cc3a862057d22b030c915ab
3c108d1434a52d9e47ad0204d1e27acac9737adc1ccbc4bac6683a8b878619db
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/featured_clicknship.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 10014
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Fri, 30 Sep 2022 20:24:37 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 29267
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Fri, 30 Sep 2022 20:24:37 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
192.229.221.165200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP 192.229.221.165:0
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 55142
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Fri, 30 Sep 2022 20:24:37 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
uppssqwe.com/static/js/jquery.min.js
20.117.188.172200 OK 30 kB URL HTTP/2 uppssqwe.com/static/js/jquery.min.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65453)
Hash e6ac17baac5d9943c0844a754c9ba102
790a6e2c682f0d5e82605b456495b8774b34018f
4320d8d8133b736c6ed2a5638195744b118f675e77ec4579e0bd02e08f1e4bef
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.min.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/favicon.ico
20.117.188.172200 OK 32 kB IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 3f0f72ed57a54b97cda500bcf0545efb
2f252619c18e729d98e16b96d37cd7cd567b38eb
67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer Verdict Alert openphish United States Postal Service
GET /favicon.ico HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:38 GMT
content-type: image/x-icon
content-length: 32038
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 57258
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Fri, 30 Sep 2022 20:24:38 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 82863
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Fri, 30 Sep 2022 20:24:38 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4178
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 20:24:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4178
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 20:24:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4178
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 20:24:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4178
Expires: Fri, 30 Sep 2022 21:34:17 GMT
Date: Fri, 30 Sep 2022 20:24:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 139a144f8cb04ac8aae65f4bad1473e7
265840b2d2fc6eb764cc6409b05deee8d77a19c2
6e0f01b6bdd5a92e92c7b29a6172a2900c68900afd2abba948940621252e0fd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59da9c68-5ffa-4dc1-adf8-645278cd60ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 35ee2a77-159c-4bb4-a825-98c638398586
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZYHsTIAMFQNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-4f68073432bcea371c7b8f03;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IENB0e-e13ywHJKPgyLWn1bGPMMxFLUu3cIUcREjGhxDEMROEL1jBg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:45:15 GMT
age: 81564
etag: "265840b2d2fc6eb764cc6409b05deee8d77a19c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1389b1d624b44706c7a6f6b7eb769241
78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d
c3c2526b98be06fc7e793e1150bacde2a7bd718e29a851a6e6992e8d84333790
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9789cead-4e6c-4a12-9b45-25d0efd38fc9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16011
x-amzn-requestid: d58dfdcd-383a-45ac-8ae2-2b97f016b6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdbjFy1IAMF84A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f7c-1ca9707a5e5087fd769d9ab6;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QKHN1asEv6w1mTLxsmn7Oj5AZTsPcg0H8zv5_qQ1BYptjL254kCZdA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:20:36 GMT
age: 79443
etag: "78b798f2cfa7db13a6b5ca2ca2783bece5e77d5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b8d0a19bc0a56bb40a975c5c71af05a
3248ca3a8b88efd5be8499898fce957d096cf211
da44d6dd845dc400b0b76f19c67e5a79d9359ce24fe5e4490477f195b23203b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe12af206-9f17-40de-9764-14d3cdcb4d2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: 6aca2e04-02b4-4e42-8bba-9bbe2ace1ed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPeLrGq1oAMFuAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633610b0-65b0664d0233107029ef0157;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DClqs8vTlqibRwXU8dIkkFCUxigTLduturaxCfuvsMtDm-4VXjx2mg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 22:12:16 GMT
age: 79943
etag: "3248ca3a8b88efd5be8499898fce957d096cf211"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95b5f6af-0368-4914-a31b-9637ad00feda.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95b5f6af-0368-4914-a31b-9637ad00feda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da2bb5dc3c41d9956752c2e7a72c6eb6
d9c7b0dea148896017492aad6c02ca6fadf17ebb
28b08565a224d8bd81e3cbb65f2e70a9025d67af5e4cff9cbd673aa416de8aa7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F95b5f6af-0368-4914-a31b-9637ad00feda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5754
x-amzn-requestid: dfa32296-9f66-4237-b8fe-9353a1920f71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZPdZaGpZoAMFjcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63360f6f-0a6fed7e2f3a80cd7579de93;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 21:34:39 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 1CYVveZybLOpAwvniJLvUxJJOil9CA1b6hut46pxcB6p_iqvmQTwoA==
via: 1.1 2ecd59b4298afe9d7bb9266870458a74.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:58:50 GMT
age: 80749
etag: "d9c7b0dea148896017492aad6c02ca6fadf17ebb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d21d2bdcedbd619a80017054076319f9
86dd3bf133e9eddf8852f39e1ee695ee599ac886
fc5672d5a8e9c6a5ec531f7ba05b65c192af37edf6c3a48105df3685de44ec0d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98c23448-09e3-4c05-86c5-dafbe6ca8a0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8059
x-amzn-requestid: f8bb9e4b-9f3c-47ba-8524-de16155e536d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZNepwHAVoAMFvNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633544a4-5d884e29378635b60592b618;Sampled=0
x-amzn-remapped-date: Thu, 29 Sep 2022 07:09:24 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NMiKZSkokVXNTV76vsVJ7VEu6YFfT9MqL7tHtT8CwZq0BwTbXOpm6Q==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 30 Sep 2022 06:34:26 GMT
age: 49813
etag: "86dd3bf133e9eddf8852f39e1ee695ee599ac886"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11594ce7500d8776bfd5162b17f87d72
72603efba82d649ce5a7a0ca45dc830c0d9ef012
511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 29 Sep 2022 21:49:47 GMT
age: 81292
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uppssqwe.com/static/picture/holdmail.svg
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/picture/holdmail.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/picture/holdmail.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: image/svg+xml
content-length: 1448
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
x-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
uppssqwe.com/static/image/mailman.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/mailman.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/mailman.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/css/main-sb.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/main-sb.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /static/css/main-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/schedule_pickup.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/schedule_pickup.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/schedule_pickup.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/image/gifts.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/gifts.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/gifts.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/css/footer.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/footer.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/footer.css?t=1657032800 HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/jquery-ui.min.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/jquery-ui.min.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/jquery-ui.min.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/calendar.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/calendar.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/calendar.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/main.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/main.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /static/css/main.css?t=1657032800 HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/optimize.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/optimize.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/optimize.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/holdmail.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/holdmail.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/holdmail.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/js/metrics-all.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/metrics-all.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/metrics-all.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/footer-sb.css?t=1657032800
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/footer-sb.css?t=1657032800
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/css/footer-sb.css?t=1657032800 HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/find_zip.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/find_zip.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/find_zip.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/css/tracking-cross-sell.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/tracking-cross-sell.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/jquery-3.2.1.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/jquery-3.2.1.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-3.2.1.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/qt.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/qt.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/qt.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/ge-login.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/ge-login.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/ge-login.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/css/datepicker3.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/datepicker3.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/datepicker3.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/change_address.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/change_address.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/change_address.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/js/modernizr.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/modernizr.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/modernizr.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/OneLinkUsps.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/OneLinkUsps.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/OneLinkUsps.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/megamenu-additions.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/megamenu-additions.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-additions.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/utility_customer_service.png
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/utility_customer_service.png
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/image/utility_customer_service.png HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/js/require.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/require.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/require.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/image/po_box.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/po_box.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/po_box.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/image/cards-and-envelopes.svg
20.117.188.172404 Not Found 0 B URL HTTP/2 uppssqwe.com/static/image/cards-and-envelopes.svg
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/image/cards-and-envelopes.svg HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/static/css/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/json
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
uppssqwe.com/static/css/schedule-redelivery.css
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/css/schedule-redelivery.css
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/schedule-redelivery.css HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: text/css
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2
uppssqwe.com/static/js/megamenu.js
20.117.188.172200 OK 0 B URL HTTP/2 uppssqwe.com/static/js/megamenu.js
IP 20.117.188.172:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu.js HTTP/1.1
Host: uppssqwe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uppssqwe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 30 Sep 2022 20:24:37 GMT
content-type: application/javascript
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
last-modified: Mon, 26 Sep 2022 20:19:44 GMT
content-encoding: gzip
x-cache: MISS
X-Firefox-Spdy: h2