{"report_id":"c6ae27e2-2b90-440d-afe9-ca1f7ef30df0","version":6,"status":"done","tags":[],"date":"2026-04-07T14:39:40Z","url":{"schema":"https","addr":"usdtgrowx.com/","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":0,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"usdtgrowx.com/","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"title":"USDTgrowx.com.com - Mine USDT | Secure Cloud Mining","dom":{"size":382711,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (5222)","md5":"37b4e1fd64e231b53f4d26164ca3e896","sha1":"151efb3732d706fe83fa17ccc100e1716b02bfbd","sha256":"5b6aff9792dc8458f8355bac844348b2fe3b23d1b06a6dff9d053aaafbddbda2","sha512":"15ee26b3ae2de1cebd8d4bb5b65d97869ad8f7112a4c9c66f07beb08a5bb85bce93bc0f5335310b5296bbe4af9ca80453c8e2aff6664941cff87ae77a3f383f1","ssdeep":"6144:6h8BBV65cbaVDY13Cfi5oqX8VZcB7NDe4HNcf28SxEkw4JfJ2QHmMVUAoSgA+4bj:NBBVScbaVDY1IaEkwjO7jN","tlshash":"1e84fa61960112d96327ca1bafd4b7642338d133de170eebf5962c19c7caa8911e3b4f","dom_hash":"domhash58346bb37f0ab9b1c372c5f8bd261d0b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"usdtgrowx.com/","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":0,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-12T14:39:40Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/7d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null},"summary":[{"fqdn":"usdtgrowx.com","ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"domain_registered":"2026-03-27","domain_rank":0,"first_seen":"2026-04-07T14:36:31.926607Z","last_seen":"2026-04-07T14:36:31.926608Z","alert_count":0,"request_count":30,"received_data":2673325,"sent_data":14493,"comment":"","tags":null,"fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"Material Design Lite","description":"Material Design Lite is a library of components for web developers.","website":"https://getmdl.io","common_platform_enumeration":"","icon":"Material Design Lite.png","categories":["UI frameworks"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}]},{"fqdn":"maps.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":3442,"first_seen":"2012-05-22T14:23:23Z","last_seen":"2026-04-05T23:49:35.888275Z","alert_count":1,"request_count":4,"received_data":752074,"sent_data":1782,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.googleapis.com","ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-04-05T22:20:18.514512Z","alert_count":0,"request_count":1,"received_data":6912,"sent_data":467,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"usdtgrowx.com/js/map-shortcode.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d05a09c1e6c2c18a03595e8d22bb080d","sha1":"3b57dbce814cf93d6d31f3ce04b1d21fb854562b","sha256":"bc380b9d22ce708e1557baed20e94a5b0dfd920b7809ba185d4b9d153e5c2e2e","sha512":"ffb56b1e9b2375db364a0d8f3ae4c03f2cdd591340fb3b894ea2d4338e131e474b7bdf1bb2505db117afa88eb99bdcbed56a8811da3b3dfa3a94c3304c42409c","ssdeep":"192:EMGfV3nbTmFVpYuKWSvz3DOrplNncDH4bI3:wnblzirplNnA","tlshash":"bf1253ccb592b0599743b5b982bf110fa63b189414df9220d550e9e43e3a91f9227fdc","size":9535,"data":"","first_seen":"2024-08-20T08:23:52.96571Z","last_seen":"2026-04-07T14:39:44.46868Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/material.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"bd26a69c4211d42518ba6dbc8ea67da7","sha1":"3763f38dce199f52124d39e13926c43d49367b8f","sha256":"de8d6ba66f96564b7af750dc791c0b9a1f3d70295a5000d050b6dcacf291e7f3","sha512":"b951ae566fbf0badca49b2973a5dacb3b48ab288d5d5b7fe01b295abd6558087f4420f7bdc120b92eb6e32b89c43426fa1e264cccdd2d9cb0fb93cdcfec39fe3","ssdeep":"192:kNvBZvXvTvZvpUdVUeUPNeI9jPCB0bIuSXIBq3wkc75losM:kNZZ/rBhUdVUeUPNeI9jPk0bIuSXIA3H","tlshash":"15f1430cb521334352f791f451eb8a4f613290b4d919445870afc6e45abee8ca2abfbd","size":8137,"data":"","first_seen":"2023-03-07T12:08:53Z","last_seen":"2026-04-07T14:39:44.46986Z","times_seen":225,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/orbitlist.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"261f693709b39d578d409f4eb36c3d1b","sha1":"ddd9cf419d6c8b1756d2c6be83ac0ba9ea0bdf7d","sha256":"ac714e1faa733bd18b8edff3641e120576e7abb42c8e19cb9adf02730303d66d","sha512":"40e9a29e2c075f631e32e3b3297335a7d15a86b1c02a3ea047b9349a7047ba4b712d2e6fee51dec11772191865cfcdf2e67e80c96e7c17823620999375e1459b","ssdeep":"192:IKM3xMhM1Z9MnMYM52SMHMVFMxM9M3MVL3MP4YfzSmXMJMeMJIMaCMRMUMLMZMt6:IKM3xMhM1Z9MnMYMVMHMVFMxM9M3MVLd","tlshash":"35122527fb75232799eb11276f5f184073a1e3ab900cd1143d4e93241f52e8ca26dbe6","size":9505,"data":"","first_seen":"2023-07-11T01:47:11Z","last_seen":"2026-04-07T14:39:44.436095Z","times_seen":20,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/bootstrap-datepicker.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"28fcaa62cee7c582500724f8daf01abe","sha1":"4a49392197f92930177d8e14d94c0658986a8526","sha256":"3bb6e332c348c2da60bcc96160a5b7e53c0afaf25c88355a6420b98034098509","sha512":"95b231ef843740ea4a6d9fe6904f40bc33fb0c6ecdfda4705cb21dcecd322f1750f24b185d9b94de5d3bf97503bef6f78ca6402c4132376747185ae683df8ee7","ssdeep":"384:rXfAXaPvQUe/X+YOiux+6X/PeERphscJ1:rXoEvQUTLiSBuPg1","tlshash":"a55242c5e39e1547973620ad582d12ca663d807bdc068d3f7c6c41e169ecf2962acef8","size":14497,"data":"","first_seen":"2025-08-04T00:21:48.393929Z","last_seen":"2026-04-07T14:39:44.4711Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/crum-mega-menu.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"cc524ce972ec239f626bcc5646357783","sha1":"985af94c9ae81e9895ac425c8f8b17ccef8c0a1d","sha256":"58a0ee33a967273302a4baa040abb04a88b7f0b2bc00ba9e4f16ffc1408c3be6","sha512":"c58175f9463784e08000673d0022097a9ca11ffcebd59052325dd31499cf91354cede18e76fdc01086df5c880295c9dfb0842e4a81e8428bddccef0e3c9b3ca4","ssdeep":"192:jYdPCMSPe2vJaiFFCksRDPIb+XN6S+OzVXeigzaOraL:APC6dRq+gS+OYigz/aL","tlshash":"1422b6d8f65d317942f6227e926e63c96a3f0072561a9c32f8b849b01c3895d03e7fe5","size":10026,"data":"","first_seen":"2023-07-11T01:47:11Z","last_seen":"2026-04-07T14:39:44.461185Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/jquery-3.3.1.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","size":86927,"data":"","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-08T23:43:38.887897Z","times_seen":119680,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/fonts/fontawesome-all.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b5ff38e6e82b634e9546ee944f81a7e","sha1":"0a888fec38b7d791f69c00f1b593c2c73cfcd426","sha256":"211f435f089177d09338e3c0e8fb1d57d84a50b296a3480775caaec9777d966a","sha512":"f9b1a768f3af2f4ecf29cea8358072daf8c11b4a016f4ed211357605f7927fe8d7cb466c114a882ecdea219258316e5e20cee9db8eb9daa53f95838f1cbc67bf","ssdeep":"6144:qAommf7dsND/7sRSihOH/wOfgBJMOr5sKmq/hR:AfumhO46A","tlshash":"4ae4c7a8d364a3fc8dc597f8862514b4b84e51af61e0d72492bdc6e0378b4dce2ed8c5","size":711807,"data":"","first_seen":"2023-03-09T11:13:06Z","last_seen":"2026-04-08T19:31:59.49005Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/js?callback=__gmap3","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7201a371e1c5386ccd5c4fb6e501784b","sha1":"9e1ae563d596297b4f8855a86385fe4057109710","sha256":"50fb2f9c7a7df359fc957e5c2da9e24dfed8e223d1a502f91259bf4d290b82bf","sha512":"af7646fc2f7ec46722bf4950f5d60aaa1ef842cf501d59545951e7bea96905e3103c8e8b5bb66add5286543005eead8e0140426478e04f1231e27cd8a467051e","ssdeep":"6144:/02NuHpKbjhU9jztFGGzGU9QPRAXJ8tnBo/nDS5kW7EpeSVe0aDznYaT3y21ymUP:/02NuHMbjhU9jztFGGzGU9sGXJ8tnBox","tlshash":"9e642b987362746687b2e4e050370106f27e649af00c8aacb69ccde7adf69464177f78","size":311716,"data":"","first_seen":"2026-04-07T05:23:26.421882Z","last_seen":"2026-04-07T14:39:44.432153Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/7d/util.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"8478577db76ab2d9f07eb11cc54c714a","sha1":"5499b10b74a102893869a20cb24b97a182f3164c","sha256":"c91435886d0a6f8786c96261096dc888b6da64b71b87c0a6f9b3705220febc3c","sha512":"a38b24da73d01769256a3650bc5679130eefff8a711e737422faa131162e5c3471cc8286f31959299d804e9ae7f2665f7a7d9d6e10eba109c8381f06308369c4","ssdeep":"6144:R8meGZwaGxC3Kaxdj0UF3tkuwh7ty0WG6okjCk8Zxu0BFavKkSh:R8meGZwaGxC3Kaxdj0UF3tkuY7ty0WGv","tlshash":"bd64e67c71316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e0638","size":310651,"data":"","first_seen":"2026-04-01T17:20:30.405858Z","last_seen":"2026-04-08T17:56:35.665074Z","times_seen":5608,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/method-assign.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"cba588a6047c2e00833892d355ce1271","sha1":"32ef91981406a8283a1cefd22616ff25ab1784d4","sha256":"a19c00f27bcbeeba051b39f97af28ce3cdbd2b5b0ec31a2b9644f3c19ee91a0c","sha512":"de3075b2cecf33555bf4e4c4a2a83eaa411b2edd6490d006f8d8f5063ec4d48c915b5d973291bc429cb719e4951a3a784235bdc1b213f4a6accd44b22cccf81a","ssdeep":"","tlshash":"86f09e89e75c80e512263051246676cce02ec1f39c9ab5afdca0e39024f192e9a8fb31","size":507,"data":"","first_seen":"2025-08-04T00:21:48.362399Z","last_seen":"2026-04-07T14:39:44.466462Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/ajax-pagination.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"fad8ab64d2728fc05a9465912bfe1546","sha1":"05f11a2f98fe596b39add39844022c5005e709fe","sha256":"62075b2704f32c9a195cb7f30616b0b0751649fc285fac5249e2b813a3cc58ce","sha512":"745aa212c4f955b27b8655a71da41a7621b73b1b38238aec7f2efc8cc6df19e34fb213a36bbd7d2b36768f3368be6d55ba2f18a6898995d11aec111bc4632ffb","ssdeep":"","tlshash":"3751c448aebb9464a93b347d5e9fa4007e20d4338008dd267e4dd1c0dfc4128e1aaade","size":2676,"data":"","first_seen":"2025-08-04T00:21:48.337117Z","last_seen":"2026-04-07T14:39:44.435272Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/isotope.pkgd.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"12a49e9ed6c341469ebd6a3836e4d7db","sha1":"2593e063013f8df3de0790ec814e8e6403dc60b8","sha256":"f6230e38e8ce363e1dfe524defcf13a0d83f4f636c6a6a8b723224b04f33259f","sha512":"fda5c4c02a28d989ef1bb4c8f7444b2a93265a0eb2542a84a34f0f4ea64bf496a65fdd08ac0a1dcd1da2aac7d1a27b4d82b7d6691edfc30bc0fbfe4f88afdb89","ssdeep":"768:9fyxzGdHc1zfA9ZVP4eAnmc6FumKSshD6cD6GLQfq9SvDz2k1Fxt:Ux6dOjARP4Nnmc6FuCshD6cD6xS9ODzl","tlshash":"0df2d74f73403824468bf166966f160fb137a56c6a4790acba6ad8db1c79c0d6033fbc","size":35504,"data":"","first_seen":"2023-05-03T15:47:38Z","last_seen":"2026-04-07T14:39:44.434473Z","times_seen":5,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/swiper.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"b117060487d6ec17a9af7c5604a2c149","sha1":"40a26a977cf1c6b060668c9680cf71a6c8e91e0d","sha256":"34200a216f42b734a9723a5367645bb517c31e036b42e2bf6a480c62880fc12c","sha512":"ed7117d767aaa81dc7633866334e0610334fa921f6f6e1076ebd1818398c657239a8a7d924f429a5bbf932ac9976ac0203d648c745a210f8a5000cc72d0d4c2b","ssdeep":"1536:nI2qg0G1fiPJWmb0vCqIA9GK8FEliAfmrGMy55T1s53V7gZxj8rvHgZsUOUBDBWf:V4b0akdSyBohgZu7HgZsUOUFBWqjxUx","tlshash":"41c3094eb390619511e36256529e9241a3b72409780ad0ac35b6cce7adbde4c13bfffc","size":121304,"data":"","first_seen":"2023-03-08T00:01:27Z","last_seen":"2026-04-08T21:22:45.835508Z","times_seen":955,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/theme-plugins.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"765c60e7ab38bdb8a1091abab41c1eb7","sha1":"e3c71fbc3a29f2d3f3fc8516ce1f19e27e1ce68a","sha256":"a6f5abe0f0da792bb0fbee645459f82e734d2174582539bec80167a30fcfe6e3","sha512":"87cb7c4ed5f772718e391908f2afbe37c06ac423327a466f32839efe31ea175387ae4d401f51bffb11c06ac4e69cdd7864adbe36005242cd7d07cafc458c60be","ssdeep":"6144:Tv8nK1lXD8a3DT6uYv2Zy3JxldUAq+VrAWc:TvZXD8sqdUW5c","tlshash":"38644b887262713243ff61e5906f424eb332967a740a8068b468d9e87d78c56723ff7d","size":317898,"data":"","first_seen":"2025-11-20T23:18:34.402931Z","last_seen":"2026-04-07T14:39:44.446121Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/main.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"1697bd4bc6d0c5f5ed1a344770953764","sha1":"024d67b0b5a6f682990cc310074813484522e127","sha256":"a6ce6ba4456e6c53f787818bcd471affb5a96d737905dcdec71c56b159cc3186","sha512":"d36bf1bb56f577f748926c62287ab7d4c786d1a15754caa60a49aa7b6e3f4b468f5a2d566dd800d246e28cfa3f24ee81b5e8202f626e52358d43b8bef293ef47","ssdeep":"384:8SOKqny4tfdF3Tcn83cm6vGdKpR7GGtZqQ/ILa5Ii3S9/cmaUB/gA9m9B2:PTgnW83cm6vJvGG3uKIMSt7YwCB2","tlshash":"f8d26386ffac2827857be1595d6f10cad23c4036a942083ffcac886499e557d636ed3c","size":28856,"data":"","first_seen":"2025-08-04T00:21:48.398124Z","last_seen":"2026-04-07T14:39:44.437786Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/7d/common.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"500130862e275c00117feb8d530e42f6","sha1":"faccbf3de9e60f6c65b2be4fc38cc28d64c03711","sha256":"9dbb2f90542785244bd93cc0dfe6489f020559bd82fd643614a7f09039c95500","sha512":"dd2703914b8f7067ca158d5478d60baecc98c42b61f6913adbda958d5952449156aa02d7446f65f52baf6240470e769c853b0bbe2f64edcb98c36b525d1a30e2","ssdeep":"3072:uKMQhWIJmdTdKQlH+NoHqClJFuO+iXeFXnybCtnpWrZNaQ1PTHVkSr/cM3OXU5cJ:uKMQhWIJodKYeNotbuTln0Cc8Q1bHVkN","tlshash":"03c3d6d9319370b3bf71a89440a70106b29aa499b45dcd6db1fdc8f3aef185601f9b38","size":126936,"data":"","first_seen":"2026-04-01T17:20:30.421527Z","last_seen":"2026-04-08T17:56:35.713863Z","times_seen":5609,"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/7d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"usdtgrowx.com/img/trx.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/trx.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 17 Mar 2026 13:27:04 GMT\r\netag: \"2a95-69b956a8-a315f3ec46aa72bb;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 10901\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":10901,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced","md5":"5175c5400ac65eea5389b8b1d1fab6ac","sha1":"3f7e1e110f97bdd1028f9d8ff40f2f2707487348","sha256":"755285d8fdaf4309729514363297ef5b3804b7710b6723d3eb378fa2e1586541","sha512":"bb9d5e98e138eaf4f7c8fb8084f6e437c31f00b557edddd445ad292847a7079dcb57112f5ea696229d8561ab7cd2426228c1f0594c6b1e3ce0f8f95a0a8e9f1a","ssdeep":"192:JRcYIdN3Xs5FRNX4qGv7FbF6FxEZmJIcWVQ91mwdMxfb0OczlaBkKOPzrD9:JRcl3Xs5FsqycFxE8f0wdMV4Oczl3K2R","tlshash":"6222af9841fc0f95c2da8d94c2bd50f29dbb854984e4e567dad5eecb44603f78c00499","first_seen":"2026-04-07T14:36:37.509858Z","last_seen":"2026-04-07T14:39:44.426049Z","times_seen":2,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/jquery-3.3.1.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.521Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/jquery-3.3.1.min.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"1538f-69b7b352-63512d42de3d2688;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 29664\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":86927,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65451)","md5":"a09e13ee94d51c524b7e2a728c7d4039","sha1":"0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae","sha256":"160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef","sha512":"f8da8f95b6ed33542a88af19028e18ae3d9ce25350a06bfc3fbf433ed2b38fefa5e639cddfdac703fc6caa7f3313d974b92a3168276b3a016ceb28f27db0714a","ssdeep":"1536:jLiBdiaWLOczCmZx6+VWuGzQNOzdn6x2RZd9SEnk9HB96c9Yo/NWLbVj3kC6t3:5kn6x2xe9NK6nC69","tlshash":"748319dd72c6b06247ab71ba00bf550bf2361999684d4410f129e4eabc74b4e823bf7d","first_seen":"2023-03-07T01:02:02Z","last_seen":"2026-04-08T23:43:38.887897Z","times_seen":119680,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/fonts/Comfortaa-Regular.woff","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.735Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /fonts/Comfortaa-Regular.woff HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/x-font-woff\r\nlast-modified: Mon, 16 Mar 2026 07:37:52 GMT\r\netag: \"7430-69b7b350-a34e5f6a671cb38a;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 29744\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":29744,"size_decoded":0,"mime_type":"application/x-font-woff","magic":"Web Open Font Format, TrueType, length 29744, version 1.1","md5":"7a8b02696cd6e87d7b10dd70b20fdcd9","sha1":"27fe885918cbab2534424334619cae4aac33592e","sha256":"fcfe8c1155d65e1bcdf092cc3d0c4f6cb32b7a465b09ccd14ecfa4938b19e63d","sha512":"163afcc88a168023ee9553ed80fb8e08a68f9bc1794538a8d77ce415d7423df0327baa2acb1112c998226037120c9d671c5f7bdd965264cea21d1adf6fa269eb","ssdeep":"384:2SkLmwh4EQKHKevZUHtDkQzCG23oMQadn4ACZe+ASGlaQh2EAe98Q8Q0OpjjoQXr:2SkL7/Qe6aBdn4AC8Iyae98Q7XfoQXUQ","tlshash":"80d2e1e93d9d125663001e3c787c67bde7853f14c7f098a79c8aa04c82afed47236999","first_seen":"2023-06-08T17:44:24Z","last_seen":"2026-04-07T14:39:44.43063Z","times_seen":20,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/js?callback=__gmap3","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.886Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /maps/api/js?callback=__gmap3 HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=1800, stale-while-revalidate=12600\r\ncontent-type: text/javascript; charset=UTF-8\r\ntiming-allow-origin: *\r\netag: 5e328456\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Language, Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Tue, 07 Apr 2026 14:39:18 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 102588\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nserver-timing: gfet4t7; dur=74\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":311716,"size_decoded":0,"mime_type":"text/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (11870)","md5":"7201a371e1c5386ccd5c4fb6e501784b","sha1":"9e1ae563d596297b4f8855a86385fe4057109710","sha256":"50fb2f9c7a7df359fc957e5c2da9e24dfed8e223d1a502f91259bf4d290b82bf","sha512":"af7646fc2f7ec46722bf4950f5d60aaa1ef842cf501d59545951e7bea96905e3103c8e8b5bb66add5286543005eead8e0140426478e04f1231e27cd8a467051e","ssdeep":"6144:/02NuHpKbjhU9jztFGGzGU9QPRAXJ8tnBo/nDS5kW7EpeSVe0aDznYaT3y21ymUP:/02NuHMbjhU9jztFGGzGU9sGXJ8tnBox","tlshash":"9e642b987362746687b2e4e050370106f27e649af00c8aacb69ccde7adf69464177f78","first_seen":"2026-04-07T05:23:26.421882Z","last_seen":"2026-04-07T14:39:44.432153Z","times_seen":3,"resource_available":true,"data":null}},"time_used":166,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":103,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/fonts/icomoon/style.css","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /fonts/icomoon/style.css HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: text/css\r\nlast-modified: Fri, 02 Nov 2018 21:12:20 GMT\r\netag: \"137cc-5bdcbdb4-d6ede1fdfb69d876;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 13174\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":79820,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text","md5":"3965f4b4cac070ed123d9f968f07cb89","sha1":"a0bfcec8eb2e776d345e6f2445494e88321a5338","sha256":"b696dfc59a40f98665773871c86c7efa7b0a8323e589d6a5ef4ddc1fb5d6e8e8","sha512":"589ed9d9bcda926b7904fe4f4e9c5e85f67c6c030f47f4ace5e4cca1ccbe06b0aec45a5e3da0df4b20d965fc76d90d2140ab18b3c36c3d8b6a39f0921cb1456b","ssdeep":"768:jImuypvv3Uc4MXvNfQdPm3gqXmcOIuBRn0ozxoC7I:jIm3MJYN4dPmfmLj0CxoC7I","tlshash":"1573cae4a9bd18905311e0d167426260ff1da32c9d8f6d5af2b3b99cb3e2215c5d23ec","first_seen":"2023-04-07T00:33:13Z","last_seen":"2026-04-07T14:39:44.433352Z","times_seen":676,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/isotope.pkgd.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.526Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/isotope.pkgd.min.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"8ab0-69b7b352-5f396d57495cf8d0;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 9626\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":35504,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (32004)","md5":"12a49e9ed6c341469ebd6a3836e4d7db","sha1":"2593e063013f8df3de0790ec814e8e6403dc60b8","sha256":"f6230e38e8ce363e1dfe524defcf13a0d83f4f636c6a6a8b723224b04f33259f","sha512":"fda5c4c02a28d989ef1bb4c8f7444b2a93265a0eb2542a84a34f0f4ea64bf496a65fdd08ac0a1dcd1da2aac7d1a27b4d82b7d6691edfc30bc0fbfe4f88afdb89","ssdeep":"768:9fyxzGdHc1zfA9ZVP4eAnmc6FumKSshD6cD6GLQfq9SvDz2k1Fxt:Ux6dOjARP4Nnmc6FuCshD6cD6xS9ODzl","tlshash":"0df2d74f73403824468bf166966f160fb137a56c6a4790acba6ad8db1c79c0d6033fbc","first_seen":"2023-05-03T15:47:38Z","last_seen":"2026-04-07T14:39:44.434473Z","times_seen":5,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/ajax-pagination.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/ajax-pagination.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"a74-69b7b352-273ad3fd124b3281;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 686\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2676,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"fad8ab64d2728fc05a9465912bfe1546","sha1":"05f11a2f98fe596b39add39844022c5005e709fe","sha256":"62075b2704f32c9a195cb7f30616b0b0751649fc285fac5249e2b813a3cc58ce","sha512":"745aa212c4f955b27b8655a71da41a7621b73b1b38238aec7f2efc8cc6df19e34fb213a36bbd7d2b36768f3368be6d55ba2f18a6898995d11aec111bc4632ffb","ssdeep":"","tlshash":"3751c448aebb9464a93b347d5e9fa4007e20d4338008dd267e4dd1c0dfc4128e1aaade","first_seen":"2025-08-04T00:21:48.337117Z","last_seen":"2026-04-07T14:39:44.435272Z","times_seen":6,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":82,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/orbitlist.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.530Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/orbitlist.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"2521-69b7b352-d896768f1b6d0c62;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 2483\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":9505,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"261f693709b39d578d409f4eb36c3d1b","sha1":"ddd9cf419d6c8b1756d2c6be83ac0ba9ea0bdf7d","sha256":"ac714e1faa733bd18b8edff3641e120576e7abb42c8e19cb9adf02730303d66d","sha512":"40e9a29e2c075f631e32e3b3297335a7d15a86b1c02a3ea047b9349a7047ba4b712d2e6fee51dec11772191865cfcdf2e67e80c96e7c17823620999375e1459b","ssdeep":"192:IKM3xMhM1Z9MnMYM52SMHMVFMxM9M3MVL3MP4YfzSmXMJMeMJIMaCMRMUMLMZMt6:IKM3xMhM1Z9MnMYMVMHMVFMxM9M3MVLd","tlshash":"35122527fb75232799eb11276f5f184073a1e3ab900cd1143d4e93241f52e8ca26dbe6","first_seen":"2023-07-11T01:47:11Z","last_seen":"2026-04-07T14:39:44.436095Z","times_seen":20,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/fonts/fontawesome-all.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /fonts/fontawesome-all.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:52 GMT\r\netag: \"adc7f-69b7b350-535a2db62569de75;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 245436\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":711807,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (3394)","md5":"5b5ff38e6e82b634e9546ee944f81a7e","sha1":"0a888fec38b7d791f69c00f1b593c2c73cfcd426","sha256":"211f435f089177d09338e3c0e8fb1d57d84a50b296a3480775caaec9777d966a","sha512":"f9b1a768f3af2f4ecf29cea8358072daf8c11b4a016f4ed211357605f7927fe8d7cb466c114a882ecdea219258316e5e20cee9db8eb9daa53f95838f1cbc67bf","ssdeep":"6144:qAommf7dsND/7sRSihOH/wOfgBJMOr5sKmq/hR:AfumhO46A","tlshash":"4ae4c7a8d364a3fc8dc597f8862514b4b84e51af61e0d72492bdc6e0378b4dce2ed8c5","first_seen":"2023-03-09T11:13:06Z","last_seen":"2026-04-08T19:31:59.49005Z","times_seen":91,"resource_available":true,"data":null}},"time_used":87,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/main.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.535Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/main.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Tue, 17 Mar 2026 07:50:57 GMT\r\netag: \"70b8-69b907e1-7c5a6741f59db46b;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 8153\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":28856,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"1697bd4bc6d0c5f5ed1a344770953764","sha1":"024d67b0b5a6f682990cc310074813484522e127","sha256":"a6ce6ba4456e6c53f787818bcd471affb5a96d737905dcdec71c56b159cc3186","sha512":"d36bf1bb56f577f748926c62287ab7d4c786d1a15754caa60a49aa7b6e3f4b468f5a2d566dd800d246e28cfa3f24ee81b5e8202f626e52358d43b8bef293ef47","ssdeep":"384:8SOKqny4tfdF3Tcn83cm6vGdKpR7GGtZqQ/ILa5Ii3S9/cmaUB/gA9m9B2:PTgnW83cm6vJvGG3uKIMSt7YwCB2","tlshash":"f8d26386ffac2827857be1595d6f10cad23c4036a942083ffcac886499e557d636ed3c","first_seen":"2025-08-04T00:21:48.398124Z","last_seen":"2026-04-07T14:39:44.437786Z","times_seen":4,"resource_available":true,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/phone3.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.507Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/phone3.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Thu, 26 Mar 2026 14:19:09 GMT\r\netag: \"2b642-69c5405d-c0619f7398b064e6;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 177730\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":177730,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1055 x 1067, 8-bit/color RGBA, non-interlaced","md5":"554a72c45c9f40ee6cfdc99571f4e3d5","sha1":"238c2cb3decf08ad766e59c8f37cb8f35d9b78c6","sha256":"6493dbd2610d66b98c9e7b2126e8c4c046d23ff03d9b9192062d1a2a7b194850","sha512":"7400ffb4be417f2c04b38e8d80d6a0f967b760bd70fd46cdbbefe9540af66fe1399cc713e6f37b52430da969c00cb4342449b4af61ab581eaea275adcab1b904","ssdeep":"3072:RXApzsojigOMzGqsMc7otM0kYXC4fdsB39VTpuRmvgoNi1nsUAkfEejTS:RwlFZOM9BcqXC4fd0puRmYoNUAsf3S","tlshash":"a704132e5798eb785cbc3231056b6536d6c956cb1223a2fae27d08c31a58aff014cf56","first_seen":"2026-04-07T14:36:37.477575Z","last_seen":"2026-04-07T14:39:44.438623Z","times_seen":2,"resource_available":false,"data":null}},"time_used":76,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":52,"receive":24,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/if_Bitcoin_2745023.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/if_Bitcoin_2745023.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"3eb0-69b7b352-5d961adac02d6d6e;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 16048\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":16048,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"fdece395439d4b2748e441db3d35c3c6","sha1":"aee21fac50de6e25e75ed669efc56a0b904d299e","sha256":"5f392306920ffcc7f344826bd101b1d102f7acd870387f05a9beb2c3b9aaa211","sha512":"229ada7921d89b2f4a7d5630d6c5e58e8afdacf4b1db3c995c243585b72d9edecd1ce542b0e2cbd3a72e3ae9e09ac65fccbd91a83a9f9eebfa58e5a43cc8ad3b","ssdeep":"384:f0VLk1tvWNRb2zSTnuzDanB0QnaTAHpxJUJ7dYyXU:f6Aol+muz2nBNaTAJTYXU","tlshash":"fd72cfd3839395e18462702a783e2a71fc5d9ec5030f84d63799632efe2ac62fd91056","first_seen":"2025-03-04T09:56:44.18747Z","last_seen":"2026-04-07T18:18:12.19472Z","times_seen":113,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/7d/common.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:24.135Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/7d/common.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 37623\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 01 Apr 2026 17:19:37 GMT\r\nexpires: Thu, 01 Apr 2027 17:19:37 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 01 Apr 2026 09:16:09 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 508787\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":126936,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (1729)","md5":"500130862e275c00117feb8d530e42f6","sha1":"faccbf3de9e60f6c65b2be4fc38cc28d64c03711","sha256":"9dbb2f90542785244bd93cc0dfe6489f020559bd82fd643614a7f09039c95500","sha512":"dd2703914b8f7067ca158d5478d60baecc98c42b61f6913adbda958d5952449156aa02d7446f65f52baf6240470e769c853b0bbe2f64edcb98c36b525d1a30e2","ssdeep":"3072:uKMQhWIJmdTdKQlH+NoHqClJFuO+iXeFXnybCtnpWrZNaQ1PTHVkSr/cM3OXU5cJ:uKMQhWIJodKYeNotbuTln0Cc8Q1bHVkN","tlshash":"03c3d6d9319370b3bf71a89440a70106b29aa499b45dcd6db1fdc8f3aef185601f9b38","first_seen":"2026-04-01T17:20:30.421527Z","last_seen":"2026-04-08T17:56:35.713863Z","times_seen":5609,"resource_available":true,"data":null}},"time_used":34,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"user_akbkyowd9geqr98","sensor_type":"yara","title":"Private YARA rules","description":"Private YARA rules","scan_date":"2026-04-07","alert":"Hunting_JS_WebAssembly","trigger":"maps.googleapis.com/maps-api-v3/api/js/64/7d/common.js","verdict":"audit","severity":"audit","comment":"","link":"","meta":{"description":"Looking for manual construction of JS wasmCode used in exploits","rule":"Hunting_JS_WebAssembly"},"detection_meta":{"user_id":"akbkyowd9geqr98","detection_id":"01K9VTTZ58QH7V4PSKSDDP3N4H","visibility":"private"}}],"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-07T14:39:18.235Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nset-cookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba; path=/; secure\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nalt-svc: h3=\":443\"; ma=2592000, h3-29=\":443\"; ma=2592000, h3-Q050=\":443\"; ma=2592000, h3-Q046=\":443\"; ma=2592000, h3-Q043=\":443\"; ma=2592000, quic=\":443\"; ma=2592000; v=\"43,46\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Material Design Lite","description":"Material Design Lite is a library of components for web developers.","website":"https://getmdl.io","common_platform_enumeration":"","icon":"Material Design Lite.png","categories":["UI frameworks"]},{"name":"Bootstrap","description":"Bootstrap is a free and open-source CSS framework directed at responsive, mobile-first front-end web development. It contains CSS and JavaScript-based design templates for typography, forms, buttons, navigation, and other interface components.","website":"https://getbootstrap.com","common_platform_enumeration":"cpe:2.3:a:getbootstrap:bootstrap:*:*:*:*:*:*:*:*","icon":"Bootstrap.svg","categories":["UI frameworks"]},{"name":"Font Awesome","description":"Font Awesome is a font and icon toolkit based on CSS and Less.","website":"https://fontawesome.com/","common_platform_enumeration":"","icon":"Font Awesome.svg","categories":["Font scripts"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Swiper","description":"Swiper is a JavaScript library that creates modern touch sliders with hardware-accelerated transitions.","website":"https://swiperjs.com","common_platform_enumeration":"","icon":"Swiper.svg","categories":["JavaScript libraries"]},{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]},{"name":"jQuery:3.3.1","description":"jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.","website":"https://jquery.com","common_platform_enumeration":"cpe:2.3:a:jquery:jquery:*:*:*:*:*:*:*:*","icon":"jQuery.svg","categories":["JavaScript libraries"]}],"data":{"size":373047,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text","md5":"a9f307f43907da5a9f8e246cf59d2ee6","sha1":"f181ef95e31cfcbce3b7a0e233fd1fefdc8d57a9","sha256":"5e1e45c3e2adc802f2fdb66b324be4a266b01250182a9313e8d6dc0bf0a49776","sha512":"2bffee2c75d836fa8cd7efca6d972f38f28497d71f04a6027d2308bc2d79ee471b8b881f7360a9eb71e9d4ae88211ccc2f71e06ea7056a548b4f00db754e1e24","ssdeep":"6144:BBBV65cbaVDY13Cfi5oqX8VZcB7NDe4HNcf28SxEkw4JfJ2QHmMVUAoSgA+4baEC:BBBVScbaVDY1IaEkwjO7jq","tlshash":"f5840a61960012d96327ca1bafd4b7641338d133de170eebf5a62c19c7caa8911e3b4f","first_seen":"2026-04-07T14:36:37.48051Z","last_seen":"2026-04-07T14:39:44.442005Z","times_seen":2,"resource_available":true,"data":null}},"time_used":134,"timings":{"blocked":41,"dns":1,"connect":16,"send":0,"wait":46,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css?family=Playfair+Display:400,400i,700i,900,","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.503Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /css?family=Playfair+Display:400,400i,700i,900, HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Tue, 07 Apr 2026 14:39:18 GMT\r\ndate: Tue, 07 Apr 2026 14:39:18 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6226,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"042ba809382c1c5551f71c1ed77c1857","sha1":"de7c71bbf8f02cd06a6fcddc512f02de4716cfad","sha256":"f165e81bea5913513be4d25b4867eb9cbc109fd166e0f837b2d9f85d95933735","sha512":"2cbe588d97afc98c77d1e47302092aa2c1429b6ffe537c034af26e6ffbecc7649dcb2f4d00ccac851f66a255cbf1bda576fa5bf2d930b2bf6bdbee5a6c8fee62","ssdeep":"192:JJkV2SMkV2qkV2GXkV2cJpV2SMpV2qpV2GXpV2cFr2om/mr2vpr2btHr26+r2omb:JJU2SMU2qU2+U2cJr2SMr2qr2+r2ch2I","tlshash":"6bd1aca2066ba25066831cc323cf7e22899f71507085963daffe1d9c6c5bd66d2a4b0d","first_seen":"2025-11-20T23:18:34.344649Z","last_seen":"2026-04-07T14:39:44.443711Z","times_seen":4,"resource_available":false,"data":null}},"time_used":314,"timings":{"blocked":132,"dns":1,"connect":15,"send":0,"wait":31,"receive":0,"ssl":132},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/dots1.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/dots1.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 17 Mar 2026 12:54:07 GMT\r\netag: \"2cc-69b94eef-20afe1e9d5928591;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 716\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":716,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 80 x 8, 8-bit/color RGBA, non-interlaced","md5":"158f77917f595d97603e4d3171fcb4dc","sha1":"fef41653026ff7a1b49fd9fe33ef6a71ad8ea526","sha256":"4af4f071b752cdb90d7ce1301079f7e17d1c34d9877d5f03bdf64867b97a4797","sha512":"a51f3202f516cf875a0c954df30721da8e5456fd771f3a2c5c6b066e9884f7598647f0905de1e2e58d0325abeef4635474e50bbfdf69bb1662b907e94e6bf45f","ssdeep":"","tlshash":"5c0144e55a8019c0eb4d5932c4fe4007f07a040abf91f429b6e3fc9359211a90f9eec2","first_seen":"2026-04-07T14:36:37.475651Z","last_seen":"2026-04-07T14:39:44.444595Z","times_seen":2,"resource_available":false,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/theme-plugins.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.524Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/theme-plugins.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"4d9cb-69b7b352-4051e887788628d9;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 89474\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":317899,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (8668)","md5":"765c60e7ab38bdb8a1091abab41c1eb7","sha1":"e3c71fbc3a29f2d3f3fc8516ce1f19e27e1ce68a","sha256":"a6f5abe0f0da792bb0fbee645459f82e734d2174582539bec80167a30fcfe6e3","sha512":"87cb7c4ed5f772718e391908f2afbe37c06ac423327a466f32839efe31ea175387ae4d401f51bffb11c06ac4e69cdd7864adbe36005242cd7d07cafc458c60be","ssdeep":"6144:Tv8nK1lXD8a3DT6uYv2Zy3JxldUAq+VrAWc:TvZXD8sqdUW5c","tlshash":"38644b887262713243ff61e5906f424eb332967a740a8068b468d9e87d78c56723ff7d","first_seen":"2025-11-20T23:18:34.402931Z","last_seen":"2026-04-07T14:39:44.446121Z","times_seen":3,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/if_etherium_eth_ethcoin_crypto_2844386.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.515Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/if_etherium_eth_ethcoin_crypto_2844386.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"4da9-69b7b352-b6997e57b2b5c234;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 19881\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":19881,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"7842668af4281cc55e5cb4df075f1efa","sha1":"3df8ca08a12f9d07b22316e08336255b5ce42d4f","sha256":"eccaf788d76ce63758eacac438c38b41f023db28af47194d9027f40800f4fabf","sha512":"55227a512939c24689580ef7aaee795537e750ba384298610345d2ffa296726078a7ec4472d0663a66cd3bbf62ca361a00f6620d2b29d0209c36ef567d5ba74b","ssdeep":"384:eIXt36aWU0IxGbwebGofhNoi9GnYp+iMPkNhxZ8U3rmVl+3Gl:rd36xU0SG3GofhSEHNPZr3qVl+g","tlshash":"2c92d035e25add0b8a70efa8e24b7f300da33951de75c44a5a7d1d222c81c59f8bd204","first_seen":"2025-03-04T09:56:44.17253Z","last_seen":"2026-04-07T18:18:12.034991Z","times_seen":108,"resource_available":false,"data":null}},"time_used":77,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":50,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/swiper.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.528Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/swiper.min.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"1d9d8-69b7b352-9f7fb4ad71ea1892;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 29719\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":121304,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65276)","md5":"b117060487d6ec17a9af7c5604a2c149","sha1":"40a26a977cf1c6b060668c9680cf71a6c8e91e0d","sha256":"34200a216f42b734a9723a5367645bb517c31e036b42e2bf6a480c62880fc12c","sha512":"ed7117d767aaa81dc7633866334e0610334fa921f6f6e1076ebd1818398c657239a8a7d924f429a5bbf932ac9976ac0203d648c745a210f8a5000cc72d0d4c2b","ssdeep":"1536:nI2qg0G1fiPJWmb0vCqIA9GK8FEliAfmrGMy55T1s53V7gZxj8rvHgZsUOUBDBWf:V4b0akdSyBohgZu7HgZsUOUFBWqjxUx","tlshash":"41c3094eb390619511e36256529e9241a3b72409780ad0ac35b6cce7adbde4c13bfffc","first_seen":"2023-03-08T00:01:27Z","last_seen":"2026-04-08T21:22:45.835508Z","times_seen":955,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/svg-icons/sprites/icons.svg","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"other","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.638Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /svg-icons/sprites/icons.svg HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: same-origin\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/svg+xml\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"9c4f-69b7b352-f101f5503188a3fe;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 12319\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":40015,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"cbb7d56609885c61d7a2ec6ae3619249","sha1":"6896d444bbb882514c4005e15e2edc83e492be22","sha256":"c5f152a721e3af021146de03a52670d364d3ce3b8709df8ab4441156a7dd8daa","sha512":"3e2c08cdf82ed631d1f090a240dd3211baa6ae2b8b264410e4a6cb2bc1fcbb137f4aaf814f5e8b288400a23b3dce85f21df5a9518487be8edd6c3291aceaf171","ssdeep":"768:K7aVYLYsoiGAkLg86cc22P22cYrAFvA5GsRyqfgsFXkWNtQy9emn:iaVYuA66WvA5dFfpF7Q2","tlshash":"65031324a9bc309e2a5603c54a7e41d59b3db27332a5497679bcdae04f0fe17db43e80","first_seen":"2025-11-20T23:18:34.365768Z","last_seen":"2026-04-07T14:39:44.454939Z","times_seen":3,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/dotted-map.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.725Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/dotted-map.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"1b80b-69b7b352-658052861ed0cdf9;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 112651\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":112651,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1660 x 939, 8-bit colormap, non-interlaced","md5":"fa6a8f1994963df50e70356657e2c8c9","sha1":"0cfa2674882d21af99296a49bc78276b60f3fc98","sha256":"467deddb2b9156350caa31955d32e1ac969cde48f304ad7be9608437d1e746fb","sha512":"1024eba8ea6f00df8fc534085a2f951e9c2b9f39be294c8283a24727a07c31056a73b7e6699e854e64093a6f65f2b85405f827b056b5b834f2121a78340b6f84","ssdeep":"3072:Mx3QNvl/69WXe57YjW8/UvqoeZKiCGWyFnS4/Kr:uQdZCWXYKDOqoeZKicqS4C","tlshash":"e0b312c9390d8c6e5dd99171ad531b716c4aa41fe8f2faad0fb328a392d044c778e532","first_seen":"2023-11-10T17:35:54Z","last_seen":"2026-04-07T14:39:44.455834Z","times_seen":8,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":17,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/bg-2.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.731Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/bg-2.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ncache-control: private, no-cache, no-store, must-revalidate, max-age=0\r\npragma: no-cache\r\ncontent-type: text/html\r\ncontent-length: 1251\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":1251,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF, LF line terminators","md5":"8150f458ed6fb9b1db4e5cfa57a1a281","sha1":"6e5726854d28687b560d7fdcb5c782c425c7dfb9","sha256":"4c13d452dd5d49671bd93ca32f2b4f85c78e39b6ab0ad1f38d98ed267f8fd896","sha512":"4cc6a112673aef8bb8bb8a385c26791b805d43bb707b509880e894f1c83bab4e16f13de187036c5f660c3bec1d286258396b7bde65c5d7945c5019665196818c","ssdeep":"","tlshash":"c021353ec1c1560ae0271164fbc1f7a86669825291970f703b9eb176f6cd0bb56a36c8","first_seen":"2024-02-08T16:48:55Z","last_seen":"2026-04-08T23:42:56.209801Z","times_seen":116963,"resource_available":true,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/fonts/icomoon/fonts/icomoon.ttf?10si43","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.760Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /fonts/icomoon/fonts/icomoon.ttf?10si43 HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/fonts/icomoon/style.css\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/x-font-ttf\r\nlast-modified: Fri, 02 Nov 2018 21:12:20 GMT\r\netag: \"4afe0-5bdcbdb4-796362567c7ee38;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 150938\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":307168,"size_decoded":0,"mime_type":"application/x-font-ttf","magic":"TrueType Font data, 11 tables, 1st \"OS/2\", 14 names, Macintosh, type 1 string, icomoon    ","md5":"bab8cf81a530d89b36f24a80649c5e25","sha1":"998d750b6a0b65945f5cdf98fe7012cf27cc4b4e","sha256":"ba9f66e8a9ba6c03f4bd2acb263d493000ba0760eade817ada4c6ba160bbe2dd","sha512":"2b712c29fa65f3c7921517db565565eebeafdf1b4a7311862eeb2ee7d51133c3beff18ff2361ecac867ee3e06043c1cd89bfa8135fdc0fbc960aeca04fe6c98b","ssdeep":"6144:6/9UTdx2Q2mxV8AYq77UpZONY/kF1llTIhea9cD29zUKe+GN5iLs4jFbTePUnrS1:6+TdgQ2mxV8AYq7AOOkrIh9cD29zUKeN","tlshash":"6b645c1bdbcbdf6ec51797fe8d1122604ec99d20e53ea7c662862c18f81d4d08e987c9","first_seen":"2023-04-17T00:55:35Z","last_seen":"2026-04-08T03:59:41.686596Z","times_seen":697,"resource_available":false,"data":null}},"time_used":23,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:19.129Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://usdtgrowx.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/json; charset=UTF-8\r\nvary: Origin, X-Origin, Referer\r\ncontent-encoding: gzip\r\ndate: Tue, 07 Apr 2026 14:39:19 GMT\r\nserver: scaffolding on HTTPServer2\r\ncontent-length: 23\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\naccess-control-allow-origin: https://usdtgrowx.com\r\naccess-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length\r\nserver-timing: gfet4t7; dur=17\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":3,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"JSON text data","md5":"8a80554c91d9fca8acb82f023de02f11","sha1":"5f36b2ea290645ee34d943220a14b54ee5ea5be5","sha256":"ca3d163bab055381827226140568f3bef7eaac187cebd76878e0b63e9e442356","sha512":"ca4b6defb8adcc010050bc8b1bb8f8092c4928b8a0fba32146abcfb256e4d91672f88ca2cdf6210e754e5b8ac5e23fb023806ccd749ac8b701f79a691f03c87a","ssdeep":"","tlshash":"c7200000000000000000000c00000000000000000c0000000000000000000000000000","first_seen":"2023-03-07T01:10:31Z","last_seen":"2026-04-08T23:40:02.602429Z","times_seen":339377,"resource_available":true,"data":null}},"time_used":45,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":45,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/logoup.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.505Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/logoup.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 27 Mar 2026 14:00:39 GMT\r\netag: \"f90e-69c68d87-846f83fc302b33e0;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 63758\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":63758,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 925 x 210, 8-bit/color RGBA, non-interlaced","md5":"73d62f8480b7834979bd7bad2850e3ff","sha1":"173395749a136170fc52164478c89368ed46604d","sha256":"eee92b1e50fdd6cb04dd244fc2bba12b26a90b20072ea46489cf1553f51aeaa6","sha512":"a71e857d6cf4f52a0731fd78dc70543745794a6adc14669e3026ef632d59a991191ebc7f2b86b4d366a02040a64b3d17d23188db8a26bedfdbb084b43d20ffc0","ssdeep":"1536:3hN7JQKnAJuGxtJuuI/OlznIaz76jxyjyS:3hN7Jl+uS8uIandGS","tlshash":"b953f1b421c22cd7e6414d9103dc8977a319a1d7f5a84f4d7e23e72a33686e1ba25b0b","first_seen":"2026-04-07T14:36:37.481918Z","last_seen":"2026-04-07T14:39:44.459583Z","times_seen":2,"resource_available":false,"data":null}},"time_used":53,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":18,"receive":35,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/crum-mega-menu.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.523Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/crum-mega-menu.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"272a-69b7b352-7c26e341db57231a;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 2988\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":10026,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (2535)","md5":"cc524ce972ec239f626bcc5646357783","sha1":"985af94c9ae81e9895ac425c8f8b17ccef8c0a1d","sha256":"58a0ee33a967273302a4baa040abb04a88b7f0b2bc00ba9e4f16ffc1408c3be6","sha512":"c58175f9463784e08000673d0022097a9ca11ffcebd59052325dd31499cf91354cede18e76fdc01086df5c880295c9dfb0842e4a81e8428bddccef0e3c9b3ca4","ssdeep":"192:jYdPCMSPe2vJaiFFCksRDPIb+XN6S+OzVXeigzaOraL:APC6dRq+gS+OYigz/aL","tlshash":"1422b6d8f65d317942f6227e926e63c96a3f0072561a9c32f8b849b01c3895d03e7fe5","first_seen":"2023-07-11T01:47:11Z","last_seen":"2026-04-07T14:39:44.461185Z","times_seen":7,"resource_available":true,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/usdt.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.887Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/usdt.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 17 Mar 2026 13:24:49 GMT\r\netag: \"2143-69b95621-4461b444c699da9f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 8515\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8515,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced","md5":"79013be749f86e83ef8f662423876c3c","sha1":"4825a92bd07c0af084797d58df31a8d5337b290c","sha256":"4a197b46cb716a5815b4932ca0c083e704403813a7f868173b80d3265cacb731","sha512":"aa8cfd2d7d1956ae22d7eefbecf0d1710b44f3c512221b3ae3167abb3f47d3bf425f9586f523180218197aa731e5fab6ad42d3fdd1c16fe40fe5e0aa09e5734b","ssdeep":"192:ia9m4I4pzPzjkHhadJBkIX3VJdCzmTltu1I2zGqH5rd1L2bga8:i8mbkYHwJBkmCzmnQIYGS5r/K8a8","tlshash":"0402af63566ab6c740838d6b53f7b87e8b12368e5d1de870b58280a2767f1f9301612f","first_seen":"2026-04-07T14:36:37.491362Z","last_seen":"2026-04-07T14:39:44.462154Z","times_seen":2,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"maps.googleapis.com/maps-api-v3/api/js/64/7d/util.js","fqdn":"maps.googleapis.com","domain":"maps.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"142.250.178.74","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:24.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 16 Mar 2026 08:38:54 GMT","end":"Mon, 08 Jun 2026 08:38:53 GMT"},"fingerprint":{"sha1":"B7:E6:53:75:FA:B8:E8:B5:11:AC:F7:22:E0:8B:AC:53:3E:61:05:64","sha256":"46:48:37:84:82:72:61:A1:32:78:58:13:38:99:8D:2A:19:CB:C4:47:8B:BC:B1:AC:5F:6C:F4:91:6D:BB:DE:BB"}}},"request":{"raw":"GET /maps-api-v3/api/js/64/7d/util.js HTTP/1.1\r\nHost: maps.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"maps-api-js\"\r\nreport-to: {\"group\":\"maps-api-js\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/maps-api-js\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 71397\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 01 Apr 2026 17:19:37 GMT\r\nexpires: Thu, 01 Apr 2027 17:19:37 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Wed, 01 Apr 2026 09:16:09 GMT\r\ncontent-type: text/javascript\r\nvary: Accept-Encoding, Origin\r\nage: 508787\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":310651,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (524)","md5":"8478577db76ab2d9f07eb11cc54c714a","sha1":"5499b10b74a102893869a20cb24b97a182f3164c","sha256":"c91435886d0a6f8786c96261096dc888b6da64b71b87c0a6f9b3705220febc3c","sha512":"a38b24da73d01769256a3650bc5679130eefff8a711e737422faa131162e5c3471cc8286f31959299d804e9ae7f2665f7a7d9d6e10eba109c8381f06308369c4","ssdeep":"6144:R8meGZwaGxC3Kaxdj0UF3tkuwh7ty0WG6okjCk8Zxu0BFavKkSh:R8meGZwaGxC3Kaxdj0UF3tkuY7ty0WGv","tlshash":"bd64e67c71316b0ee973c85fc626301e90257edbfad488bdeee55146ea50989f0e0638","first_seen":"2026-04-01T17:20:30.405858Z","last_seen":"2026-04-08T17:56:35.665074Z","times_seen":5608,"resource_available":true,"data":null}},"time_used":58,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":33,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/usdt.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.512Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/usdt.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Tue, 17 Mar 2026 13:24:49 GMT\r\netag: \"2143-69b95621-4461b444c699da9f;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 8515\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8515,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 225 x 225, 8-bit/color RGBA, non-interlaced","md5":"79013be749f86e83ef8f662423876c3c","sha1":"4825a92bd07c0af084797d58df31a8d5337b290c","sha256":"4a197b46cb716a5815b4932ca0c083e704403813a7f868173b80d3265cacb731","sha512":"aa8cfd2d7d1956ae22d7eefbecf0d1710b44f3c512221b3ae3167abb3f47d3bf425f9586f523180218197aa731e5fab6ad42d3fdd1c16fe40fe5e0aa09e5734b","ssdeep":"192:ia9m4I4pzPzjkHhadJBkIX3VJdCzmTltu1I2zGqH5rd1L2bga8:i8mbkYHwJBkmCzmnQIYGS5r/K8a8","tlshash":"0402af63566ab6c740838d6b53f7b87e8b12368e5d1de870b58280a2767f1f9301612f","first_seen":"2026-04-07T14:36:37.491362Z","last_seen":"2026-04-07T14:39:44.462154Z","times_seen":2,"resource_available":false,"data":null}},"time_used":78,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":71,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/bnb1.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.517Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/bnb1.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 20 Mar 2026 16:36:48 GMT\r\netag: \"d01b-69bd77a0-9c21cb9351ed8d66;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 53275\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":53275,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 705 x 704, 8-bit/color RGBA, non-interlaced","md5":"41eba8d61e4b81ae63b3430a5e2c4852","sha1":"0e69967d0a4ccd2babb0971f211ce6b9c3aa744f","sha256":"caa0fd4760ab6facd5da952b985dc5f4ba63949caef9ee43a9309342088ea16c","sha512":"725666a96f82f3230d1928f99a10cd8053de6e3b5571f898e2ef3527aec06fd5b2807fc79cd04cbff239fcdf5652c3b67947fc632f8646a5b53220cc395be231","ssdeep":"1536:6SWsdeVis5pO7KrZAmPAVROsW6o2MmDJWy:msdhmpO7MAmP2ROml8y","tlshash":"eb3302aa0a8ffd7197746e551bb30425f75f6dfe13c5b250823120eac25ae24c5a4e18","first_seen":"2026-04-07T14:36:37.507987Z","last_seen":"2026-04-07T14:39:44.464728Z","times_seen":2,"resource_available":false,"data":null}},"time_used":80,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":51,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/method-assign.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.519Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/method-assign.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"1fb-69b7b352-e6df80ecef68e45c;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 256\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":507,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"cba588a6047c2e00833892d355ce1271","sha1":"32ef91981406a8283a1cefd22616ff25ab1784d4","sha256":"a19c00f27bcbeeba051b39f97af28ce3cdbd2b5b0ec31a2b9644f3c19ee91a0c","sha512":"de3075b2cecf33555bf4e4c4a2a83eaa411b2edd6490d006f8d8f5063ec4d48c915b5d973291bc429cb719e4951a3a784235bdc1b213f4a6accd44b22cccf81a","ssdeep":"","tlshash":"86f09e89e75c80e512263051246676cce02ec1f39c9ab5afdca0e39024f192e9a8fb31","first_seen":"2025-08-04T00:21:48.362399Z","last_seen":"2026-04-07T14:39:44.466462Z","times_seen":6,"resource_available":true,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/map-shortcode.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.522Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/map-shortcode.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"253f-69b7b352-ed445a834eb9c288;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 3495\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":9535,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9532)","md5":"d05a09c1e6c2c18a03595e8d22bb080d","sha1":"3b57dbce814cf93d6d31f3ce04b1d21fb854562b","sha256":"bc380b9d22ce708e1557baed20e94a5b0dfd920b7809ba185d4b9d153e5c2e2e","sha512":"ffb56b1e9b2375db364a0d8f3ae4c03f2cdd591340fb3b894ea2d4338e131e474b7bdf1bb2505db117afa88eb99bdcbed56a8811da3b3dfa3a94c3304c42409c","ssdeep":"192:EMGfV3nbTmFVpYuKWSvz3DOrplNncDH4bI3:wnblzirplNnA","tlshash":"bf1253ccb592b0599743b5b982bf110fa63b189414df9220d550e9e43e3a91f9227fdc","first_seen":"2024-08-20T08:23:52.96571Z","last_seen":"2026-04-07T14:39:44.46868Z","times_seen":4,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":78,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/material.min.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.529Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/material.min.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"1fc9-69b7b352-60c4ea49284a2442;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 2373\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":8137,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (8136)","md5":"bd26a69c4211d42518ba6dbc8ea67da7","sha1":"3763f38dce199f52124d39e13926c43d49367b8f","sha256":"de8d6ba66f96564b7af750dc791c0b9a1f3d70295a5000d050b6dcacf291e7f3","sha512":"b951ae566fbf0badca49b2973a5dacb3b48ab288d5d5b7fe01b295abd6558087f4420f7bdc120b92eb6e32b89c43426fa1e264cccdd2d9cb0fb93cdcfec39fe3","ssdeep":"192:kNvBZvXvTvZvpUdVUeUPNeI9jPCB0bIuSXIBq3wkc75losM:kNZZ/rBhUdVUeUPNeI9jPk0bIuSXIA3H","tlshash":"15f1430cb521334352f791f451eb8a4f613290b4d919445870afc6e45abee8ca2abfbd","first_seen":"2023-03-07T12:08:53Z","last_seen":"2026-04-07T14:39:44.46986Z","times_seen":225,"resource_available":true,"data":null}},"time_used":81,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":81,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/js/js-plugins/bootstrap-datepicker.js","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.531Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /js/js-plugins/bootstrap-datepicker.js HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: application/javascript\r\nlast-modified: Mon, 16 Mar 2026 07:37:54 GMT\r\netag: \"38a1-69b7b352-8bf037628a76a3e6;br\"\r\naccept-ranges: bytes\r\ncontent-encoding: br\r\nvary: Accept-Encoding,User-Agent\r\ncontent-length: 4057\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":14497,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text","md5":"28fcaa62cee7c582500724f8daf01abe","sha1":"4a49392197f92930177d8e14d94c0658986a8526","sha256":"3bb6e332c348c2da60bcc96160a5b7e53c0afaf25c88355a6420b98034098509","sha512":"95b231ef843740ea4a6d9fe6904f40bc33fb0c6ecdfda4705cb21dcecd322f1750f24b185d9b94de5d3bf97503bef6f78ca6402c4132376747185ae683df8ee7","ssdeep":"384:rXfAXaPvQUe/X+YOiux+6X/PeERphscJ1:rXoEvQUTLiSBuPg1","tlshash":"a55242c5e39e1547973620ad582d12ca663d807bdc068d3f7c6c41e169ecf2962acef8","first_seen":"2025-08-04T00:21:48.393929Z","last_seen":"2026-04-07T14:39:44.4711Z","times_seen":5,"resource_available":true,"data":null}},"time_used":79,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":21,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"usdtgrowx.com/img/body-bg.png","fqdn":"usdtgrowx.com","domain":"usdtgrowx.com","tld":"com"},"ip":{"addr":"193.108.130.24","port":443,"asn":965,"as":"WEBHOSTINGHOLDINGS","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://usdtgrowx.com/","date":"2026-04-07T14:39:18.723Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P384-SHA384","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ftp.usdtgrowx.com","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Fri, 27 Mar 2026 11:54:01 GMT","end":"Thu, 25 Jun 2026 11:54:00 GMT"},"fingerprint":{"sha1":"02:6E:A8:2A:BE:13:40:F6:A3:CE:E3:88:53:EF:F3:A8:08:0F:C8:EE","sha256":"E1:51:9C:1D:9A:30:55:9E:A5:EA:CC:44:73:A4:E1:00:95:48:DB:57:C7:30:2D:DD:44:98:28:50:ED:14:51:06"}}},"request":{"raw":"GET /img/body-bg.png HTTP/1.1\r\nHost: usdtgrowx.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://usdtgrowx.com/\r\nCookie: PHPSESSID=bvttfi1lebftrtok2rm8e1g0ba\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncache-control: public, max-age=604800\r\nexpires: Tue, 14 Apr 2026 14:38:56 GMT\r\ncontent-type: image/png\r\nlast-modified: Mon, 16 Mar 2026 07:37:52 GMT\r\netag: \"8af-69b7b350-53d42ebf9b464071;;;\"\r\naccept-ranges: bytes\r\ncontent-length: 2223\r\ndate: Tue, 07 Apr 2026 14:38:56 GMT\r\nserver: LiteSpeed\r\nvary: User-Agent\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"LiteSpeed","description":"LiteSpeed is a high-scalability web server.","website":"https://litespeedtech.com","common_platform_enumeration":"cpe:2.3:a:litespeedtech:litespeed_web_server:*:*:*:*:*:*:*:*","icon":"LiteSpeed.svg","categories":["Web servers"]}],"data":{"size":2223,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 300 x 300, 8-bit colormap, non-interlaced","md5":"4689b7c8132592206f501167968507d3","sha1":"52f2bafabeebc5aef574635867e473ed0f040ab0","sha256":"3fb8dae96e86446d6bf5db8167599d456600b5cf11ec28e00b47f70c9d45aa5f","sha512":"8d402c0dc25f42412029dac4a8041c80e42f4cf7487374ba96d3bdec67100750c117573c3628c051aa1f021ea25d945474f5afb618894de04931c468a662dddb","ssdeep":"","tlshash":"31414ba80f529b311e3b877230ee0d921cfad91ae41d173c2ab84d3323d60e542f7a91","first_seen":"2023-11-10T17:35:54Z","last_seen":"2026-04-07T14:39:44.472162Z","times_seen":21,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":17,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}