r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13828
Expires: Mon, 30 Jan 2023 12:06:34 GMT
Date: Mon, 30 Jan 2023 08:16:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16091
Expires: Mon, 30 Jan 2023 12:44:17 GMT
Date: Mon, 30 Jan 2023 08:16:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11111
Expires: Mon, 30 Jan 2023 11:21:17 GMT
Date: Mon, 30 Jan 2023 08:16:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 07:43:11 GMT
content-type: application/json
age: 1975
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: T8pB/gqX8YaWv440GhfL9vmmblJRfd+AZNhOkIIfecU5TdosZpJ4I9EasvAVCRgL2Sg6MeUtO0E=
x-amz-request-id: CNHQ7PZAVSSMTS98
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 07:21:42 GMT
age: 3264
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
uiopis.awful.top/
155.94.154.32301 Moved Permanently 162 B IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 30 Jan 2023 08:16:06 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://uiopis.awful.top/
Strict-Transport-Security: max-age=31536000
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 07:41:41 GMT
age: 2066
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11078
Expires: Mon, 30 Jan 2023 11:20:45 GMT
Date: Mon, 30 Jan 2023 08:16:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d58cd69ecfac29b79309466ddfab441d
30f01870805aeab1093c7164718da10a56174a78
dede4bb0ca6d8beab34b583dd8372687154645ea63442d190934027bc942b184
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DEDE4BB0CA6D8BEAB34B583DD8372687154645EA63442D190934027BC942B184"
Last-Modified: Sun, 29 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21518
Expires: Mon, 30 Jan 2023 14:14:45 GMT
Date: Mon, 30 Jan 2023 08:16:07 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 319f5b8cc6d59bd45ef603f80791d9f9
949f5db28949fcc90cf7e8aa6838ef8ccab1da97
3637e99c4c3376f9455c28fd28f557395c262e4faf38a792c665f374b82aab49
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3637E99C4C3376F9455C28FD28F557395C262E4FAF38A792C665F374B82AAB49"
Last-Modified: Sun, 29 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9300
Expires: Mon, 30 Jan 2023 10:51:07 GMT
Date: Mon, 30 Jan 2023 08:16:07 GMT
Connection: keep-alive
push.services.mozilla.com/
52.36.23.49101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.23.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qE2wLouVILSntU0tA/hWsQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HA5MiVd0tfdL9jwWApOcJ+yP3dc=
uiopis.awful.top/static/images/loading-icon-transparent-background-12.jpg
155.94.154.32200 OK 82 kB URL HTTP/2 uiopis.awful.top/static/images/loading-icon-transparent-background-12.jpg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type GIF image data, version 89a, 630 x 637\012- data
Hash 9e0373c2b4410c49439dfd822c5fd16e
427f86c03751b7e107fd282bbe32be18fc2e0898
05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
Analyzer Verdict Alert openphish United States Postal Service
GET /static/images/loading-icon-transparent-background-12.jpg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Wed, 21 Sep 2022 07:47:06 GMT
etag: "632ac17a-13ea4"
expires: Wed, 01 Mar 2023 08:16:07 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/config/urlConfig.json
155.94.154.32200 OK 886 B URL HTTP/2 uiopis.awful.top/config/urlConfig.json
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 8786fa67ab7d5babb234f138c1b2f966
8b91891fe27e4b4f3a3bf86e85cfb4c13b8faad9
a834a63b6fffc7eb769a1cc4ae00d5343763617c5665e1042629daa3c88fe1c7
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /config/urlConfig.json HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: application/json
content-length: 886
last-modified: Wed, 11 Jan 2023 07:07:55 GMT
etag: "63be604b-376"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7100
Expires: Mon, 30 Jan 2023 10:14:28 GMT
Date: Mon, 30 Jan 2023 08:16:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7100
Expires: Mon, 30 Jan 2023 10:14:28 GMT
Date: Mon, 30 Jan 2023 08:16:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 37439
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 41391
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a5e0a2bb1cacf87189373c118adf4
079974268f755aa38fb2cb32b8bcb748353c793f
1b0519e6bfca30a31b83d427302f7e22140f5b2da6f13cac37ea9c07abc42676
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f96350b-0dd8-46ee-a270-85f96329b7c9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11095
x-amzn-requestid: dc7c00e2-cd2d-4265-8763-3dd7dbe223ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkFyEhJIAMFjpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6f1-541a17c362e95dfa5e90f58f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: t1IqXPqG23nYmxAPOJFaZhKDD49KD8fREs8L59AGjx-1AzoQOeSO0A==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 37380
etag: "079974268f755aa38fb2cb32b8bcb748353c793f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 37247
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8d680cbaee5ef3e7b8e09b174ed6ecf
6651a0d3041920798240ea67e827c3d458769fa9
4c74e8ebff95e67da678248d3dc1d3f42d98c8a0d33d54d9d2bde36314c9f952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3678
x-amzn-requestid: 21cd1ae3-b769-418a-b7f8-5efa486db859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEvE-RIAMFpmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-6998009c289996563d78616a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Or8AGZIZTzP_EuRHaCfCNrdPQIw2OQW37MKvOTFQIQgO0h18ct0-Xg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:34:10 GMT
age: 34918
etag: "6651a0d3041920798240ea67e827c3d458769fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 36930
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
uiopis.awful.top/favicon.ico
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/favicon.ico
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /favicon.ico HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:09 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4d50ab2b282dc7c307bd87cf7bf4cd84
8fa65a18ba9f1286cc5f66dbafb622d6087b1ad3
62601eb8ace5add65f37b30fde746952dac1a797a09e27980b651a878fdde050
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62601EB8ACE5ADD65F37B30FDE746952DAC1A797A09E27980B651A878FDDE050"
Last-Modified: Sun, 29 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Mon, 30 Jan 2023 14:15:19 GMT
Date: Mon, 30 Jan 2023 08:16:09 GMT
Connection: keep-alive
ayu.xujianyun.top/click/queryIp
107.150.11.69200 OK 12 B URL HTTP/2 ayu.xujianyun.top/click/queryIp
IP 107.150.11.69:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /click/queryIp HTTP/1.1
Host: ayu.xujianyun.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://uiopis.awful.top
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:10 GMT
content-type: text/plain;charset=UTF-8
content-length: 12
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2
ayu.xujianyun.top/websocket/123
107.150.11.69101 0 B URL HTTP/1.1 ayu.xujianyun.top/websocket/123
IP 107.150.11.69:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
GET /websocket/123 HTTP/1.1
Host: ayu.xujianyun.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://uiopis.awful.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LQsiSHsN//J2X8bD4ZWNuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101
Server: nginx
Date: Mon, 30 Jan 2023 08:16:11 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: YfSDBrs16WI76ApiYpXgIa10jNA=
Sec-WebSocket-Extensions: permessage-deflate
uiopis.awful.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /__imp_apg__/js/sed-usps-70fc8edc-qa.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:11 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/axios.js
155.94.154.32200 OK 13 kB URL HTTP/2 uiopis.awful.top/static/js/axios.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash 03f188ed11b822c0644bfc3f331b0565
c0d4a276a76b8abb31adb83352af1fd5e28e83b3
3785e43028d17833a7f8cad70963ac1cf4195a2a1d21d3e63e45e657ccbab8bd
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/axios.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: application/javascript
last-modified: Sat, 10 Nov 2018 04:07:50 GMT
vary: Accept-Encoding
etag: W/"5be65996-a6f0"
expires: Mon, 30 Jan 2023 20:16:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 08:16:13 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: T0ZH1hXNoB6jtguc1LneBuShAW+pnL1xXkATYgstf9s/Ek+CPWrz2AkHZOlSFb4Uzx1M4Yl24Z8=
x-amz-request-id: PR33JFF0ZQ6CYPJT
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 178419
accept-ranges: bytes
set-cookie: __cf_bm=9AAppiH_n900ht5QHr3oa40x.y.0sIJ6oItIsyI0J08-1675066573-0-AXmkqWMWRG09jV5SBl2phLopMC4JhtZYKHgIWY6FqP445YjoqTt4XKy0Wpx2CS1yu4khpAHAV+ZVMaSzc+Sa+rk=; path=/; expires=Mon, 30-Jan-23 08:46:13 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7918c3a3d855fac0-OSL
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/logo-sb.svg
155.94.154.32200 OK 3.6 kB URL HTTP/2 uiopis.awful.top/static/picture/logo-sb.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0418f7120dc6cdd1d7aa0f8219ec9af2
3bb6c6edee3cc1c072117795611e2f67383cdc44
4b5aaf0dc8f59e71849219fae0a225aeb3914bebcc363753f22b5713627b0094
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo-sb.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 3557
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-de5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/hamburger.svg
155.94.154.32200 OK 546 B URL HTTP/2 uiopis.awful.top/static/picture/hamburger.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Hash 37c94e8de8729be2b0b9833bafa28f3b
c675396f6d65666dd6047b6e92cbd5429556dbac
b95f434286744e3dbaf5bc56f41d4ce2640da3038461502f7ac243a5931e9435
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/hamburger.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 546
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-222"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/logo_mobile.svg
155.94.154.32200 OK 2.1 kB URL HTTP/2 uiopis.awful.top/static/picture/logo_mobile.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f8ad388b3e39b860c97de0029ae98a21
9b032ef4ef4100dda1ba44be4836e6956b11387c
9685d6241f41ac71741d0ee9b242779f640cd3b1e64bb9bbcfb8798c5be503b2
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/logo_mobile.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 2060
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
etag: "632a2574-80c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/search.svg
155.94.154.32200 OK 1.5 kB URL HTTP/2 uiopis.awful.top/static/picture/search.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash ace472e478185d5f5ecd18c7d821eff7
c4c97892e41d3dd838912c42fd7a7b212f671d1b
c8b13b10e28b6b420151db578831a416b7c1805d7672eeb57e69dc697fda1e27
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/search.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1465
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-5b9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/tracking.svg
155.94.154.32200 OK 1.6 kB URL HTTP/2 uiopis.awful.top/static/picture/tracking.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2fb7b372aea93502ca192e5a633d1aa1
ce358703cce32b2176cf6ec94e17341cb6f93f03
58ad849f3ea489d0b2ee4f0dd1e4fd0b613a5248fd6b127a4479646ce4735593
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/tracking.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1561
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-619"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/location.svg
155.94.154.32200 OK 2.6 kB URL HTTP/2 uiopis.awful.top/static/picture/location.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 9b913bc84d41ec1c78da5889d36e1431
21b0075c9ec43a7ec769dde1d1ec8149b0686c0f
87d11356a8f76ef3af3c6d46bc4958cf3746e9a5b69e81d1df952b274319f539
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/location.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 2586
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-a1a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/stamps.svg
155.94.154.32200 OK 1.1 kB URL HTTP/2 uiopis.awful.top/static/picture/stamps.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 2e722b55bb31b83042310fbf5b45128d
cb6cd5c99c06ba8c04c7795dea4d13241eaaa045
0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/stamps.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1103
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-44f"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/schedule_pickup.svg
155.94.154.32200 OK 1.8 kB URL HTTP/2 uiopis.awful.top/static/picture/schedule_pickup.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d627861a77e755da093cae9b4db00b7b
fc5ac7d6bc6bf06f53b399848be232b35aa2c5b1
2a5e1fdc8e264327be71c3063cc6bf1dd8a618576310a5d26dc31ba8d6f83616
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1775
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
etag: "632a2574-6ef"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/find_zip.svg
155.94.154.32200 OK 1.5 kB URL HTTP/2 uiopis.awful.top/static/picture/find_zip.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e30aab66bad715f4fef4b6c42f8490d2
40be7a560b0687cf57c7ef0c0600ca08203a680c
aa6ff55c203834f667cbb01cedb0d409ff3b8f1b5a4de8c89a79b2e7034a8001
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/find_zip.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1471
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-5bf"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/holdmail.svg
155.94.154.32200 OK 1.4 kB URL HTTP/2 uiopis.awful.top/static/picture/holdmail.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4c8f3d7064524311ef86ddd0ded768d1
53ca5f29f603435821d07019cf123e430626f54e
2d45f10e1a6925e9500a4fb6e0223ce4ddfb492a914472ca8229fa01e3f94afa
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/holdmail.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1448
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-5a8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/change_address.svg
155.94.154.32200 OK 1.9 kB URL HTTP/2 uiopis.awful.top/static/picture/change_address.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3955e49630deb78cc1212ba20d83bafc
881ba502127d57c48784703683869abf4c8e28d8
b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/change_address.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1869
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-74d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/po_box.svg
155.94.154.32200 OK 1.6 kB URL HTTP/2 uiopis.awful.top/static/picture/po_box.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d3793852de4f419211843c1f4c05ddb4
8c7eccab4e3865a04553d720c150e4506d8990a0
7487a4b55d8cb9a837520dcb7ea5e50c915b5797c165f9bf7a7a3f8fe468a0a0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/po_box.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1639
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
etag: "632a2578-667"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/free_boxes.svg
155.94.154.32200 OK 1.1 kB URL HTTP/2 uiopis.awful.top/static/picture/free_boxes.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash dc788e0d1e8c7d9463a99882e622730c
a079d9612a9c119a9419b620d9dcfc141dd7e011
a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/free_boxes.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1066
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-42a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/featured_clicknship.svg
155.94.154.32200 OK 1.1 kB URL HTTP/2 uiopis.awful.top/static/picture/featured_clicknship.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1078), with no line terminators
Hash 375ed61778c1a49c8d1ea21f31748719
476785aa7126fbd9dcaa3bce84b57c3c120bd5a4
23edd9ac5dba678e1e5f97f2397a69d295e257c4a56e462c686557246081ffa2
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1078
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-436"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/go-now.png
155.94.154.32200 OK 20 kB URL HTTP/2 uiopis.awful.top/static/picture/go-now.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced\012- data
Hash 6311ef7a60f86d77aa48fcc48a675a31
96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c
70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/go-now.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/png
content-length: 19969
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-4e01"
expires: Wed, 01 Mar 2023 08:16:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/header-init-search.js
155.94.154.32200 OK 904 B URL HTTP/2 uiopis.awful.top/static/js/header-init-search.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type ASCII text, with CRLF line terminators
Hash d8cb563907e68e9649948c6f521efe60
f5b7cf8123929db8162a2af51d07dd11c21fbac3
fd1e9eadb5698c1bc534ef8a75303b3b67f5e1ab7d1b217b27b09da42aa5036a
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/js/header-init-search.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
content-length: 904
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-388"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/idxs-icon.svg
155.94.154.32200 OK 1.9 kB URL HTTP/2 uiopis.awful.top/static/picture/idxs-icon.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ff0c118bc3a45d92e2d45e57416abee5
9b5b3759e5e7e2148269063f1575d22cb2126b41
ab9283d446c093b7acf18a7e95a21a9b834b12f19f26e8776ff3407fc83e5b6c
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/picture/idxs-icon.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/svg+xml
content-length: 1876
last-modified: Tue, 20 Sep 2022 20:41:32 GMT
etag: "632a257c-754"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/social-facebook_1.png
155.94.154.32200 OK 1.9 kB URL HTTP/2 uiopis.awful.top/static/picture/social-facebook_1.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d1fed200f7befa569074a293cf2abed
11bacbc9debe99986d9a6e974e9a819aaa74be29
9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-facebook_1.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/png
content-length: 1873
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-751"
expires: Wed, 01 Mar 2023 08:16:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/social-twitter_2.png
155.94.154.32200 OK 1.8 kB URL HTTP/2 uiopis.awful.top/static/picture/social-twitter_2.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f6b06552f2054fecb5a3ab3956d7a79
c1257b76200738ad53147be110920f84efd479b3
248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-twitter_2.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/png
content-length: 1842
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-732"
expires: Wed, 01 Mar 2023 08:16:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/social-pinterest_6.png
155.94.154.32200 OK 2.3 kB URL HTTP/2 uiopis.awful.top/static/picture/social-pinterest_6.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 010bf7d7901ccaa3905cfe4b7c1cb50d
9c174f76a3ed50a173637d44793d6bc15a818112
67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-pinterest_6.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/png
content-length: 2325
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-915"
expires: Wed, 01 Mar 2023 08:16:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/picture/social-youtube_3.png
155.94.154.32200 OK 2.5 kB URL HTTP/2 uiopis.awful.top/static/picture/social-youtube_3.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash e38ff6af4b8ff088fcb2dc92410b759b
529c88413dbc330fa05a0629b2084ca7931f453e
c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/picture/social-youtube_3.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: image/png
content-length: 2461
last-modified: Tue, 20 Sep 2022 20:41:18 GMT
etag: "632a256e-99d"
expires: Wed, 01 Mar 2023 08:16:12 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/bootstrap.min.css
155.94.154.32200 OK 56 kB URL HTTP/2 uiopis.awful.top/static/css/bootstrap.min.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash dbcd0fd37c7235658d9f4731a4c4e51d
1ec464c3d15a7a183560389c12af828a2f3d65a9
58302c00a2864585192c72f83a327938acd179b64948890355478dba1c8e616b
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/bootstrap.min.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-1d8fc"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/jquery.min.js
155.94.154.32200 OK 33 kB URL HTTP/2 uiopis.awful.top/static/js/jquery.min.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash 5c82f7f50073a671d12274a6a1938d41
9a943f91fc8d2ba239f183be93a7fe0c5d8f4611
aaea587eadd07655090a4f8b47c6471e3dbd02d873031a98a0aa722ce56a5276
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.min.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:16 GMT
vary: Accept-Encoding
etag: W/"632a256c-14b60"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/vue.js
155.94.154.32200 OK 108 kB URL HTTP/2 uiopis.awful.top/static/js/vue.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Size 108 kB (107694 bytes)
Hash 68b4ad9e0b7bf6eb71843460bc173084
6539c59799e9a09cb58a7b41835094fe07a0b2b8
fb1c772d8b6de20396de1ea2e5c798cb0d3776bae82ef2abbdd999084236e700
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/vue.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Thu, 13 May 2021 06:21:20 GMT
vary: Accept-Encoding
etag: W/"609cc560-53883"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/jquery.ui.js
155.94.154.32200 OK 90 kB URL HTTP/2 uiopis.awful.top/static/js/jquery.ui.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash adcdeeab23b5f0144b94f27523e6041c
f29933fcd32d8c302b121ba16830a61f61726a98
2cdfe925723b43e80d60b81703935aaac7a6fa3f6937d7ce3855a7e48ba87681
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.ui.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
vary: Accept-Encoding
etag: W/"632a256a-45731"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/megamenu-v4.css
155.94.154.32200 OK 8.2 kB URL HTTP/2 uiopis.awful.top/static/css/megamenu-v4.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash c56ec985926b1290a5ee7e39ba3d6b0a
7c40cdbc67ec4647a6d0cb3b2aea7da5aac215a6
d4753182ac580fe952528a33cc79afc2c80b7c4ed7371ab4dae4de334c460fdc
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/megamenu-v4.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-a71c"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/images/mailman.svg
155.94.154.32200 OK 1.8 kB URL HTTP/2 uiopis.awful.top/static/images/mailman.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1426a5796b4337302ee498d4a9265b38
c3b2b8042eb536d43101c5281d5aae8244d1e0e1
87f26b59587d5549f99b77e77519bf17b625c6a693931f54f62accac834e6ff1
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/images/mailman.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 1827
last-modified: Tue, 20 Sep 2022 20:41:36 GMT
etag: "632a2580-723"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/featured_clicknship.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/featured_clicknship.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/featured_clicknship.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/stamps.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/stamps.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/stamps.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/onelinkusps.js
155.94.154.32200 OK 53 kB URL HTTP/2 uiopis.awful.top/static/js/onelinkusps.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d1af2f1887e9074f1d5b51db55198a5c
1afae6061aedcf4029ee6a90d6bd05b4ea74e80d
8cbd62f9897238e79e250eac5cd23a8d15cb80e76b2262bc96e04e1b04298b68
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/onelinkusps.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-e37"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/calculate_price.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/calculate_price.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/calculate_price.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:26 GMT
etag: "632a2576-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/schedule_pickup.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/schedule_pickup.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/schedule_pickup.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
etag: "632a2574-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/tracking-cross-sell.css
155.94.154.32200 OK 53 kB URL HTTP/2 uiopis.awful.top/static/css/tracking-cross-sell.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash 04a1915c4b691619442e7bc995d3dea2
402c7658fb3d54b51636f4c4ddd157db226502ef
17e0b7df0a9b5daf7aecd4686f4181394eeae36d12c64b358b711bd299675adc
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-bec"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/search.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/search.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/search.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
etag: "632a2578-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/mailman.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/mailman.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/mailman.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
etag: "632a257e-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
104.17.225.78200 OK 0 B URL HTTP/2 fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612
IP 104.17.225.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Cookie: __cf_bm=9AAppiH_n900ht5QHr3oa40x.y.0sIJ6oItIsyI0J08-1675066573-0-AXmkqWMWRG09jV5SBl2phLopMC4JhtZYKHgIWY6FqP445YjoqTt4XKy0Wpx2CS1yu4khpAHAV+ZVMaSzc+Sa+rk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: L4EOkitD5B6fbXjDNcrkuduVi3eGNo9F14OjaO+u2YgcGB6QtnNu58109AjEqcs1/yqpoBUnuoI=
x-amz-request-id: 1DJPF4CPWRK3EGMS
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 570346
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7918c3ad8febfac0-OSL
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/package-intercept.svg
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/static/fonts/package-intercept.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/package-intercept.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/schedule-redelivery.svg
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/static/fonts/schedule-redelivery.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/schedule-redelivery.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/holdmail.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/holdmail.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/holdmail.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
etag: "632a257e-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/change_address.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/change_address.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/change_address.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ayu.xujianyun.top/click/addClick?ip=91.90.42.154
107.150.11.69200 OK 0 B URL HTTP/2 ayu.xujianyun.top/click/addClick?ip=91.90.42.154
IP 107.150.11.69:0
ASN #8100 ASN-QUADRANET-GLOBAL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
OPTIONS /click/addClick?ip=91.90.42.154 HTTP/1.1
Host: ayu.xujianyun.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: ip,sink,sinks
Referer: https://uiopis.awful.top/
Origin: https://uiopis.awful.top
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/plain;charset=utf-8
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/po_box.svg
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/po_box.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1599), with CRLF, LF line terminators
Hash 9fde387a3cc3ad2b1744bd0c2139c008
8da30a6ce46c8c85574779d6767bd794368f37f7
665110618ec876acb77cd6bc05665aa1ffe4c90aa62f6063c0fa45b080b5926a
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/fonts/po_box.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 52148
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-cbb4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/shipping-supplies.svg
155.94.154.32200 OK 2.6 kB URL HTTP/2 uiopis.awful.top/static/fonts/shipping-supplies.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5c5579a50964d4972d1954bff4ee232d
c78b384713cf7a8a5515a54f17c6e70ebdde98fc
c12815f27ecdfd09b2920c1eea21ae7abb8e107349d6bb8b39707a0cd9a3e591
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/shipping-supplies.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 2552
last-modified: Tue, 20 Sep 2022 20:41:16 GMT
etag: "632a256c-9f8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/cards-and-envelopes.svg
155.94.154.32200 OK 2.2 kB URL HTTP/2 uiopis.awful.top/static/fonts/cards-and-envelopes.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef48ce62cb3d361e1d8b2938c40e71dd
f2c96ac70aab81500fa0d12f5ab61f07b79b8a54
893b5448cdde44b4db29800aeed45e278b1e640ea4585a5f4a5e4725e64bae84
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/cards-and-envelopes.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 2217
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-8a9"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/icon-personalize-stamped-envelopes.svg
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/static/fonts/icon-personalize-stamped-envelopes.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/collectors.svg
155.94.154.32200 OK 1.1 kB URL HTTP/2 uiopis.awful.top/static/fonts/collectors.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9105cfa1479096038365d18beb23cb1f
648c5b01118cf059eede56d9dae1713ab26d965c
b2728704f99e68b8edfa2b8efcb1f40e77d3abd5f6f04388c9a09232b1711043
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/collectors.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 1121
last-modified: Tue, 20 Sep 2022 20:41:36 GMT
etag: "632a2580-461"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/gifts.svg
155.94.154.32200 OK 1.0 kB URL HTTP/2 uiopis.awful.top/static/fonts/gifts.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash df6fcab6c4caf86e8a1401a4fc36f885
860352cea6899553cb4e7111097b35bd007c65e7
986ebc6c0f0c4b5bdb2513352dbbf3f501a36abd1dcd0c17a9c215efd95191a7
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/gifts.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 1006
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
etag: "632a256a-3ee"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/business.svg
155.94.154.32200 OK 1.2 kB URL HTTP/2 uiopis.awful.top/static/fonts/business.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 0d366834f312798111ebe3990766f8f4
e3ce708bf0b0b1924156674aca900898d407331c
da2e0f69eb8ea4aa9ffe45c2ad6d330eb7922e0e14f8aaca4e577be0fb8b4bea
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/business.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 1234
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-4d2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/images/loyalty.svg
155.94.154.32200 OK 2.4 kB URL HTTP/2 uiopis.awful.top/static/images/loyalty.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (746), with CRLF line terminators
Hash 9d4d854be98625230972560f86a80efd
a2528b13522e06172e1ca19bd5640ff22fddb5ec
85b8cb503de253afd195f3775b08df3bad432546ffa918cacff7c97ba8aa801f
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/images/loyalty.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 2429
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-97d"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/images/printcustomsforms.svg
155.94.154.32200 OK 2.5 kB URL HTTP/2 uiopis.awful.top/static/images/printcustomsforms.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2535), with no line terminators
Hash f7337d7d3b1b1af555348038d684bc08
0063ebb65ebec0cd39e3d060d71cfe25398e41e2
8c84efd0a5e9bb67a1ecc895c6ab1ffe3731cf0664d1502d95234b0521cfb797
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/images/printcustomsforms.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: image/svg+xml
content-length: 2535
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-9e7"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/nav-red-chevron.svg
155.94.154.32404 Not Found 146 B URL HTTP/2 uiopis.awful.top/static/fonts/nav-red-chevron.svg
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/nav-red-chevron.svg HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
155.94.154.32200 OK 32 kB URL HTTP/2 uiopis.awful.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Web Open Font Format (Version 2), TrueType, length 31696, version 2.655\012- data
Hash 10290cd4148c956fa2287d2ab5c71631
0186c7c5f9e12701022362effcab5c7f08ef0a29
0419465d8b720ca4a1a4307e1aaf37c9c1fda715473e458a9e7d1a94854c68e3
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: font/woff2
content-length: 31696
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-7bd0"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/require-jquery.js
192.229.221.165200 OK 74 B URL HTTP/2 www.usps.com/global-elements/lib/script/require-jquery.js
IP 192.229.221.165:0
File type ASCII text, with no line terminators
Hash ea38e8196b75d9720bc3902d6d735130
165284464c58d7f213c1211f2c433873299e4527
cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 11362
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 30 Jan 2023 08:16:15 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
nncoection: close
server: ECAcc (dcb/7F20)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
155.94.154.32200 OK 40 kB URL HTTP/2 uiopis.awful.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Web Open Font Format (Version 2), TrueType, length 40372, version 2.655\012- data
Hash 9bb1ce2aa7fed31792aa1750d0306831
6a538f9d945eaa6f7e8f97b4530183347d20bee5
5e284133b1b11165e7354b29cfabb5f214c473f0ca18198a49c052d8df3f172f
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: font/woff2
content-length: 40372
last-modified: Tue, 20 Sep 2022 20:41:32 GMT
etag: "632a257c-9db4"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
155.94.154.32200 OK 39 kB URL HTTP/2 uiopis.awful.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Web Open Font Format (Version 2), TrueType, length 39112, version 2.655\012- data
Hash e37c1d87055e7062c217e73098ab36d9
61f4c682ce807183e59a52ded2c9af89a419fabe
c98cd4bd3267c7d8484044bff1fbffaf0c2362edc04917457244809e1f24e404
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: font/woff2
content-length: 39112
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
etag: "632a257a-98c8"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.usps.com/global-elements/header/script/search-fe.js
192.229.221.165200 OK 930 B URL HTTP/2 www.usps.com/global-elements/header/script/search-fe.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (2264), with no line terminators
Hash 044ed97a28abfb41b4962d4be4f1a9a2
376bd4af5ff97565cf9565904b615bffbea08690
19c16113aa7d624c43ffefd992d78b420fc3a195d99578684d0abf52fbabce71
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 52712
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 30 Jan 2023 08:16:15 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dcb/7FD8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
uiopis.awful.top/static/images/footer-logo.png
155.94.154.32200 OK 5.4 kB URL HTTP/2 uiopis.awful.top/static/images/footer-logo.png
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash ccd62119eaa0e3697f60599487c51ad5
8e44d3123b4ce2005c76a2b8dcf7870058d2a82d
1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
GET /static/images/footer-logo.png HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:15 GMT
content-type: image/png
content-length: 5390
last-modified: Tue, 20 Sep 2022 20:41:26 GMT
etag: "632a2576-150e"
expires: Wed, 01 Mar 2023 08:16:15 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.usps.com/global-elements/lib/script/helpers.js
192.229.221.165200 OK 358 B URL HTTP/2 www.usps.com/global-elements/lib/script/helpers.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (695), with no line terminators
Hash a94bd840611f82766bdd01435e0325d4
195b9eccc89fd504aaa416ecfc05b277e3b1862b
c9df217c213bc4a79f26f7996533f4e02e031f82d7f1b88ccdc0f39504573d46
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 71959
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 30 Jan 2023 08:16:15 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dcb/7338)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
155.94.154.32200 OK 47 kB URL HTTP/2 uiopis.awful.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Web Open Font Format, TrueType, length 46657, version 1.0\012- data
Hash 3beb1cf49dc702cd4de8618eeb344dd4
080e1b4dc8b43ddb06961a3490857cdb936a8c2a
ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:15 GMT
content-type: font/woff
content-length: 46657
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
etag: "632a2572-b641"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
fast.fonts.net/t/trackingCode.js
104.17.225.78200 OK 59 kB URL HTTP/2 fast.fonts.net/t/trackingCode.js
IP 104.17.225.78:0
Hash 8ccc54f5fcc5b49c890368137bfba398
0e11a455a288f58a145722b9edb2c42bbaf8a5b8
250d8643e25f25dece9c92b073c5b8cc223c0d1c3bcb131341dd4ddb50928ad5
GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Cookie: __cf_bm=9AAppiH_n900ht5QHr3oa40x.y.0sIJ6oItIsyI0J08-1675066573-0-AXmkqWMWRG09jV5SBl2phLopMC4JhtZYKHgIWY6FqP445YjoqTt4XKy0Wpx2CS1yu4khpAHAV+ZVMaSzc+Sa+rk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 08:16:14 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: tV243F2E3FHzbzOmyb20MHfeQ1GDyYatZCBl0Nm17F8uWij/iigaf5Z34J37a+dZQxKIa0bZwb8=
x-amz-request-id: VPCR2ZHNCTBAG0DH
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 2289
expires: Mon, 30 Jan 2023 08:21:14 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 7918c3acdf74fac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
155.94.154.32200 OK 52 kB URL HTTP/2 uiopis.awful.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type Web Open Font Format, TrueType, length 51685, version 1.0\012- data
Hash a93e96be336c174933e68ef61d56e0d3
48f7a75a367904ff4a9a79689a508e29edda462c
cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0
Analyzer Verdict Alert urlquery phishing Phishing - US Postal Service
openphish United States Postal Service
fortinet Phishing
GET /static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://uiopis.awful.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:15 GMT
content-type: font/woff
content-length: 51685
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
etag: "632a2570-c9e5"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 08:16:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usps.com/global-elements/footer/script/jquery-3.5.1.js
192.229.221.165200 OK 31 kB URL HTTP/2 www.usps.com/global-elements/footer/script/jquery-3.5.1.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash 2a0ef702291c837a85b6c7c2275fdac6
7937023d7bc07c2a6d1e29f316836995fbdbf997
921bf2826576dbc494161d3021ee21b0b844ed89f0b2b630e7d579b69ab1a9ba
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 13555
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 30 Jan 2023 08:16:15 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dcb/7F9B)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b485aec4da73d34c0e9f038d397871d
aa98f1d472d9ac390270d49e7c1e0ed480760ee9
4add6befb6fd5b1ca37f68e3303e2ac14db1ac36b8c065f87e1f9f3ace5b4e23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5298
x-amzn-requestid: b58aa40f-ae16-45e3-93d1-9ed4711838e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEsHdNoAMF3Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-0c22a0aa70c34bab594597fc;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: py0Ls4_GFBdrFyvRN--G0Pl9l13TX_9CVFkJnYi1M4AT3uhtC5SuKA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:36 GMT
age: 37300
etag: "aa98f1d472d9ac390270d49e7c1e0ed480760ee9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MVCC8H
142.250.74.72200 OK 128 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MVCC8H
IP 142.250.74.72:0
File type ASCII text, with very long lines (65324)
Size 128 kB (128421 bytes)
Hash 7313c0cdc880f19fbe4c0b22f845ffcd
56912091f5dff75cd222c9a37d26bb604c1b8a3d
780de2062cfcac420077cb8f17ac8559ef9771a301537b5c270798ff6326bd57
GET /gtm.js?id=GTM-MVCC8H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 08:16:15 GMT
expires: Mon, 30 Jan 2023 08:16:15 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 128421
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 08:16:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usps.com/global-elements/lib/script/resize-manager.js
192.229.221.165200 OK 468 B URL HTTP/2 www.usps.com/global-elements/lib/script/resize-manager.js
IP 192.229.221.165:0
File type ASCII text, with very long lines (1040), with no line terminators
Hash 7dfda1d5c69fea0090eb0e1dd8f9cc69
731696ce554e4a61def2c1b2c42f593b2d663ec2
f59a56b127f6d56e1af875fde9db49dcd3fc70cd952445b3f0d259f4acc52a5e
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 39161
cneonction: close
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Mon, 30 Jan 2023 08:16:16 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dcb/7F54)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 07:45:20 GMT
expires: Mon, 30 Jan 2023 09:45:20 GMT
cache-control: public, max-age=7200
age: 1856
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/modernizr.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/modernizr.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/modernizr.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
vary: Accept-Encoding
etag: W/"632a257e-2bfd"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/main.css
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/css/main.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/main.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-14778"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/jquery-ui.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/jquery-ui.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-ui.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: application/javascript
last-modified: Thu, 03 Nov 2022 22:07:04 GMT
vary: Accept-Encoding
etag: W/"63643b88-5c8"
expires: Mon, 30 Jan 2023 20:16:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/metrics-all.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/metrics-all.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/metrics-all.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
vary: Accept-Encoding
etag: W/"632a2570-2ab1"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/jquery.keyboard-focus.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/jquery.keyboard-focus.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery.keyboard-focus.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:36 GMT
vary: Accept-Encoding
etag: W/"632a2580-45f"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/
155.94.154.32200 OK 0 B IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.top domain
GET / HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: text/html
last-modified: Fri, 25 Nov 2022 19:32:27 GMT
vary: Accept-Encoding
etag: W/"6381184b-46b"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/require.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/require.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/require.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:20 GMT
vary: Accept-Encoding
etag: W/"632a2570-440f"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/validator.min.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/validator.min.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/validator.min.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
vary: Accept-Encoding
etag: W/"632a257a-1da0"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/redConfig.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/redConfig.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/redConfig.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:07 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 16:45:14 GMT
vary: Accept-Encoding
etag: W/"63b8501a-2bfd"
expires: Mon, 30 Jan 2023 20:16:07 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/optimize.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/optimize.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/optimize.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:14 GMT
vary: Accept-Encoding
etag: W/"632a256a-1cedc"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/ge-login.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/ge-login.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/ge-login.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
vary: Accept-Encoding
etag: W/"632a2578-2460"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/vueConfig.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/vueConfig.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert urlquery suspicious Suspicious - Suspicious JS code
openphish United States Postal Service
fortinet Phishing
GET /static/js/vueConfig.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 13 Dec 2022 04:21:23 GMT
vary: Accept-Encoding
etag: W/"6397fdc3-10e9"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
ayu.xujianyun.top/click/addClick?ip=91.90.42.154
107.150.11.69200 OK 0 B URL HTTP/2 ayu.xujianyun.top/click/addClick?ip=91.90.42.154
IP 107.150.11.69:0
ASN #8100 ASN-QUADRANET-GLOBAL
GET /click/addClick?ip=91.90.42.154 HTTP/1.1
Host: ayu.xujianyun.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sink: USPS1
sinks: 2
ip: 91.90.42.154
Origin: https://uiopis.awful.top
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:15 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-cache: MISS
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/megamenu-v3.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/megamenu-v3.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-v3.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:30 GMT
vary: Accept-Encoding
etag: W/"632a257a-3458"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/bootstrap.min.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/bootstrap.min.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/bootstrap.min.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-9049"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/data.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/data.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/data.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:22 GMT
vary: Accept-Encoding
etag: W/"632a2572-924"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/footer.css
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/css/footer.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/footer.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:10 GMT
vary: Accept-Encoding
etag: W/"632a2566-b60"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/conditionalchatlink.css
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/css/conditionalchatlink.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/conditionalchatlink.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-cb57"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/megamenu-additions.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/megamenu-additions.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/megamenu-additions.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:24 GMT
vary: Accept-Encoding
etag: W/"632a2574-541"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/main-sb.css
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/css/main-sb.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/main-sb.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-1f01"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/css/footer-sb.css
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/css/footer-sb.css
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
GET /static/css/footer-sb.css HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 20:41:12 GMT
vary: Accept-Encoding
etag: W/"632a2568-bef"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/landing.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/landing.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/landing.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:28 GMT
vary: Accept-Encoding
etag: W/"632a2578-235a"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
uiopis.awful.top/static/js/jquery-3.5.1.js
155.94.154.32200 OK 0 B URL HTTP/2 uiopis.awful.top/static/js/jquery-3.5.1.js
IP 155.94.154.32:0
ASN #8100 ASN-QUADRANET-GLOBAL
Analyzer Verdict Alert openphish United States Postal Service
fortinet Phishing
GET /static/js/jquery-3.5.1.js HTTP/1.1
Host: uiopis.awful.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uiopis.awful.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 08:16:12 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 20:41:34 GMT
vary: Accept-Encoding
etag: W/"632a257e-15d84"
expires: Mon, 30 Jan 2023 20:16:12 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2