votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
167.172.59.116301 Moved Permanently 162 B URL HTTP/1.1 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /supportt/today/meat/fight/verification/ HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 02:06:47 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8893
Expires: Tue, 29 Nov 2022 04:35:00 GMT
Date: Tue, 29 Nov 2022 02:06:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5519
Cache-Control: max-age=122193
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 02:06:47 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:03:20 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 01:17:50 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2937
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11183
Expires: Tue, 29 Nov 2022 05:13:10 GMT
Date: Tue, 29 Nov 2022 02:06:47 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WI4qpxfpGMl+3UXVU5lVi02/YqSNrCMbD59tjoEt4yqLYBrLfoVCo6kHhUxe5CFboG0Tfussnlg=
x-amz-request-id: H84NB9J72QTPN0VP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 01:42:19 GMT
age: 1468
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8a3e37d866fe2430be1d74022c9ab6a8
e8f9142db61352ee2263e168f5e76d224a82ec15
4432eaa183f5db1247ff92a3b7fb9695d3ed33fbf26a30524a31d017d21ac1ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4432EAA183F5DB1247FF92A3B7FB9695D3ED33FBF26A30524A31D017D21AC1FF"
Last-Modified: Tue, 29 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 29 Nov 2022 08:06:47 GMT
Date: Tue, 29 Nov 2022 02:06:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 01:08:55 GMT
cache-control: public,max-age=3600
age: 3472
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/require-jquery.js
167.172.59.116200 OK 74 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/require-jquery.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/require-jquery.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
content-length: 74
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-4a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now.png
167.172.59.116200 OK 20 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now.png
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 210 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash d0dad9004bae0df70b06b75557b1df62
4a080764de6b97902413f5c836432a30da348517
2ff8048ab175abf501e134d00a973ca31a7b0de09c2777eab0a2c9dc07ca0289
GET /supportt/today/meat/fight/verification/files/go-now.png HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/png
content-length: 20334
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-4f6e"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(1).png
167.172.59.116200 OK 8.0 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(1).png
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 49754396635190a6532dd376acc76ee1
526df243e2adbf5719b082c5e04190ed40209ccd
0962cc2915393132882747bf55b069572324019764af92ec02d5d0249bfdff99
GET /supportt/today/meat/fight/verification/files/go-now(1).png HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/png
content-length: 8026
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-1f5a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(2).png
167.172.59.116200 OK 27 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(2).png
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash b596424d2e958b51d7a68b46cadb6855
77eeeff212b8cd75a31beb954907e20bc5f8c831
daaeb825e97d878d0b5d5dfce37a2dd592ac0e1c5b887e24705835442d317365
GET /supportt/today/meat/fight/verification/files/go-now(2).png HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/png
content-length: 26972
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-695c"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(3).png
167.172.59.116200 OK 20 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(3).png
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
GET /supportt/today/meat/fight/verification/files/go-now(3).png HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/png
content-length: 19969
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-4e01"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(4).png
167.172.59.116200 OK 22 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/go-now(4).png
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 227 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 22ab573e325c944450873345437b0887
0446e4d20c824d38ef4d427cf7e025c8f034f11a
d8573e3e13b1fb40173ea39d5e7fc1b935ae1239b9ca37ac3d7fedf3d966f4ed
GET /supportt/today/meat/fight/verification/files/go-now(4).png HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/png
content-length: 22133
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
etag: "637e935a-5675"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/location.svg
167.172.59.116200 OK 1.7 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/location.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash cc8fbea56ea07413a5c16b2c32f39fe3
ff4d4c27f14c200f58d65c306856cdd669a70edc
3b35863902773393e15f743a94be2e46e3bb56cc86c4595de22d4a0b00a5ff1a
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/location.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-a1a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/logo_mobile.svg
167.172.59.116200 OK 1.2 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/logo_mobile.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 3095e9558ed3503fb7d11672cc8f5613
389d8915448c5669fa26eb9e15529978619e89ce
6004a10b7abcb4229e44c76023df016f03c3b123d53ffe41c15ca96a969c1dcb
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/logo_mobile.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-80c"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-3.5.1.js
167.172.59.116200 OK 31 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-3.5.1.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash e3d3c2d04ac43a6cfc0abc121afdf28c
23e1a375fa8cd29924f521fc2bb657a7a1b66342
decab9cfb2d6c34886cc92726e2233246934d7550af7f7ba5b9819212cb094ed
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/jquery-3.5.1.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-15d84"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.71.202.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.71.202.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Hgm3wXfoL8e+K47jUdpurQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d5W+DsX++qwUl4+pv+Ja1hRadkc=
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/search-fe.js
167.172.59.116200 OK 1.3 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/search-fe.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 37d9c4aec43dac241813c2b7efd93509
3aadab25f8306e664d9e72f2c480f0d1995bbf25
9d28385044c13d0a24227b8ccfadf41198e5d6378f996f4f4c47d49679d0aeb1
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/search-fe.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-8bb"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/po_box.svg
167.172.59.116200 OK 1.2 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/po_box.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 5285898447c5d792f7ef6188c823f56b
3e021de12c4f81346faad4224c60df97795b028f
721cf970f180a0a7e7d9f94a9f80fff315fab83ff957b4afb057d66b97ca32c3
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/po_box.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-667"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/calculate_price.svg
167.172.59.116200 OK 1.1 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/calculate_price.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 6b50ffef21df311647886f7f4717a9b4
4fea115911d6befb1db8ed906d2746de87bad351
38a1d4092ad5873d01b82a608fac50de0a72779e79977db3c0d15c10b7122b8e
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/calculate_price.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-8fe"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/4a3ef5d8-cfd9-4b96-bd67-90215512f1e5.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://votes.openmicuk.co.uk
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Tue, 29 Nov 2022 02:06:48 GMT
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/db5f9ba6-05a4-433a-9461-0a6f257a0c3a.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://votes.openmicuk.co.uk
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Tue, 29 Nov 2022 02:06:48 GMT
server: ECAcc (ska/F6BE)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
192.229.221.165403 Forbidden 345 B URL HTTP/2 www.usps.com/assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf
IP 192.229.221.165:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7b900bec0b7b386dfd18ad22c9ed411
72e09ec6e4d46f8d96907f6e55bc4f26975c4c4f
d9f7e0aa1bff501986995b7c69742a14f373819ab6ecd599af29d67f9d8b4794
GET /assets/fonts/1d238354-d156-4dde-89ea-4770ef04b9f9.ttf HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://votes.openmicuk.co.uk
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html
date: Tue, 29 Nov 2022 02:06:48 GMT
server: ECAcc (ska/F7A8)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-ec-custom-error: 1
x-ruleset-version: 3.1
content-length: 345
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu.js
167.172.59.116200 OK 3.8 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (3410), with CRLF line terminators
Hash 43af9ba61c5b8b37313bbf57c5988482
ff753dd4e5e4653276f46882096c99d4a25e9950
b2c220aebf144bdc33f6e2f4f70af828dfc18d7875c399f5d5adffa63c5704a8
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/megamenu.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-3651"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main-sb.css
167.172.59.116200 OK 4.0 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main-sb.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (8795), with CRLF, LF line terminators
Hash 91bcd0d27e5efcb8c7a8837d5ef523ee
c2299cc999736bf0d735efe3df391ccfbd1a53c5
24bbe675f3d92146fa6eea63da32c698656a16176373a59f99c8587268faaad5
GET /supportt/today/meat/fight/verification/files/main-sb.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-225c"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu-additions.js
167.172.59.116200 OK 1.1 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu-additions.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d5a717a3b8aaa9bdaec9c65651fa6408
c1d6f5d82f9aeed349acd600847cd155d196236a
8bd7f7f931d802dbab3b38ef441c2944470faca2aca08c2cc3f915b5ed2adcf8
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/megamenu-additions.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-541"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/change_address.svg
192.229.221.165200 OK 935 B URL HTTP/2 www.usps.com/assets/images/home/change_address.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 6c6d11d6d4ad880538ac8b3c9b244e35
d2f5a684574f89a8bdac4ac35508dc29c61e9771
7d2bde4b550c48e86e4d1c6a106d195b5a259f74e2ceeab0772712d356ae7eb9
GET /assets/images/home/change_address.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 3447
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "74d-5494e7eca09c0+gzip"
last-modified: Fri, 24 Feb 2017 22:46:07 GMT
server: ECAcc (dcb/733A)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 935
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/free_boxes.svg
167.172.59.116200 OK 1.4 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/free_boxes.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8577a79609097517d5d55ee523e5f7a5
9707c08cfbf23c70c9a4cd55b2a4432d4742cb73
2912adcf6d7759b19f2fc7e6e207c2d2ffebc2ed7eb0ff0b36e725f40d4c7e9f
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/free_boxes.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-42a"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/modernizr.js
167.172.59.116200 OK 5.6 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/modernizr.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (11122), with CRLF, LF line terminators
Hash ca7efabd157b7e912869059c74ea1a4d
a0f75c833122600299e959a5e56d147329334f52
49ccd8c6606dcdee34fe58e340bb29a2b273afba6104d5850179a8a78ca59a4b
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/modernizr.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-2bfd"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/po_box.svg
192.229.221.165200 OK 848 B URL HTTP/2 www.usps.com/assets/images/home/po_box.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash a1feed192f3aca7fd02c00b6ee45bb07
fce52b953f90a873186cd2c3ddb26dcca41884be
88dcd2a8a6b055bf63763c0a86338f33b09a257c89e26a5ae6a364becf1ac122
GET /assets/images/home/po_box.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 3396
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "667-5494e7f259740+gzip"
last-modified: Fri, 24 Feb 2017 22:46:13 GMT
server: ECAcc (dcb/7FD5)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 848
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 49792
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/ge-login.js
167.172.59.116200 OK 3.4 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/ge-login.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with CRLF line terminators
Hash d9e528d3f8587c4c05c197be64725f49
10fc9e7bf82a5d630f793c199eac358d2441d51c
773abde85cf32f2fe3843848bfc5f726c467ffebfbc3823b76cf26e50b350ddd
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/ge-login.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-245d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 30545
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/featured_clicknship.svg
192.229.221.165200 OK 493 B URL HTTP/2 www.usps.com/assets/images/home/featured_clicknship.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash efb53558ef3932a80523af92bdda2085
1a97f57d64bc76f296423e1ddbdba9bc71b6d754
f0a25ce9d4e04e6b12bfc528584d599d5e472238849b0e1c66ff5357058d38fe
GET /assets/images/home/featured_clicknship.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 3499
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "436-5494e7bfce000+gzip"
last-modified: Fri, 24 Feb 2017 22:45:20 GMT
server: ECAcc (dcb/7F6B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 493
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/find_zip.svg
192.229.221.165200 OK 793 B URL HTTP/2 www.usps.com/assets/images/home/find_zip.svg
IP 192.229.221.165:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b74917936300819402d564909e39a34
82c09f9b1fa78724d4843b28f12c52e8bb218f2a
d7178ea719cbe6f11c5da374dc26908b1ad0d05d34a33cd6e6d701f5e05c209b
GET /assets/images/home/find_zip.svg HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 2787
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/svg+xml
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "5bf-5494e7ed94c00+gzip"
last-modified: Fri, 24 Feb 2017 22:46:08 GMT
server: ECAcc (dcb/7ECC)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 793
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/require.js
167.172.59.116200 OK 7.4 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/require.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (17230), with CRLF, LF line terminators
Hash d33116dfa915cbd48c24810eccc58859
a95aa6a7e9282700638cbbaf3bd44a98b32c285d
8efbc91d2ddc0da991d2cd6a07975e4ef2d05d44b3a6b7a8ee391ade13db694d
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/require.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-440f"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/resize-manager.js
167.172.59.116200 OK 1.4 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/resize-manager.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (1078)
Hash ee42432ca852b80ba139c74c0a8c2f63
745fe4794b4f4dc120f2b9b075dcc72b4180b684
aace4c9024774f02bd8a5c2d9884ed1eb92bdf991a8d7c50eb978a8706abdb2b
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/resize-manager.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-410"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/optimize.js
167.172.59.116200 OK 36 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/optimize.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (1972)
Hash d71e36f66553b657c9d832a3830f9f6e
cbded09079b4338652b4836fcc61986a956898fa
b96c0d0a34be7533a740c6023ccb49e1eac1cfbc88ee5a8fed41840fbc0109f7
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/optimize.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-16b8d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
192.229.221.165200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP 192.229.221.165:0
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 75595
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 29 Nov 2022 02:06:48 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 77789
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 29 Nov 2022 02:06:49 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 16994
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 29 Nov 2022 02:06:49 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7527
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 02:06:49 GMT
Connection: keep-alive
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/mailman.svg
167.172.59.116200 OK 1.4 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/mailman.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 72b66c0456d1d481d236e5c39473bc2f
36f8a819ccbf44d1a4450a8ce093252f053ec6fd
fe77b50150ced03fe5644cebe864b2df16161f582b718f09e243bcf671b33c1e
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/mailman.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-723"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7527
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 02:06:49 GMT
Connection: keep-alive
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/holdmail.svg
167.172.59.116200 OK 1.3 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/holdmail.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash c55f5c99ea95fb8e10d5bc897c4bc54c
65f95742903ac8cfc7c592fae5ce883a3793c8f0
930cccf2f9b55c0b8c00a49dd76be5d67bb29f72a1a1afa8b768b72c09017782
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/holdmail.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-5a8"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7527
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 02:06:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTZANFW2oAMFlyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:30 GMT
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
age: 58399
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lzXj01ht9kpuwONgKM0xM0QRu8G9M9oX6rwYzv_Q_sI09Y3-RIVF-A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:47:05 GMT
age: 80384
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:38:02 GMT
age: 66527
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ieDA8l_Up51cFaB9IExlSs8A5m-H77va1rCVF_WRMg_FN53Xakipuw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 15594
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 15598
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-3.2.1.js
167.172.59.116200 OK 32 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-3.2.1.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Hash 8a0317d2f0f8acf08a14b96c8fa10838
98ea7649cc488fec1dd25eafd71648efd83b91dd
be2bb1b7698848b94957415dfec7391e858af5bc7241166a9cd9d6bc3ffc9b90
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/jquery-3.2.1.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-15283"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae2e2986caa15a90b615147f229b51ec
c6dfd277cdbd057472e6df6ad1a200f50684d442
ec3799922c38ee6394601744ff4b2c405ee44c4718a2b90c104134657f8b480b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7faa45dd-b9de-4dae-a2d6-ee678d7d3906.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9015
x-amzn-requestid: 9f657586-a44e-46f0-8c38-f1bf26142486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVOlEE6ZoAMFUPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852aed-1da2400f4165dd553418f8b9;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:41:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mqdz1NhVCqmSrhYLIF0miDzrBiS82SUU6ZRFzDMllbCwS70hC0rMRQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 15594
etag: "c6dfd277cdbd057472e6df6ad1a200f50684d442"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery.min.js
167.172.59.116200 OK 31 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery.min.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65453)
Hash bfc4296cac3a6f6e94436ac41504ea24
acc627541e36d9fe81977655149e6bebc27c2819
994dd5f40c79a73484fa659c776d813f237f0dd408be0d282ac8e1abf9032e69
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/jquery.min.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-14b60"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-ui.min.css
167.172.59.116200 OK 8.5 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery-ui.min.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (29191), with CRLF, LF line terminators
Hash 696bc86152aa8bcdddb4585ebad0cc83
d8d7bacf0ae6067c2fedfc3b8cb73d96538a3459
77bc6da0ca199cdcba6f9d6bf301c04564980617d8ac81eb958844f928b4f376
GET /supportt/today/meat/fight/verification/files/jquery-ui.min.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-7d19"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.usps.com/assets/images/home/utility_languages.png
192.229.221.165200 OK 1.5 kB URL HTTP/2 www.usps.com/assets/images/home/utility_languages.png
IP 192.229.221.165:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 410956805d5701e87299cff412827e1a
5de9a390649dfc12e3d6df431140d499ad8abd67
6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
GET /assets/images/home/utility_languages.png HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 3223
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: image/png
date: Tue, 29 Nov 2022 02:06:49 GMT
etag: "5b0-547dde9f44e80"
last-modified: Mon, 06 Feb 2017 15:02:02 GMT
server: ECAcc (dcb/7E8E)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 1456
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/metrics-all.js
167.172.59.116200 OK 4.0 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/metrics-all.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with CRLF line terminators
Hash 3fb46293525afa8c082110387fe4bcd5
1ef9a5f3cb2ebce56c2eb16cc67279cc8ee418ec
893945c8934a94303cf94576c1b662cac9eb33a3ba7c1dc5ddc1069ab30a6bd3
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/metrics-all.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-2bde"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/datepicker3.css
167.172.59.116200 OK 3.1 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/datepicker3.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (20910)
Hash 28d374fa3287f639e89cab5aa35ffefa
d57726b3a8384d60781067c0b6ce3a542cc285aa
6182c1dc9e363d7bacdff8d313e76b36cd193b73ed2dae8bc97efc5a2e426a4b
GET /supportt/today/meat/fight/verification/files/datepicker3.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-527d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/calendar.css
167.172.59.116200 OK 3.2 kB URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/calendar.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (14627)
Hash f45d171e11217b4b8376cb8b9ae5b07b
5c0b1050ba777c1a4f629ff1cc310c58e5752c90
a6a7f6d23235312e73d1fd5d85b6b0136d16a0e4a427a0b4d84358b5959120e8
GET /supportt/today/meat/fight/verification/files/calendar.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-38fd"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:49 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/hamburger.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/hamburger.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/hamburger.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-222"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/b0ffdcf0-26da-47fd-8485-20e4a40d4b7d.ttf HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:50 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/stamps.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/stamps.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/stamps.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-44f"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/schedule_pickup.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/schedule_pickup.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/schedule_pickup.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-6ef"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/featured_clicknship.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/featured_clicknship.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/featured_clicknship.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-436"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/2c056da8-4920-4e20-8c69-8a6b315458a9.woff HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:50 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/main.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-1370f"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/footer-sb.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/footer-sb.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/footer-sb.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-c6d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu-v2.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu-v2.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/megamenu-v2.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-aeb5"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/logo-sb.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/logo-sb.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/logo-sb.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-de5"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/change_address.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/change_address.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/change_address.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-74d"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/header-init-search.js
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/header-init-search.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/header-init-search.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-388"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/14ff6081-326d-4dae-b778-d7afa66166fc.woff HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:50 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/helpers.js
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/helpers.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/helpers.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-2b7"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/footer.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/footer.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/footer.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-b75"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/tracking-cross-sell.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/tracking-cross-sell.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/tracking-cross-sell.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-c03"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/schedule-redelivery.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/schedule-redelivery.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/schedule-redelivery.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-59fe"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/search.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/search.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/search.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-5b9"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/2381d918-136d-444f-8391-db0cba6da388.ttf HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:50 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/find_zip.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/find_zip.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/find_zip.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-5bf"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/OneLinkUsps.js
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/OneLinkUsps.js
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/OneLinkUsps.js HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-e37"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/global-elements/header/images/utility-header/mailman.svg
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/global-elements/header/images/utility-header/mailman.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /global-elements/header/images/utility-header/mailman.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/megamenu-v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /supportt/today/meat/fight/verification/ HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/qt.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/qt.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/qt.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-c800"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/fonts/bcf54343-d033-41ee-bbd7-2b77df3fe7ba.woff HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:50 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/tracking.svg
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/tracking.svg
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/tracking.svg HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-619"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/bootstrap.min.css
167.172.59.116200 OK 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/bootstrap.min.css
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
GET /supportt/today/meat/fight/verification/files/bootstrap.min.css HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 02:06:47 GMT
content-type: text/css
last-modified: Wed, 23 Nov 2022 21:40:42 GMT
vary: Accept-Encoding
etag: W/"637e935a-1d903"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery.min.js(1).download
167.172.59.116500 Internal Server Error 0 B URL HTTP/2 votes.openmicuk.co.uk/supportt/today/meat/fight/verification/files/jquery.min.js(1).download
IP 167.172.59.116:0
ASN #14061 DIGITALOCEAN-ASN
Analyzer Verdict Alert fortinet Phishing
GET /supportt/today/meat/fight/verification/files/jquery.min.js(1).download HTTP/1.1
Host: votes.openmicuk.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://votes.openmicuk.co.uk/supportt/today/meat/fight/verification/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
server: nginx
date: Tue, 29 Nov 2022 02:06:48 GMT
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2