| uspsxy.top/admin/config.js | 47.89.173.67 | 404 Not Found | 146 B |
URL GET HTTP/2uspsxy.top/admin/config.js IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://uspsxy.top/admin/ CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /admin/config.js HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
|
|
| uspsxy.top/assets/index.js | 47.89.173.67 | 200 OK | 78 kB |
URL GET HTTP/2uspsxy.top/assets/index.js IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://uspsxy.top/admin/ CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typegzip compressed data, from Unix Hashcd4ae02fe6111f0f49af3c757f9bf704 7575a2b7e5dd316654044cac1490d5c64167f4a8 0aa4eac3870f0a89af7ca8ec74a1acedb2d5137a13205cd660b32d0e35aa9752
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /assets/index.js HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/admin/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: application/javascript
last-modified: Sun, 05 Nov 2023 13:45:42 GMT
vary: Accept-Encoding
etag: W/"65479c86-301c0"
expires: Wed, 17 Apr 2024 05:48:35 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 | 104.16.41.28 | 200 OK | 0 B |
URL GET HTTP/2fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 IP104.16.41.28:443
Requested byhttps://uspsxy.top/admin/ CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 427739
accept-ranges: bytes
set-cookie: __cf_bm=UVBeVLNKibLpt9YzfaWJne_XzpxL8sH13AdmD6mblMU-1713289715-1.0.1.1-SKW_E2nCZ7r4cFT77NnfH8aBzCgCdRFy.f8cgZrVEwUMhmcUxBH6_CeyKcejDJipOzVVW6wkj83mu4WH2s4nsw; path=/; expires=Tue, 16-Apr-24 18:18:35 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 875601d30aae8f63-CPH
X-Firefox-Spdy: h2
|
|
| | 47.89.173.67 | 200 OK | 8.5 kB |
URL User Request GET HTTP/2IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typegzip compressed data, from Unix Hash24a9275353b171a854ee10dfdbd84656 d3b23cc40f9e9515e14e1655379cf68b04bfb1a9 6c159c046608523d122c5b12082eae6a215ff136fc86bfb9dde6996aa2bfe05c
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /admin/ HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 17:48:34 GMT
content-type: text/html
last-modified: Sat, 04 Nov 2023 18:58:02 GMT
vary: Accept-Encoding
etag: W/"6546943a-892"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| uspsxy.top/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff | 47.89.173.67 | 200 OK | 59 kB |
URL GET HTTP/2uspsxy.top/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://uspsxy.top/admin/ CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typeWeb Open Font Format, TrueType, length 58690, version 1.0 Hasha6e2d3921c9ea0fd81897d9ae7a33ba4 bc31969f2fb1926a15cd678b3e573c37a44e5421 f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/assets/index.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: font/woff
content-length: 58690
last-modified: Sun, 05 Nov 2023 13:45:42 GMT
etag: "65479c86-e542"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| uspsxy.top/favicon.ico | 47.89.173.67 | 200 OK | 32 kB |
IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://uspsxy.top/admin/ CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash3f0f72ed57a54b97cda500bcf0545efb 2f252619c18e729d98e16b96d37cd7cd567b38eb 67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/admin/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: image/x-icon
content-length: 32038
last-modified: Sat, 10 Jun 2023 01:02:42 GMT
etag: "6483cbb2-7d26"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-101-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-05-20-00-15-28.chain; p384ecdsa=MU1f6U1Z3RJiLofdBA9N7iWplrp79u4myA4TGhtndRe960VG01VC-3ymYKP1knCELrPaFP5YZrw0TYl28dUarLP_an13qZDlXFPAAWdyd7FFSfel5V0j_UdmjJI7_AGL
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
content-length: 444
date: Tue, 16 Apr 2024 17:47:33 GMT
age: 80
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| uspsxy.top/assets/index.css | 47.89.173.67 | 200 OK | 310 kB |
URL GET HTTP/2uspsxy.top/assets/index.css IP47.89.173.67:443 ASN#45102 Alibaba US Technology Co., Ltd.
Requested byhttps://uspsxy.top/admin/ CertificateIssuerLet's Encrypt Subjectuspsah.top Fingerprint3B:7F:9D:94:7C:D3:01:5D:13:7E:D3:10:67:19:E4:BC:92:50:BE:FE ValidityThu, 11 Apr 2024 08:23:34 GMT - Wed, 10 Jul 2024 08:23:33 GMT
File typeASCII text, with very long lines (65275) Size310 kB (310286 bytes) Hash3b8fd6f9a4f47abcd5587844dd3aea48 9dfecc12393c9c87c76059a8506f8e073e07cf3d 5a0d71ead8b996efb89a6ec99e93d2a79ed647b890838bbaf890dc238ab87303
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /assets/index.css HTTP/1.1
Host: uspsxy.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsxy.top/admin/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 17:48:35 GMT
content-type: text/css
last-modified: Sun, 05 Nov 2023 13:45:42 GMT
vary: Accept-Encoding
etag: W/"65479c86-4bc0e"
expires: Wed, 17 Apr 2024 05:48:35 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
|
|