Overview

URL usps-tools.com/receive/
IP185.212.71.219
ASNHostinger International Limited
Location Germany
Report completed2022-09-21 20:24:17 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-21 2 usps-tools.com/receive/ United States Postal Service
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-21 2 usps-tools.com/receive/ Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/bootstrap/css/bootstrap.min.cs (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/slick/slick.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/slick/slick-theme.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/font-awesome/css/all.min.css?v (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/css/blocks.min.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/svg-support/css/svgs-attachment.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/wpcargo/admin/assets/js/jquery.datetimepi (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/post-461.css?ver=1648292940 Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/post-543.css?ver=1648292940 Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/post-575.css?ver=1648292940 Phishing
2022-09-21 2 usps-tools.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 Phishing
2022-09-21 2 usps-tools.com/wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/slick/slick.min.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/jquery.slicknav.min.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/skip-link-focus-fix.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/navigation.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/theia-sticky-sidebar.min.js (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/html5shiv.min.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa/assets/js/custom.min.js?ver=0.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.j (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints. (...) Phishing
2022-09-21 2 usps-tools.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.0 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/a (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/w (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/wpcargo/assets/css/fontawesome.min.css?ve (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/wpcargo/assets/css/wpcargo-style.css?ver=6.8.8 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/wpcargo/admin/assets/css/jquery.datetimep (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/header-footer-elementor/assets/css/header (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.cs (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/post-4.css?ver=1648292939 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4- (...) Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/global.css?ver=1648292939 Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/elementor/css/post-691.css?ver=1654246183 Phishing
2022-09-21 2 usps-tools.com/wp-content/themes/bosa-insurance/style.css?ver=5.9.4 Phishing
2022-09-21 2 usps-tools.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon (...) Phishing
2022-09-21 2 usps-tools.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-21 2 usps-tools.com/wp-content/uploads/2021/12/logo-sb.svg Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (11)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-09-21 04:18:17 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS fonts.googleapis.com (4) 8877 2014-07-21 13:19:55 UTC 2022-09-21 14:09:32 UTC 142.250.74.10
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-21 04:18:22 UTC 23.36.77.32
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-21 04:18:32 UTC 34.160.144.191
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-21 04:20:37 UTC 34.117.237.239
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-21 15:45:34 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-21 04:20:37 UTC 52.27.12.161
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-21 14:38:57 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-21 16:01:18 UTC 143.204.55.27
mnemonic passive DNS usps-tools.com (63) 0 2022-03-26 09:28:08 UTC 2022-09-21 12:17:47 UTC 185.212.71.219 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (10) 175 2017-06-14 07:23:31 UTC 2022-09-21 04:20:12 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 185.212.71.219

Date UQ / IDS / BL URL IP
2022-12-03 04:43:37 +0000
0 - 0 - 84 usps-tools.com/ 185.212.71.219
2022-09-22 22:17:29 +0000
0 - 0 - 88 usps-tools.com/ 185.212.71.219
2022-09-22 21:49:19 +0000
0 - 0 - 86 usps-tools.com/ 185.212.71.219
2022-09-21 20:24:17 +0000
0 - 0 - 43 usps-tools.com/receive/ 185.212.71.219

Last 5 reports on ASN: Hostinger International Limited

Date UQ / IDS / BL URL IP
2022-12-06 19:00:10 +0000
0 - 0 - 0 mundorubronegro.com/ 185.237.146.166
2022-12-06 18:49:34 +0000
0 - 0 - 2 luminouspneuma.com/mfgoslt.zip 213.190.6.5
2022-12-06 17:52:20 +0000
0 - 0 - 3 americantv.online/15/data64_1.exe 185.201.10.40
2022-12-06 17:51:57 +0000
0 - 0 - 3 americantv.online/15/data64_4.exe 185.201.10.40
2022-12-06 17:51:54 +0000
0 - 0 - 3 americantv.online/16/data64_1.exe 185.201.10.40

Last 4 reports on domain: usps-tools.com

Date UQ / IDS / BL URL IP
2022-12-03 04:43:37 +0000
0 - 0 - 84 usps-tools.com/ 185.212.71.219
2022-09-22 22:17:29 +0000
0 - 0 - 88 usps-tools.com/ 185.212.71.219
2022-09-22 21:49:19 +0000
0 - 0 - 86 usps-tools.com/ 185.212.71.219
2022-09-21 20:24:17 +0000
0 - 0 - 43 usps-tools.com/receive/ 185.212.71.219

No other reports with similar screenshot



JavaScript

Executed Scripts (40)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (100)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Backoff, Retry-After, Content-Type
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 21 Sep 2022 20:13:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w5HfpdPQs2rynbjBB3LWVLFfQihoyOZrSQVYLdvV7tIPSMdBTXl2vA==
Age: 623


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    804f8bbb7f556d51a5f52d5ebd5b6eef
Sha1:   922cd7e06df278615a04abb81d811d14596c8180
Sha256: ef4804d381a34ab67873a7755621081c49c646310e085a9b2356ae07098f6021
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4063
Expires: Wed, 21 Sep 2022 21:31:49 GMT
Date: Wed, 21 Sep 2022 20:24:06 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9942
Expires: Wed, 21 Sep 2022 23:09:48 GMT
Date: Wed, 21 Sep 2022 20:24:06 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: zIGUWRZ6rhA5b/DS9EZYmPcHbvoMhG1x6JB690aRtuPEXeSlkd1Xi1Pd8EDty8EzKUCkKQeDoxs=
x-amz-request-id: E74HX17K2PP6B7QP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Sep 2022 19:43:25 GMT
age: 2441
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 21 Sep 2022 20:24:06 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /receive/ HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.4.30
link: <https://usps-tools.com/wp-json/>; rel="https://api.w.org/", <https://usps-tools.com/wp-json/wp/v2/pages/8>; rel="alternate"; type="application/json", <https://usps-tools.com/?p=8>; rel=shortlink
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 09:59:30 GMT
etag: "886-1663754370;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding
content-length: 31868
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (41615)
Size:   31868
Md5:    cfebc2a817132f5cbc4f9ed22f2c68c4
Sha1:   e99fac8b84156a351a761a0aecdee52bfbdda286
Sha256: 3e4bd9d8a30b72a3d1f77152d4899efb9372fb38a830d8c4096d39b7f9829465

Alerts:
  Blocklists:
    - openphish: United States Postal Service
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/bosa/assets/bootstrap/css/bootstrap.min.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:12 GMT
etag: "2268e-61c0c0b0-791bbdf766a0088b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18709
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65319), with CRLF line terminators
Size:   18709
Md5:    b14c1528aec6442c918e33909484b479
Sha1:   83792f6b3440225e729138cc5088a09a283b4bf3
Sha256: 02bdc127515fe7519cbc1e712acd164bf397967dfc5f771920bedb72c455ec09

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/slick/slick.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "767-61c0c0b4-4c373638744e3c47;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 492
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   492
Md5:    07c48b759e9b3518bb59a10d717a173a
Sha1:   319b9241b902667112e9c1d38f38856ff6441c3d
Sha256: 1130e63113cc969a07d691134b8bebecd1789fe9aa305a1f56fdbacffa6e5e3d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/css/slicknav.min.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:15 GMT
etag: "9cd-61c0c0b3-f061df87176d966d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 690
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2414), with CRLF line terminators
Size:   690
Md5:    60112b3c5413d9704f81fe6a5734c5e2
Sha1:   dea6fdf25b01714785b51dd4259734395a8a025c
Sha256: 29673e5e1b7bfd18dc00ded95dae376c352ad5974a4e3b93bbd051d62a79bcef
                                        
                                            GET /wp-content/themes/bosa/assets/slick/slick-theme.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "d15-61c0c0b4-124d07630b4d48e1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 763
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   763
Md5:    c2916b07506db5d91b4044d15f317155
Sha1:   081d0c6a8fde5f24321fa309f2ee4b9e64a4c437
Sha256: 157905d5666dc183e78be3718b7f51c6dcecdc108267503a810c3b22f170c359

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/font-awesome/css/all.min.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:13 GMT
etag: "d158-61c0c0b1-c592d44ade41262a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11143
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (53592), with no line terminators
Size:   11143
Md5:    89b74515c96bd3b40bd19fe4b30de70a
Sha1:   6994d8a8cf2137f8a4811adde23727dbed0675c2
Sha256: 69bb6766162e10762bbc94ca857ab2bd1adb79abebd3a6274c258c78e413a2aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/css/blocks.min.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:15 GMT
etag: "1ed0-61c0c0b3-6011a363635c7794;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1728
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7888), with no line terminators
Size:   1728
Md5:    656fbbd782ba95e3a642b741c7bfbeec
Sha1:   b73c996056738f3fd8ae6ea26d8647c1f0b85be8
Sha256: a2c3c58a128de1bd0a97b0bf9ab72d7fcc84088af856c99cfa515c5e404641ea

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/bosa/style.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 17:43:17 GMT
etag: "28a8b-61c0c0b5-a7aa51f0a19923a9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 21526
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1137)
Size:   21526
Md5:    527c2c0abe0e49e1d1e02a7a84bef52b
Sha1:   f9c7cac0e32017a27713cc791eb6ac74479115f1
Sha256: 2da24a6fb555d0bbc7eb61e0595114b8f4f0161e94f1f2ce9146c17bed386e51
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Wed, 06 Apr 2022 03:16:45 GMT
etag: "145db-624d061d-d66a24efdeca7a79;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10333
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (39791)
Size:   10333
Md5:    d6f5b04e5387a48eb2bdccd5747cd801
Sha1:   8054a5ccdd765a1192e1903ffd5d3802392d7b52
Sha256: a8b326c62002e5dec4c136fe545cb37f1df34a8843897564737260d3b0525bdf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/svg-support/css/svgs-attachment.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Mon, 20 Dec 2021 19:04:32 GMT
etag: "44-61c0d3c0-3d04566da0c35a5b;;;"
accept-ranges: bytes
content-length: 68
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   68
Md5:    572161d751ca3b708cb5500fd5c61935
Sha1:   2a9a131842cd0d7fa99f28df34797534e47df17e
Sha256: 5533874c2b0145642ca304f110240fcdb05253df388c2f7b97c053ad5eb69b65

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wpcargo/assets/css/main.min.css?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:06 GMT
last-modified: Sun, 19 Dec 2021 19:41:30 GMT
etag: "8216-61bf8aea-d070bcfeb24215a3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4000
date: Wed, 21 Sep 2022 20:24:06 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (33269), with CRLF, CR line terminators
Size:   4000
Md5:    326a82fae285133d87ee3c17191d1dc6
Sha1:   b88de732a150095276f29414b827eeb06cf95781
Sha256: 3a6728818bdf094a1cf78fa15c9beb4f5447b7f87788355e7c4956b9651442e6
                                        
                                            GET /wp-content/plugins/wpcargo/assets/js/wpcargo.js?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:41:33 GMT
etag: "584-61bf8aed-a7c41844c99b5e44;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 509
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   509
Md5:    1f10922c700d0b92e2c949d8c9838f76
Sha1:   c6b6a5df87c26cccd53514de91201e061c301da1
Sha256: 39ced446de75370a8a36492c9314d8b87e6627730b9d3998a63f0a147418aedc
                                        
                                            GET /wp-content/plugins/wpcargo/admin/assets/js/jquery.datetimepicker.full.min.js?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:41:34 GMT
etag: "ed93-61bf8aee-aca905e134e34eac;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 17917
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (57400), with no line terminators
Size:   17917
Md5:    4eb8728662818a8440433852a69e62e4
Sha1:   b756d8669649a3ca88658191af2da1e7cd0f67fa
Sha256: b97256c99a4828ff7917333eb527caf42b4c2dd8034522448d9b3e9764567780

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:08 GMT
etag: "3acf-61bf8228-98d4c106e44898ab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4002
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14869)
Size:   4002
Md5:    5427ea391f48c6903168e41347045ee7
Sha1:   70cba0fc14e60cef4acaffed15e40c2ef53fc351
Sha256: 956a1d390564b5a35e07b8cb63a9c749342bdec4af65b9b319d2cef97dc63771
                                        
                                            GET /wp-content/uploads/elementor/css/post-461.css?ver=1648292940 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 11:09:00 GMT
etag: "146a-623ef44c-1205356ef620251c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 459
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5226), with no line terminators
Size:   459
Md5:    f3f65b94a1f3c24c4831f7791eb57845
Sha1:   e6337a771764cadca3f63481988bf577434305af
Sha256: 3d806609c58055ca29117c0ec697502c990d0d9d981164078d5ad34beb57dc10

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-543.css?ver=1648292940 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 11:09:00 GMT
etag: "426a-623ef44c-70fd0a4c0bc22488;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1050
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17002), with no line terminators
Size:   1050
Md5:    3b6d1486e79af6599dba9b2cdd1237ce
Sha1:   b341da23ae61fcc31ada574d0a768ebc19467875
Sha256: 6e559e50084f41c94b088ccdaadf2caa627def36f08ee3602d1c362f4b696565

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-575.css?ver=1648292940 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 11:09:00 GMT
etag: "33b2-623ef44c-c9360a0721350212;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 882
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13234), with no line terminators
Size:   882
Md5:    feb67009e35a30133fb42b3fd5b43e22
Sha1:   9ef72c0b305ae56c6b95469ada76c2bf5f5f2d9c
Sha256: 162204db6a4c223df3ba4d042125aa02ee283b57535d8ab5bf7442218a59b608

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "15fd-623ee31f-78f79bcbfdcf0534;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1721
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5477)
Size:   1721
Md5:    93959a5158be6c97592ece6ddbcd8e0d
Sha1:   673b0f242cb57dabc937e3087f07b819eef894cb
Sha256: 069b47444242f525c2bc284f96b24126f92068bcc7d278d5787641dfa20c0fdf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "5e4a-623ee31f-1036b4cf68fd4f32;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7078
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23966)
Size:   7078
Md5:    6e16f5a22f5aea7c8ed6fc0bb4347f83
Sha1:   13fc694567d6de57eca74e48431729c5bb192d42
Sha256: 9c69bbc6fa245b4ca06ec723e5daec0c354838e0a78ce312f5288857feacacbd
                                        
                                            GET /wp-includes/js/jquery/jquery.masonry.min.js?ver=3.1.2b HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "71b-623ee31f-65f19340750068aa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 626
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1626)
Size:   626
Md5:    f04e14cc1b5f15e9a887d8203b12ec1b
Sha1:   dc50903f52c09288cd4b810cdfe4f4cf465c071e
Sha256: 72abcfd27ed77660d7628ceea89d1c2437db6f4df773156e020a0bd6619ecb99

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/bootstrap/js/bootstrap.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:12 GMT
etag: "c765-61c0c0b0-511c5a4847b1faf;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13284
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (50758), with CRLF line terminators
Size:   13284
Md5:    a3ab08e62420ff7febac4dad7d499d80
Sha1:   58de71ac2b574571b1e5d7b26fe034d7a6ab732d
Sha256: 9072433a347beb7f85037be61778e79e8882e0d36a632d871c824baf2756e65a
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 21 Sep 2022 20:03:22 GMT
Cache-Control: max-age=3600
Expires: Wed, 21 Sep 2022 20:55:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mYjc73_znOhNOrcxUU09LEJx8v1OldsUyOA97R1PM47wUGXtapm4tw==
Age: 1245


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/themes/bosa/assets/slick/slick.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "a770-61c0c0b4-b7b7ae3fd1ee8e17;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9946
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (42862), with CRLF line terminators
Size:   9946
Md5:    c1151ab462718770f7f4955b7abe1a4d
Sha1:   9bcdf788908ac1622087e69f09c082489730d26b
Sha256: ceb2c04263be2962b032a24a347552d7d02cb4453ac30aabbc7fec6579735408

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/jquery.slicknav.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "20e6-61c0c0b4-a06b318c7b73f5f9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2501
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (8320), with CRLF line terminators
Size:   2501
Md5:    2aab2994a573d65c34f0e36d2fbf4c59
Sha1:   ab525ad99ddf6361e6a205bb7794683c6bb5ddfa
Sha256: df2c323f4ddfe65b6d748de8fe2d7a7325b764cc784bcc7bed354a25edcb5577

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/skip-link-focus-fix.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "2cc-61c0c0b4-224f632ecd45f186;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   339
Md5:    fde6888335bd7e291557cda46cb2c583
Sha1:   2006d99fd25ef8b30fe3e0743f1cd6d04b9d3066
Sha256: b5af3d9bf23b486369593711d299b65303a953396bb758b7606d1dee9c68269a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/navigation.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "17ab-61c0c0b4-ad95eb81870a72fd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 994
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   994
Md5:    ae395690a91a9efae15933babdbfe199
Sha1:   22582a259eb78d851bea0b4ef94ba2aa21e9694a
Sha256: 15ac3cdadb357cba711a6dd06a470b21995103ba4a6bde42a65e7605f9c42b50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/theia-sticky-sidebar.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "1537-61c0c0b4-ab55fff050413718;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1627
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (5370), with CRLF line terminators
Size:   1627
Md5:    d9f1787fbefec51cfaafbe0c452df09e
Sha1:   dca769271f821828522fbce8324300cb96b788c5
Sha256: fcbb95a0885c3a85177d1b13b295e2436c7971b156c68800ee2a2c9b9895c9cc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/html5shiv.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "a4f-61c0c0b4-df010eb55f41b622;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1127
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2639), with no line terminators
Size:   1127
Md5:    dbf40fb017a07721eec60a019c035a6b
Sha1:   6f3db2720a7a3f14a094350c531b06e4fe9dc935
Sha256: 1ba95b9997f66d023d9048ecff06812b7574d7c5cfeee836159c88ff5dba0c9c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa/assets/js/custom.min.js?ver=0.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:16 GMT
etag: "1a53-61c0c0b4-94d11e0242370f1d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1825
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6739), with no line terminators
Size:   1825
Md5:    7b28d3f339c7206353102875b939be34
Sha1:   b872e448a644c276e6135031925e49cea7a0b6aa
Sha256: f5e529dae6123655b46f93d00bb0b721bae7f7a0318ba2a35cdcd470150ab278

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:02 GMT
etag: "28-61b31ad2-80b06b3ec0347bd9;;;"
accept-ranges: bytes
content-length: 40
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    94d041d462db321cdb888066586f2068
Sha1:   717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
Sha256: b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:14 GMT
etag: "1329-61bf822e-8504dbe69b2df79d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2016
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4866)
Size:   2016
Md5:    7b87d10e3008a7ff3e1ecdec8bad28d9
Sha1:   25912a78a069d3d21f4125d613c4b1de3e71785d
Sha256: 3358ae5e255a638ddf688cd3df3f8f487fa821107e75fd2e734080f98109cc0e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:22 GMT
etag: "379b-61bf8236-cec4f9e953211b1d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4419
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14196)
Size:   4419
Md5:    f743ced3ce81a60ce37f64d86f4c8dd1
Sha1:   bad2eb9dbbf141d9e5824e64d85c836c30e2dee2
Sha256: f8ed89aed0ee04caeacd7002e144de887bc8969ce41a1e4f73a0ee75e7582ff1
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:02 GMT
etag: "2fa6-61bf8222-9dfd54a1ad8a9b57;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2838
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2838
Md5:    1393d0dbec2f83777455cdd096954f70
Sha1:   f9c4b9daea64fb4f7ffe076cf8e8e94600babd45
Sha256: 37c699d5ada4e2710a93784052ed68aa9b73e263ebb4a7a216c5a40e2c6bea7b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "50ea-623ee31f-5f3302ae1eb1441;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6564
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6564
Md5:    92b138903eb85a6cd4691dc968f40c20
Sha1:   2df28a955e96c129dcfea7d1d17c8590001d3fa5
Sha256: 0ccc51398d1855f0c5402beefac6d418e7c2fb86782a79df4f3233ec085c3902

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:22 GMT
etag: "9011-61bf8236-729b3cf21ffda81f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10391
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (36842)
Size:   10391
Md5:    b92f4b0e2c91e37b04c9e49afbd95d80
Sha1:   6b22bd0436dfaaa52f3e97b96e34098db1c51f03
Sha256: b9438b58052fc809fab48d906b300842013aaedb60e3f50d966a5a23b870d647

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.js?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:10 GMT
etag: "32a-61b31ada-d2fbcdfcd1d9e283;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 389
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (810), with no line terminators
Size:   389
Md5:    bc80f83337ad9e96f9c5d9b3d0305b5d
Sha1:   464e35c91ecfa7e96e58cb7c9f523352758385ac
Sha256: 0b12bc106b406b2ecd33244ea0c1d17da81bbdb75874835d6ce5ef3a16fa8ad0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:09 GMT
etag: "3a92-61b31ad9-4cfa22dacf26161b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3833
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14994), with no line terminators
Size:   3833
Md5:    45bda0ab2652796ccac8901206948d37
Sha1:   77539f7eff70a75aad2313db87ba0a69a4a06bee
Sha256: baeef8b4fdad3fef21434e2de8265aa2e63b229260ffabf6355758fb5192bd55
                                        
                                            GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "4a7d-623ee31f-c54d47b6b9ae441b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7144
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19034)
Size:   7144
Md5:    749e50dfc674a6a570c67ae4dd513f9f
Sha1:   a31f463cb77b465f98d05f0a1a384d9b07de701e
Sha256: 7334d1689754eba7f1bc6f99ac89d8f2074cbeea026e16c6cba1f20affe38bad
                                        
                                            GET /wp-includes/js/wp-util.min.js?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "53c-623ee31f-98d849a6d743176c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 646
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   646
Md5:    6545e92af6fa2c33aed6fb1d0492af5e
Sha1:   b95b4d49921004f3a23ea8d057beadd4d45a6d74
Sha256: ef9475d7d2b07f279a49a8458afc74f865810087e299437ef355024b93929eb2
                                        
                                            GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.1.2 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 00:21:48 GMT
etag: "2f2-61b29d9c-770ef285d4474ed5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (754), with no line terminators
Size:   339
Md5:    f4cea5c82bb62f34a31f39a322513366
Sha1:   bab5dfb3f8d04b76f83ca994798534e697b85290
Sha256: 5b00e0c1288d5d1f1df303a55bd0ff67d9acf5b734bc0093a651727c48a077ff
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "4705-623ee31f-c988afe94afa8a1e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4499
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15224)
Size:   4499
Md5:    9336a67615b8765497b6efb3b0ce86af
Sha1:   8e9f93d0e91889a28040f9f8f8d2acf71a0acdbb
Sha256: 4834743cf8467e0159799d7c291fe7ef0db3d96323b60fe1bccdaa7d932a7de3
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:10 GMT
etag: "23b6c-61b31ada-39ab6b691a1472e4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 42291
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45027)
Size:   42291
Md5:    7e3e96c219d26479755c2cb56f2703d3
Sha1:   92ba2c71204c4f71f28d26dbbc818075d6116319
Sha256: 82d1cb84be42e822dc8a3e2aa175fff994345ac4dc51bcf4d432f487eb728c3b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:08 GMT
etag: "21f91-61bf8228-99c350fabfc1c589;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33467
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   33467
Md5:    a6556c9a6ab814e62002207275233d46
Sha1:   01d7567e70bafde5489526b045aa1e10cf9d6d9c
Sha256: b95a15c97a5c5a4cd00d63e8d106ec394535764611b95078b66b92dca29242a5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wpcargo/assets/css/fontawesome.min.css?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:41:30 GMT
etag: "d158-61bf8aea-32c16de1e6b63370;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11143
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (53592), with no line terminators
Size:   11143
Md5:    89b74515c96bd3b40bd19fe4b30de70a
Sha1:   6994d8a8cf2137f8a4811adde23727dbed0675c2
Sha256: 69bb6766162e10762bbc94ca857ab2bd1adb79abebd3a6274c258c78e413a2aa

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wpcargo/assets/css/wpcargo-style.css?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:41:30 GMT
etag: "1de4-61bf8aea-1f8fb09550249884;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1709
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  assembler source, ASCII text, with very long lines (304)
Size:   1709
Md5:    63c85db05f2b4085eb052af1cf4143d3
Sha1:   2dafbed133e82c45a4be40bdad6d7505ccef0b1a
Sha256: 866e5bba455e93c7bbcc62baf33f8222a2e538243346c052928ae06a32550cac

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/wpcargo/admin/assets/css/jquery.datetimepicker.min.css?ver=6.8.8 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:41:33 GMT
etag: "4077-61bf8aed-66c87bb446a0f2b9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4163
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16502)
Size:   4163
Md5:    909b0984b2e90eede6ddb51e5451ed0f
Sha1:   0af81574ebb1fc8e981b8a5dd2d7ada5abbbb78d
Sha256: f49c963a0b5537ad635d1a42f5da93a1d6066b5b1ebc56870a2e79b44b8db931

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.5 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:15:41 GMT
etag: "308-61b31abd-4e49859096883340;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 259
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   259
Md5:    06874634ea96cc6be732014d72593575
Sha1:   4e7f414553001864b17d3609e565c881b195d054
Sha256: 650b1b039e0550f6a88f77343e8c8948e55374b474d04d691864a7a0adac4267

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.13.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:02 GMT
etag: "49d4-61bf8222-917a23e32ec17c4a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3541
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18854)
Size:   3541
Md5:    03eea38f663058776ed3b7da6c24f206
Sha1:   e1101dce8df1963e61469acc80ba68af9f642862
Sha256: 66fba056966d0127c4680aa02dcf0638e387117d28a31b676c6581d32e2658b3
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:11 GMT
etag: "1736d-61bf822b-62dcd05b2d96780f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11130
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   11130
Md5:    ba68394dfd0041b0bcfb1e19f69748ca
Sha1:   49708ef2d29d4851d764ed5f1cbdc55614c80673
Sha256: 45f319789abff71e496955562a23f503d577dee71008ef0799e36319ae696574

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-4.css?ver=1648292939 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 11:08:59 GMT
etag: "3b2-623ef44b-7c1a6ee5c431d88e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 281
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (946), with no line terminators
Size:   281
Md5:    1112ebfcb2248ce726235330a9bac908
Sha1:   d1a798a4878a1ad2885bbb3539816c346a1845d2
Sha256: 6d414ba88c4fb3d369141d5334dd13814e7e1450b4f7026fb5d2ed12d2142b70

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:03 GMT
etag: "e7d0-61bf8223-56dd81bee394cb8b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12319
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158)
Size:   12319
Md5:    c2e680ef4758bf83b84df8c83804107d
Sha1:   35d80bded804293fbfa3bd1457a2d95153894dba
Sha256: a4e3390cc054ae248b461df77f453099197beb91dacab293d2b5b07f6fa647a5
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.5.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sun, 19 Dec 2021 19:04:04 GMT
etag: "684e-61bf8224-29ab161ed2392803;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3941
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26516)
Size:   3941
Md5:    013ad6997546f1bf4791d1a780fe5972
Sha1:   dc31c443664c47703e777688f1957cd4cce9235f
Sha256: f2407f030fa771ed58ecd734706684857fde2a464a317d579a887f840bae18ad

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/global.css?ver=1648292939 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 11:08:59 GMT
etag: "3ccb-623ef44b-2ffafa7ab5c42d12;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1259
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6697)
Size:   1259
Md5:    090dc6c709ca4f61e7d494e3813a18e5
Sha1:   efb1f5c90befb0e73a35511bfcff2294a5d1166c
Sha256: c217f84258169d8464da8e0f02be96744cc068cb6c6f3ae6022b5b0c7f3a54f3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/elementor/css/post-31.css?ver=1655168350 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Tue, 14 Jun 2022 00:59:10 GMT
etag: "4ce1-62a7dd5e-c1389c2f905de660;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1715
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19681), with no line terminators
Size:   1715
Md5:    5073d5345afafcfcdcaf3f4d1796f074
Sha1:   a2a9ea07b4669a9cc551354ac7761002f5c90e2c
Sha256: eaf9caba159d851155553c9a7139459dda83036caefea04d6b134a831afd971d
                                        
                                            GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.5 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:15:42 GMT
etag: "127a4-61b31abe-772c645f72b4af84;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7113
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1646)
Size:   7113
Md5:    5b434cff59fdb167191eb7424dfb7c22
Sha1:   7713f3b361e487c1ba6dd81d4a3df1bde1fb3e1d
Sha256: 0e0764b9614111801fc6933416dde04cb55d595eb08d41d322389ff744f4950a
                                        
                                            GET /wp-content/uploads/elementor/css/post-691.css?ver=1654246183 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 03 Jun 2022 08:49:43 GMT
etag: "15a4-6299cb27-3637f30f6d788a4e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 717
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5540), with no line terminators
Size:   717
Md5:    b8d536f9015fb94fcb0591fa34c92162
Sha1:   af877851fa733f5726b8f9ef0cc6c6edcef9670e
Sha256: 757251efacc3cc712f24965cbc449907494fe4a68a0c6e8e48fc76df459a46e9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/bosa-insurance/style.css?ver=5.9.4 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 17:43:01 GMT
etag: "1dc7-61c0c0a5-c9a16895997b3c44;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2001
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1290), with CRLF line terminators
Size:   2001
Md5:    d652be1517cfa515c1b0ca9e23bfb0b8
Sha1:   9822ff4ca1fd6219a6ffdccaec7702696f41b8c1
Sha256: a1fc15cb61f812d65a676302374c5ea61a07e0207d7dae73427a10a4b1a93dcf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:03 GMT
etag: "1d6cb-61b31ad3-e84b627909dddda1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11243
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   11243
Md5:    533575cdad14ddb876be9e733fb508d5
Sha1:   2c4f908c2843ece196b43eea7aabc96951c7e5de
Sha256: 717d8a595bfb289d6323827bfbdd6474f69b79f7e78d789c077714614c5baad0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:09 GMT
etag: "764b-61b31ad9-8b00374076a62b57;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2821
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30283), with no line terminators
Size:   2821
Md5:    824ff39be9b4ec257704d51069eeb90d
Sha1:   79bea0734269579478790c65c51b0c8e5ded829c
Sha256: 4a15a673dde3098d324e4fee1f7eace3d618eb95bb4af3e530a4ee7560b72b92
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "2bd8-623ee31f-64ccfbe564884d9d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3984
Md5:    4116c2be947ecf205a0c7fc117ca55f0
Sha1:   0cd8efc9fe349d67a86b49d1e5582a9b21d05add
Sha256: 6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 19:04:32 GMT
etag: "4dd-61c0d3c0-5720e04af1d64ae9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 519
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1245), with no line terminators
Size:   519
Md5:    e5e1938018b98125afaf25204918cae1
Sha1:   59fffd7be222818ce09b9a0ea3d11b616be1fa72
Sha256: c065b0eac3f26ceba97d2ee7a5ff3529556db27492d99b50f4370206f23119af
                                        
                                            GET /wp-content/uploads/2021/12/logo-sb.svg HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: image/svg+xml
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Mon, 20 Dec 2021 19:07:13 GMT
etag: "de5-61c0d461-3a3a414580950b63;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1557
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1557
Md5:    c5e090f077cfc20f8704c62d5d0b8c7f
Sha1:   a9a9b86faacf42b86e37bfb491bd6fa44c9d99f3
Sha256: f37db2d8ef24866e7eb4d8e7224ac565518b52fda6291299901499ead0ef936a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=2.5.1 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=2592000
expires: Fri, 21 Oct 2022 20:24:07 GMT
last-modified: Fri, 10 Dec 2021 09:16:09 GMT
etag: "6c265-61b31ad9-52253404fa0ef83d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 45604
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size:   45604
Md5:    1e8952d032819c877b8e85c34c3de46f
Sha1:   9487e69fc9d91b3f46edd003528932d0f5a0fa83
Sha256: ff4fd1c4aeccfd8f7f7f7ba4211a90250065123054d3948d6401bcbf7928588e
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: usps-tools.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/receive/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         185.212.71.219
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Wed, 28 Sep 2022 20:24:07 GMT
last-modified: Sat, 26 Mar 2022 09:55:43 GMT
etag: "15db1-623ee31f-f67be71bceec66ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30027
date: Wed, 21 Sep 2022 20:24:07 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30027
Md5:    63373db5c13254717674a1af4cd88aa2
Sha1:   21a1962ab8597d9066640a7157a41370341ff0cf
Sha256: d883f77be0299ddb715175908b03076554287b13f87570369fb58adeade16891
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5788
Cache-Control: 'max-age=158059'
Date: Wed, 21 Sep 2022 20:24:07 GMT
Last-Modified: Wed, 21 Sep 2022 18:47:39 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oaH9uSqKiNS2TbxWFGkfaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.27.12.161
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WUv3d3onB5x0hvpdLOipNurgLqA=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://usps-tools.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 08:31:01 GMT
expires: Wed, 20 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 129186
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://usps-tools.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 2999
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://usps-tools.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 2999
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://usps-tools.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 17:22:51 GMT
expires: Wed, 20 Sep 2023 17:22:51 GMT
cache-control: public, max-age=31536000
age: 97276
last-modified: Tue, 26 Apr 2022 16:08:33 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 19816, version 1.0\012- data
Size:   19816
Md5:    290160ea1f23d0178902ab8a62635b0a
Sha1:   5614266d1f6bf5f0d7601fff4a2bc0924830d983
Sha256: f6b9eebb05461840790fc804b4590323ef12a57fe5af7fcdeed2d798e572844b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 21 Sep 2022 20:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Open+Sans%3A300%2C400%2C400i%2C600%2C700%2C800%7CPoppins%3A300%2C400%2C400i%2C500%2C600%2C700%2C800%2C900&display=swap&ver=5.9.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 20:24:06 GMT
date: Wed, 21 Sep 2022 20:24:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8252
Md5:    6abbb513ee8390000bf93275d14d5433
Sha1:   5459c303a3d4193f6492520e35b88ac447a5140a
Sha256: 64e453158ba91b32165bd5806e548537ae7e29e2b3498b7184e9d60239311582
                                        
                                            GET /css2?family=Open+Sans%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C300%3B1%2C400%3B1%2C600%3B1%2C700%3B1%2C800&display=swap&ver=5.9.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 20:24:07 GMT
date: Wed, 21 Sep 2022 20:24:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8138
Md5:    c08f551029f27d5b279cc9681bfcb55c
Sha1:   fab6d82809bf856148721dac171ec3231ac6c4bd
Sha256: 2561a562e7c56b754260aa3af657d7cc7a89fca4df1066cf166e9773eb99d4af
                                        
                                            GET /css2?family=Merriweather%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C700%3B0%2C900%3B1%2C300%3B1%2C400%3B1%2C700%3B1%2C900&display=swap&ver=5.9.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 20:24:06 GMT
date: Wed, 21 Sep 2022 20:24:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   6916
Md5:    9f5cfd3275da3841d3c5057ac16857e7
Sha1:   c40ca3114043b4c5fcdfd92bec0664070a4fe1a0
Sha256: 52e5afd32590eddbb37f532d3e45cd5580641a7bff8c6bfc1b74f06d914467ba
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 20:24:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 20:24:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 20:24:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 20:24:09 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Wed, 21 Sep 2022 21:00:45 GMT
Date: Wed, 21 Sep 2022 20:24:09 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12545
x-amzn-requestid: 6720348a-0245-486b-a978-2df18eb4bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7YKHayIAMFo1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6325729a-2601f775219651777cba839c;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NdQpOGtyA7AxpmkvFf3K3IrkgSku9QQzQ4BvpoRfTv16Kj1Gr6n7oA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 07:34:13 GMT
age: 46196
etag: "9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12545
Md5:    1976af26c5d4a671c8298bffafc90ce3
Sha1:   9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8
Sha256: 2349b9e1233d43cf8d0ff273f8bf6147dda00314fd631a81cb278ce0b8e32684
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:07:08 GMT
age: 80221
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11832
Md5:    2ed7323b395e757f7766ea0045efdaca
Sha1:   8b91bc3069a3217bc719c27959d578b353b5d9dc
Sha256: 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f06ad5e-83fd-449e-b227-1b9d5389e57d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10244
x-amzn-requestid: 71f08b9e-e977-48de-ad60-5192a43db517
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYwBkGqjIAMFz0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202d3d-0af3334d085ca4a764e31bb5;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7FaZfI_iYUANPdxGBld5NfneWwKJeX2nYA_gmvF9NjML5YOVhZIIoA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 19:20:13 GMT
age: 3836
etag: "b1cd04a66852694284eeef16a1cde38896e33c03"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10244
Md5:    14e6ddceb639a5f4875aecb796f95c79
Sha1:   b1cd04a66852694284eeef16a1cde38896e33c03
Sha256: 4c0657a00d7fb4caefa64c28340cad94a306cc393cffe692fcc69c65a80f2391
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf057f43-44fd-440b-bd96-67b16eb4eb13.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12654
x-amzn-requestid: efc99152-2b51-462d-b48b-67ba8263b1cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOGVYoAMFcvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-00eeb6913e06ac151f293263;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nSWUmBqJPIBYNoLtyrfAN7CK4367b6TEku9eki8BGJVdTWW3dSyckw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 06:45:55 GMT
age: 49094
etag: "d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12654
Md5:    f7b780d39877eea116277625aaa01f1b
Sha1:   d8ac8a7e19b06e38070a0319cde24b5bf0eaa7db
Sha256: ca9d59056e0a3f512d36db11f4a4bd3109c2ce1e13b29b5f40dce84df079e71f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1874c3ef-e614-4fd9-9d88-b87eac5ea0e6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9201
x-amzn-requestid: 6dbfae76-f9ab-4f31-9b62-bcf5d9ce4515
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YxzxlEYcoAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a333d-7d147481402cc46a751b72ed;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 21:40:13 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JEb0g486u6AjYFbf8rSbreKjh0m1GsAGbvykHl0oahmVN2ciqe5FOw==
via: 1.1 7dcaa43cd0535d889b549e6a30a57aa0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 22:14:57 GMT
etag: "1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54"
age: 79752
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9201
Md5:    a692964324dbb9c460a1b855808d02e6
Sha1:   1eef1ab0099d09d1cf965b6e7b55fe2aa4e18e54
Sha256: 3fa9e780d62fffb635064aeed542c8e04923ff943c6080476836fab6c24e2426
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6b35a1c-f445-4b05-b56e-ce2ad0ef2a9a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6897
x-amzn-requestid: 509dc368-dd1c-4be7-94ff-64dbd53c199f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoqoRG2WIAMFw6A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63268b01-1cb916c251fd5f2f3cf10435;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 03:05:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vs0CTuiAdjRtfJD9qX9S5R07Hw6BWfiOAT50GwTdiSETdoqr2FNsyw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 04:14:25 GMT
age: 58184
etag: "91df60162a8322469cada0dd8eb93619f28aec1a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6897
Md5:    8bae3a7a80ff40df1d701dfc925ddeff
Sha1:   91df60162a8322469cada0dd8eb93619f28aec1a
Sha256: fab10c7ad4658bc191621d9f2042236a7b6e34448ce5215dde5b8d6a64b52952
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://usps-tools.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 21 Sep 2022 20:24:07 GMT
date: Wed, 21 Sep 2022 20:24:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---