uspsmail95km09t3.ddns.net/a523583c2d546e5c9192e8f205ee3492/?token=aa49c2708631d3b724a8899094cc91004b3ff174b9efbe6d6d458c901df171281b5a5e76365bec6dcd39fceb4bde132cf1531972654cb1f0e150f8af888055cb
157.245.90.85302 Found 0 B URL User Request GET HTTP/1.1 uspsmail95km09t3.ddns.net/a523583c2d546e5c9192e8f205ee3492/?token=aa49c2708631d3b724a8899094cc91004b3ff174b9efbe6d6d458c901df171281b5a5e76365bec6dcd39fceb4bde132cf1531972654cb1f0e150f8af888055cb
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /a523583c2d546e5c9192e8f205ee3492/?token=aa49c2708631d3b724a8899094cc91004b3ff174b9efbe6d6d458c901df171281b5a5e76365bec6dcd39fceb4bde132cf1531972654cb1f0e150f8af888055cb HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 02 Nov 2023 14:14:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8; path=/
Location: ../index.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
uspsmail95km09t3.ddns.net/index.php
157.245.90.85302 Found 2 B URL User Request GET HTTP/1.1 uspsmail95km09t3.ddns.net/index.php
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
Hash d784fa8b6d98d27699781bd9a7cf19f0
dd122581c8cd44d0227f9c305581ffcb4b6f1b46
e16f1596201850fd4a63680b27f603cb64e67176159be3d8ed78a4403fdb1700
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /index.php HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Thu, 02 Nov 2023 14:14:56 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: f8c984bc0c4d6eb6817d5998d5603d08?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
157.245.90.85301 Moved Permanently 410 B URL User Request GET HTTP/1.1 uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5aa9212ff232f0bf740a088da40c3b4c
a3209068f2cf2a1240d476752734fa0da0ed1ff2
ce7f7c12445709fb92c5b8954b83467843154af1ce4f31c4d2b5847bde15cd15
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /f8c984bc0c4d6eb6817d5998d5603d08?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Nov 2023 14:14:58 GMT
Server: Apache
Location: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Content-Length: 410
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
157.245.90.85200 OK 12 kB URL User Request GET HTTP/1.1 uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (420)
Hash 06a4c13075c8cce3c429320ea0f3b7de
8c5ba142a6813633c9f5daacc85ee3f315e12dfe
51efea43f1a9b5167a5023d95f7a1fef1a8382990b58393286fbdbc15e022aa2
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Nov 2023 14:14:58 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/util.js
216.58.211.10200 OK 54 kB URL GET HTTP/2 maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/util.js
IP 216.58.211.10:443
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type ASCII text, with very long lines (3412)
Hash 16b73dc0de9683fb153b38cf6b5a6e6d
22261377b57577dcd8046a8970ef5c80aefdf5dc
d9f2fabff1b5fdcf2833cdcca025f1ec73c4889c41410e8a018cb1a84bb6ac79
GET /maps-api-v3/api/js/38/11/intl/nl_ALL/util.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 53998
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 14:38:56 GMT
expires: Wed, 30 Oct 2024 14:38:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Nov 2019 22:32:04 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 171363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/common.js
216.58.211.10200 OK 29 kB URL GET HTTP/2 maps.googleapis.com/maps-api-v3/api/js/38/11/intl/nl_ALL/common.js
IP 216.58.211.10:443
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint87:BD:C2:71:54:40:3F:F2:18:79:1A:89:F5:E9:BC:63:E5:EC:57:64
ValidityMon, 09 Oct 2023 08:10:33 GMT - Mon, 01 Jan 2024 08:10:32 GMT
File type ASCII text, with very long lines (1601)
Hash 2005cff13e09393e76f625c7c3e6d0b7
47d240c168d611f38c102cf2b6320ea582e69e46
50c76b6340f567a536017cdf52bef65fdbbec4d637253e823543059ac68c2fd1
GET /maps-api-v3/api/js/38/11/intl/nl_ALL/common.js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 28568
date: Thu, 02 Nov 2023 14:14:59 GMT
expires: Fri, 01 Nov 2024 14:14:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Nov 2019 22:32:04 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
uspsmail95km09t3.ddns.net/content/marktplaats/client.min.css
157.245.90.85404 Not Found 315 B URL GET HTTP/1.1 uspsmail95km09t3.ddns.net/content/marktplaats/client.min.css
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /content/marktplaats/client.min.css HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 02 Nov 2023 14:14:59 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
uspsmail95km09t3.ddns.net/content/marktplaats/normalize.112272e5.css
157.245.90.85404 Not Found 315 B URL GET HTTP/1.1 uspsmail95km09t3.ddns.net/content/marktplaats/normalize.112272e5.css
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /content/marktplaats/normalize.112272e5.css HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 02 Nov 2023 14:14:59 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/images/logo-mini-sb.png
157.245.90.85200 OK 24 kB URL GET HTTP/1.1 uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/images/logo-mini-sb.png
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type PNG image data, 135 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 43707dd65a8c8ec7754b7b45fd483488
f258a5de57dfa37baf13296da6055e8f8881d742
585262db6911000f59795831f9db7bb41477bcafb135c82b51b0473363134fcf
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /f8c984bc0c4d6eb6817d5998d5603d08/images/logo-mini-sb.png HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Nov 2023 14:14:59 GMT
Server: Apache
Last-Modified: Thu, 02 Nov 2023 14:14:57 GMT
Accept-Ranges: bytes
Content-Length: 23625
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
uspsmail95km09t3.ddns.net/content/marktplaats/favicon-192x192.png
157.245.90.85404 Not Found 315 B URL GET HTTP/1.1 uspsmail95km09t3.ddns.net/content/marktplaats/favicon-192x192.png
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /content/marktplaats/favicon-192x192.png HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 02 Nov 2023 14:14:59 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
uspsmail95km09t3.ddns.net/content/marktplaats/favicon.ico
157.245.90.85404 Not Found 315 B URL GET HTTP/1.1 uspsmail95km09t3.ddns.net/content/marktplaats/favicon.ico
IP 157.245.90.85:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Certificate IssuerLet's Encrypt
Subjectuspsmail95km09t3.ddns.net
Fingerprint91:8A:69:96:96:66:0E:E9:DB:6A:6B:21:48:3C:3A:F3:BF:14:62:8E
ValidityThu, 02 Nov 2023 12:03:26 GMT - Wed, 31 Jan 2024 12:03:25 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
GET /content/marktplaats/favicon.ico HTTP/1.1
Host: uspsmail95km09t3.ddns.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Cookie: PHPSESSID=655c31fc1bcdaf78f3730802515004a8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 02 Nov 2023 14:14:59 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
devilsms.live/css/usps/main.css
0.0.0.0 0 B URL GET devilsms.live/css/usps/main.css
IP 0.0.0.0:0
Requested by https://uspsmail95km09t3.ddns.net/f8c984bc0c4d6eb6817d5998d5603d08/?token=ff9014a25c7b0ca8e5ce15b47c1126b058aeb50a038a381a07a5a4ce1e3205dadeb93b9a355048f3d1c4887030339d864776701008020a7fb9e1effc32bafaef
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /css/usps/main.css HTTP/1.1
Host: devilsms.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uspsmail95km09t3.ddns.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache