| code.jquery.com/jquery-3.0.0.min.js | 151.101.130.137 | | 30 kB |
URL code.jquery.com/jquery-3.0.0.min.js IP151.101.130.137:0
File typeJavaScript source, ASCII text, with very long lines (32034) Hashd0212568ce69457081dacf84e327fa5c d6702a1af0378b2342f6a0692e77c169f580aed7 266bcea0bb58b26aa5b16c5aee60d22ccc1ae9d67daeb21db6bad56119c3447d
GET /jquery-3.0.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15145"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 05:04:55 GMT
age: 18614495
x-served-by: cache-lga13625-LGA, cache-hel1410028-HEL
x-cache: HIT, HIT
x-cache-hits: 8, 87314
x-timer: S1713416695.417210,VS0,VE0
vary: Accept-Encoding
content-length: 29995
X-Firefox-Spdy: h2
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 | 104.16.41.28 | | 0 B |
URL fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 IP104.16.41.28:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:04:56 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 554720
accept-ranges: bytes
set-cookie: __cf_bm=yPOU3J547p_mO_CU6b88qbiTE32ZNLZGo0cvbpEPFSw-1713416696-1.0.1.1-xRHwHk.cpZBy8odDv.oCEqLE2I9uTu09i9PkoCrGoTAKdTDZoq.bdCsOgMf1v2I9PlKEhTWGdI6DZRPgv5wbnA; path=/; expires=Thu, 18-Apr-24 05:34:56 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621df1ea998f60-CPH
X-Firefox-Spdy: h2
|
|
| usp.usspyq.top/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff | 172.67.172.66 | | 47 kB |
URL usp.usspyq.top/assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff IP172.67.172.66:0
File typeWeb Open Font Format, TrueType, length 46657, version 1.0 Hash3beb1cf49dc702cd4de8618eeb344dd4 080e1b4dc8b43ddb06961a3490857cdb936a8c2a ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /assets/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/loding_files/index.css
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:57 GMT
content-type: application/x-woff
content-length: 46657
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "67b288a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0F4%2F791mcORBzQA6pplpZJgO%2Bu9zJbq6FLV7n2lEPWasLPwMysLHblPGuOpRokG8EJX2YTbZzvcinCGyFlhM8%2BvFf7FcvGoli1lyjJN%2BY5SEfTOu7HKnikKjSknZ34dwDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621df26c3a56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff | 172.67.172.66 | | 59 kB |
URL usp.usspyq.top/assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff IP172.67.172.66:0
File typeWeb Open Font Format, TrueType, length 58690, version 1.0 Hasha6e2d3921c9ea0fd81897d9ae7a33ba4 bc31969f2fb1926a15cd678b3e573c37a44e5421 f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /assets/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/loding_files/index.css
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:57 GMT
content-type: application/x-woff
content-length: 58690
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "8a7d96a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P32MpZB4jKR3UWkXLJ%2Bgp6xwrsOjFcnKS7PaR5f6mqCuOZyfx7YpXNBNTG%2BM%2F0HPL%2FH%2FrEU4BeDKObv%2FhE904QItMhlGsHpqveP86ji%2FXJVkyOnFVlRwJ86MJ0l71DM55w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621df26c2456ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/index_files/loading.jpg | 172.67.172.66 | 200 OK | 82 kB |
URL GET HTTP/3usp.usspyq.top/index_files/loading.jpg IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeGIF image data, version 89a, 630 x 637 Hash9e0373c2b4410c49439dfd822c5fd16e 427f86c03751b7e107fd282bbe32be18fc2e0898 05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /index_files/loading.jpg HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:05:00 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: "e16c9ca3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hoFWGVc0W76GNkBDHBCYIcO6brz1Wfw9C135XdGJtW3pzsbdLH6bbKmH8hJa6eVsLTLMJtIcYKjSkYdkzVWhD8L7DBaj3LSUTmm4X13StaZzcpDlYmxpzTHABBhVpuPjLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621e014fdd56ba-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/favicon.ico | 172.67.172.66 | 200 OK | 19 kB |
URL GET HTTP/3usp.usspyq.top/favicon.ico IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash3f0f72ed57a54b97cda500bcf0545efb 2f252619c18e729d98e16b96d37cd7cd567b38eb 67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /favicon.ico HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:57 GMT
content-type: image/x-icon
last-modified: Thu, 30 Nov 2023 12:13:25 GMT
etag: W/"8d495b9e8623da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YYYCU5J%2B0s3WgVrH7CCPzedGIc3%2F%2FerMTvvD52uObGbAJykwy40cCBxosxugIQlZIx5tCQZ9vldQc1yKTgDmeMbyCPSxKWdSu91ZUJhlyYicNhQOXccPxFAoq5ETN%2Fe%2FqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621df24c1056ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fly.linkcdn.to/images/verified_sprite.png | 104.21.68.98 | | 3.5 kB |
URL fly.linkcdn.to/images/verified_sprite.png IP104.21.68.98:0
File typePNG image data, 284 x 72, 8-bit colormap, non-interlaced Hash8302f6a83bd1aec82c83d2830f210470 4399125de0cb0d08ca50698a07756105ce10347a 4d11f37fae309c522c4c45d9f75cb48f0651a09a9d278cddbd19a1a8e31aa9a3
GET /images/verified_sprite.png HTTP/1.1
Host: fly.linkcdn.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:05:01 GMT
content-type: image/png
content-length: 3460
last-modified: Tue, 19 Sep 2023 08:47:05 GMT
etag: "8302f6a83bd1aec82c83d2830f210470"
x-amz-server-side-encryption: AES256
strict-transport-security: max-age= 63072000; includeSubdomains; preload
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vPW2u8uvSXOtQEfQOGtRjcQVErEyToz592zHG6fQQGnQjD1GZKeWrg==
age: 3983
cache-control: max-age=16070400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ii70pe7N3H1y0YdgQGnk5sgsnb0iJCZyVkNDxKMW1%2FtFQzZI8pY3JFYr%2B%2B9XwCzzHhRpMYdyeif0OOkhyjgUvz%2FT9J4Li6Dl76vhe8FjR%2BP9NJLo11Pi5JYyaS4UWDd2QA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621e0e3f7ab4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usp.usspyq.top/index_files/defaultWhite.css | 172.67.172.66 | | 5.8 kB |
URL usp.usspyq.top/index_files/defaultWhite.css IP172.67.172.66:0
Hash73eb4a51ec73debe4e9512f9d76b4289 4919c1c33c1ca19a1a1ac19c511803ea51737565 44845579f305286f8684821c30a52f815f10a351d00baad5c92c8502426474fa
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /index_files/defaultWhite.css HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:59 GMT
content-type: text/css
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"805560a3dc22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jU4nEhtFjA2PkrWzPoDbJnJvG08pSmSEsHrmeM60iIP1E3r9THZUZsp9p3B%2Fr6uh%2BCopMu3CkBRmIAKf5abbZ4kFlINVcW%2BeIRO%2FtP9hUO5RVL%2FZpSkRUkGAVB%2FDe8Pw2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621e013fd356ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/loding_files/blue-spinner-processing-step-02.svg | 172.67.172.66 | 200 OK | 23 kB |
URL GET HTTP/3usp.usspyq.top/loding_files/blue-spinner-processing-step-02.svg IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeSVG Scalable Vector Graphics image Hashc9001e6ca9cc5bd1436106127d8ec7f9 498b06dbb190a5099d90db7882f25083de2305ce 20dacb9960e8ebc87b2e7886f5843dc633c865b3175a817520f3d0dbf1398d24
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /loding_files/blue-spinner-processing-step-02.svg HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:56 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"49be62a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lYwHQsqNvsgCMfmdPdlKMrn4RlIY1hYvTc4naRvgNM9rP5ahLpt92gO%2FTzf9nL1%2B7oR7inMWFuQ%2Fh2UUnsVl2COZ6uH8h%2FggBAyLEsAwdmetNbTvZU4dhDguMnoe5kYE%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621de9e81256ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fly.linkcdn.to/statics/links/icons-socials/spirit/32.png | 104.21.68.98 | | 6.7 kB |
URL fly.linkcdn.to/statics/links/icons-socials/spirit/32.png IP104.21.68.98:0
File typePNG image data, 304 x 60, 8-bit/color RGBA, non-interlaced Hash78fd36b0d6c14772a8b46b88817087b3 b738599182b0eb67a9c91501f121a16cebef2d40 e36eaeb05ac9e38a5e6ee0fea36ded8da7707532912f061ef6d445603fb5bfa9
GET /statics/links/icons-socials/spirit/32.png HTTP/1.1
Host: fly.linkcdn.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:05:01 GMT
content-type: image/png
content-length: 6743
last-modified: Thu, 10 Sep 2020 13:28:55 GMT
strict-transport-security: max-age= 63072000; includeSubdomains; preload
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
access-control-allow-origin: *
etag: "78fd36b0d6c14772a8b46b88817087b3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CBqFo4DB49N3C8E18qaCHg2L1wgbLJ5McpVi6rZmUWqLD3GiaZPTOw==
age: 3983
cache-control: max-age=16070400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aG306755WFV6Hkl6PnjrDoNapeiJbseGuj3O1bPky7Jqo%2FtHWPFuhYrbfwfhckqfl4Ow8qe35FHbTdSXym0KA3x9l5Cgf%2BI2grswgI5XmwGu%2FXWmlQV26zzAs%2F1k4awfHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621e0e4f84b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usp.usspyq.top/pg?do=index | 172.67.172.66 | | 38 kB |
URL usp.usspyq.top/pg?do=index IP172.67.172.66:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4979), with CRLF, LF line terminators Hash9bc7544b8d741fe86428205c92a04322 1814d6124ff7c1b617e3892d70d3bb8e4c02923d b8ca5c344501aa4814dfda9a6abe1e31d68cd931ad6e893697e8926697fc5fd6
GET /pg?do=index HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:04:55 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech; path=/; HttpOnly
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bJ9ecXbuEzznWLMLZiqQOiPYVIzHwKn5mdrHBoQ%2B1G6aIgzg7G%2BJdTn1ekIlJ0j55GGawu6gSYFMkrSMHEueMyQUREQUimpCUw93v%2BkW%2BR2FyRU7XB7D6xgCurUqjR62rQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621de439ecb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usp.usspyq.top/loding_files/blue-spinner-processing-step-05.svg | 172.67.172.66 | | 1.8 kB |
URL usp.usspyq.top/loding_files/blue-spinner-processing-step-05.svg IP172.67.172.66:0
File typeSVG Scalable Vector Graphics image Hash7a32dffe4f4bde9ac550bde45d4a4c5a 37bae927a7b1f48cb149fb650988944dba3b6664 b12cbcd1db5e26e25b2c83f0b67940e9d3bccc2518efda4bdbc4961d733a5cc1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /loding_files/blue-spinner-processing-step-05.svg HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:56 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"1f5a63a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sICZViDvJL5znFPqawUjWgwBAq74UDBxmiCv%2FT%2FRHT2%2F%2BGB33d7pBH3LQjSrVB5tVWmDwbcrM8in9%2BmEMG%2FXmhkOPQxwcr0K7RLelFRCSgbrc2MZQCu3ZQVGWMVfZbbC0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621de9e81956ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/index | 172.67.172.66 | 200 OK | 16 kB |
IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashba717b20dd740a42229f17ce7d7b8fda ca282b2804777f25bcf2e1ab33bd5a7b9bc02bfb 97eb9f1fe06a2b5d8db6cf8f2d972e680687ee5d872a3637a3214bbab873a26b
Analyzer | Verdict | Alert | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /index HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:59 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SexWAN%2FWgIrR93sgW%2FJA6LspiUSgXoM0VMkW2wdJ03DlF3aFi5omc7Vup47FmbcB87On82agelTTcy21L%2BpizEnTDaJqlv8EcUOaSVIIH1pRDuv9UtjEllszPciRicgBfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621dfefd8556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usp.usspyq.top/index_files/jquery.js | 172.67.172.66 | 200 OK | 88 kB |
URL GET HTTP/3usp.usspyq.top/index_files/jquery.js IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hashc9771cc3e90e18f5336eedbd0fffb2cf 6ee8aaa3ac1f4e0ae18717a3fd26892e9f0e4cc5 3e7501d15c3630e791c8b20392eb9dee31a9f65ce3efdde76cef5c710141ab24
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /index_files/jquery.js HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:05:00 GMT
content-type: application/javascript
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"805560a3dc22da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xb9M4OkMSveek3cDLyw0uhnxGY3FkAU340gtI6n1oTIrpTVNDQ3%2F6gsWWe5oRJLhLv3QZcKZOJlBKeX5EOe1oRJmqOWlTVJ5fApKaIW0HjGmQrbzKOMUB2z66Dx1UQi7XQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621e014fe656ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fly.linkcdn.to/statics/links/icons-socials/spirit/3.png | 104.21.68.98 | 200 OK | 7.5 kB |
URL GET HTTP/2fly.linkcdn.to/statics/links/icons-socials/spirit/3.png IP104.21.68.98:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerLet's Encrypt Subjectlinkcdn.to Fingerprint33:70:41:27:31:11:EB:7E:FF:59:3B:55:09:64:E9:28:47:AB:3D:7B ValidityTue, 05 Mar 2024 04:28:46 GMT - Mon, 03 Jun 2024 04:28:45 GMT
File typePNG image data, 304 x 60, 8-bit/color RGBA, non-interlaced Hash229b5dca08997b920118bf7231011cf2 69c32741e08b5010b65359c627e9d97ddebffb89 aa2a82bbec6afb10324988b2003e61d47a09708b25ac0e2ce3b64950aa2b7a35
GET /statics/links/icons-socials/spirit/3.png HTTP/1.1
Host: fly.linkcdn.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 18 Apr 2024 05:05:01 GMT
content-type: image/png
content-length: 7538
last-modified: Thu, 10 Sep 2020 13:28:40 GMT
strict-transport-security: max-age= 63072000; includeSubdomains; preload
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
referrer-policy: same-origin
access-control-allow-origin: *
etag: "229b5dca08997b920118bf7231011cf2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iuC6Fg1steT8Wz3R4wxqXxiYpRYnf3HzggDSZ4_1t0cD2UAK8QK1xg==
age: 3983
cache-control: max-age=16070400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TyQPzSpvOuSuSTjYUmPrbOOwA%2BuQpPtIzTgZ4ozGXL0rcc4FZiBAmqkC4TFvOxsxYVkt%2BQPDlQxbKJRF8M%2BsQvT2VHm8nObUSbbq2GUAnd58K0Oe3wUqbQblTBR3M765gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87621e0e3f77b4f4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usp.usspyq.top/loding_files/blue-spinner-processing-step-08.svg | 172.67.172.66 | 200 OK | 843 B |
URL GET HTTP/3usp.usspyq.top/loding_files/blue-spinner-processing-step-08.svg IP172.67.172.66:443
Requested byhttps://usp.usspyq.top/pg?do=index CertificateIssuerGoogle Trust Services LLC Subjectusspyq.top Fingerprint52:E8:DD:45:7E:9B:09:DD:08:D0:F4:87:A2:1B:D9:EC:87:9B:4E:0C ValiditySat, 30 Mar 2024 23:22:32 GMT - Fri, 28 Jun 2024 23:22:31 GMT
File typeSVG Scalable Vector Graphics image Hasha03b45de0c6979251ef4e887df547705 e3bf574cf824b82d63fba45881e9b79643606ecb 0a41d8ed27c6bd7a7121900e6e4605670500428f90ff2658474abcbb0ec9bb9c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | PhishTank | phishing | Other |
GET /loding_files/blue-spinner-processing-step-08.svg HTTP/1.1
Host: usp.usspyq.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usp.usspyq.top/pg?do=index
Cookie: ASP.NET_SessionId=4vzteup2mwzwdrupbbhjiech
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 05:04:56 GMT
content-type: image/svg+xml
last-modified: Wed, 29 Nov 2023 15:56:39 GMT
etag: W/"f61c64a3dc22da1:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ExMmD7mkP8Op9q56BBqc9qMOCcPLK%2B1F0ddVER4BwKM49wUl80wPTEEGBha1kfqRjo%2F7wbxCwG41WOcOr5UH8oSZAXtesEYN02ECGzRi%2BFlFQUi4Sd%2Btay6FAM%2BS%2BnZR4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87621de9e82556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|