| | 188.114.97.1 | 200 OK | 82 kB |
URL User Request GET HTTP/2IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hashbef46d3bb712d23036be3aa8ebfba884 41c025e409ff2150939375dca4a336a997c9f778 1f40abcbcb4dedbc58e0bf815935a87e2d10ef2c2ec65cd347a64ae96402a4b9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:44 GMT
content-type: text/html
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vWluKc3SObEMXIDM7ProJJcQ8H%2BWyvwBEe4wMBLAe3nTM7iYmDg1G%2BfgfvvyMH0b0M5r8%2B9bDXAQ9yWqY1%2FYiBlQW2ssdJMWNgCfVsa2SiJyllY82wg3f%2FM7mZ%2Fck807uY7bQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7c47d3356a5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/ResourceConfig/urlConfig.json | 188.114.97.1 | 200 OK | 7.7 kB |
URL GET HTTP/3usps.potsvfoi.top/ResourceConfig/urlConfig.json IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with CRLF line terminators Hash110943bc2b4f7a3f1dda597554713c5e 6afcd916d67e9495aec1c57706317349d8418c7f d6dbba9cd982d1b3d9fe8b5075ac493d75ca98cdf12ca374caea81615e77de15
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /ResourceConfig/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/json
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-105"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lmMpAd1ujZMEHtMXI3M%2BemoSyRxPVQRe3rbWlz7H8V%2B0UKWFQA05jAhwT%2FQtOzQBLtXo%2BjKkFmiL%2BBUs98zKI5%2FarUai%2FT2TXMDa6bG3O18FVK5GUUlCQnRC7mWUbQg34Y2%2Fwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7cac90d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/ResourceRedConfig.js | 188.114.97.1 | 200 OK | 4.8 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/ResourceRedConfig.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeUnicode text, UTF-8 text, with very long lines (6275), with CRLF line terminators Hashb4344e09201e9800f2c5010cd831c9e8 817a83527de5618eee7c773b20c23ff7a6f2e920 c320ffd0f517da69d45f68d801194392458ffaa4003e7ca170d33b5146239ad9
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/ResourceRedConfig.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 06 Nov 2023 14:01:09 GMT
etag: W/"6548f1a5-2fae"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u29LhK%2B3etu%2F1QhBYuZSclBOrIxaOUXfmMV6XskhbTstIocYhYZPZ%2FhgGwRehDEjC7JxezUTAmzZpjMdqrN%2FzG7CyOtLHWM4OB8wye%2BNBdS14Gm7Irl86veYUaY4tWna4xReww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cae955712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/social-pinterest_6.png | 188.114.97.1 | 200 OK | 2.3 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/social-pinterest_6.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash010bf7d7901ccaa3905cfe4b7c1cb50d 9c174f76a3ed50a173637d44793d6bc15a818112 67d664b844fdba0588665c6f1986b25fcb6d99e5122a455c36da8622f1eaab62
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/social-pinterest_6.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 2325
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-915"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oZRzTqoooXJjFMZ%2Bew89uqVbl%2BgD%2FM0sbI1993VJ2M3ZTGZAuVlUbtwh0iIZ8ejuDM3dVPvxyEp3PvM39VitUc%2FWv0wiTirfNohC58S9RO7hkXD62UcscY7jVGGaNyb4au7Czg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8b6712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/social-youtube_3.png | 188.114.97.1 | 200 OK | 2.5 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/social-youtube_3.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 50 x 35, 8-bit/color RGBA, non-interlaced Hashe38ff6af4b8ff088fcb2dc92410b759b 529c88413dbc330fa05a0629b2084ca7931f453e c2b609bbc0ed5b17740df6ab378bfcbe068e3b08d85e85b2d9dfbe6dd3c6be95
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/social-youtube_3.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 2461
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-99d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ohloluYnJXbDcGpRFEYdOjIeA9qv0tPa%2FAMJZWlDRzwLZJFjNW%2BxgzdKUqgO6l81%2BeSWjPdiXd0XIpyUVpQlXiLA6aJX2%2FD8VQ0dQX36hd11D%2BJOTgED0D46HK5tDq%2BNFJkpZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8bb712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/social-twitter_2.png | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/social-twitter_2.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 50 x 48, 8-bit/color RGBA, non-interlaced Hash4f6b06552f2054fecb5a3ab3956d7a79 c1257b76200738ad53147be110920f84efd479b3 248385895aacd78d7a7b045cd5109103c2f849bbaef9cff5980d59823a620c91
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/social-twitter_2.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 1842
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-732"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kHBR0ggARE58NYS89MEU71cUR43SpgFWsxw4%2BGtqhwUFA6aWKQR255NTwifhAinjw%2BdckWWe1uNtnBGN2PHLZrg6S1TwS0N7Gj%2FUpXFgfqLxDPNwFsOADK3s9VvIKhPQK0mDrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8b1712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/social-facebook_1.png | 188.114.97.1 | 200 OK | 1.9 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/social-facebook_1.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced Hash5d1fed200f7befa569074a293cf2abed 11bacbc9debe99986d9a6e974e9a819aaa74be29 9d0ef8aa34abec770b6a9fb4358842a29413d08c0d1e4b74f5c4c31ab477c14c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/social-facebook_1.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 1873
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-751"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2QzHWW%2Fh5sHmfhXJP7goLRKMfd1R%2BFLACu%2BtA%2B%2By1662Zd5X7Ut04kIYx5kidjdpJrN%2Bvbi2hanrKQ68qUV2sftNB%2FNOaid6mXsbl6JlY82odJe8u4dGYLv02P1%2BBMz4b4yztg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8af712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/go-now.png | 188.114.97.1 | 200 OK | 20 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/go-now.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 210 x 170, 8-bit/color RGBA, non-interlaced Hash6311ef7a60f86d77aa48fcc48a675a31 96bc8b2fe87b126ffbf0d7b7ad8419661cb6bd9c 70d715475fb0a4756fc65c50cbb2cf0ca15f7311efc6c54b18e045e6ab202251
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/go-now.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/png
content-length: 19969
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-4e01"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CWBlLCy%2Fhm5qPBhcLpxQYonLSuEkZNzwQcTEKPoXpfOo4IBWLwWM3alWcPXCmqJEugJyvmu%2FEo12OuT5tV%2BMLgAlR7si7JnAHWom7qaUUwqL0ORZcGyaFinwNP%2BCnLPyicUcRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9883c712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/stamps.svg | 188.114.97.1 | 200 OK | 527 B |
URL GET HTTP/3usps.potsvfoi.top/static/picture/stamps.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash2e722b55bb31b83042310fbf5b45128d cb6cd5c99c06ba8c04c7795dea4d13241eaaa045 0b68e5b64999ab2e6d137a1886410cc9e8bed0b3863aacd838a3eb008f2bb516
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/stamps.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-44f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iDFW7o2VlT0k0VtK%2BMx9SoPbv%2BRPPxC1p07l6KOvF3RI9TXoNZ6iB9dOIlIseNFj0sRCPH2KG0fhupezgsRbUjNC%2Fy9t3JGV%2BExjm56Llnch%2Fwzz%2FwHz2M3zW5%2FUEO1U17vS3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98822712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/require.js | 188.114.97.1 | 200 OK | 8.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/require.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (17192) Hash16e572a4f80526df4bc3cc7ff056a9a8 f23b5c2fd52e855245e3d2586cd911051561e64c 75237772a7bc8c6eaadbe642be69503335c5842af8981688250a8d4f0f61c377
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/require.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-440f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qEnelsNYkLM4UZmwP47392zOvTRn7kAY%2Bfn6rUqgvNeHGtU7JxOr7IAT%2FkV9zsbTP0Awk9kWsbkaE4%2BFfpSiupSZ1zy1UL4YEGgVD3wqFRBTikD0d0yBxJIuoKZ1n5twMkkl7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98851712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/favicon.ico | 188.114.97.1 | 200 OK | 25 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/favicon.ico IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeMS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash3f0f72ed57a54b97cda500bcf0545efb 2f252619c18e729d98e16b96d37cd7cd567b38eb 67fbe8ef9020e5c776aadf6801a1fef8dc563e2e4dc9ddc740af8010c0c38943
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/favicon.ico HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: image/x-icon
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-7d26"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yd3vtS57%2FINkI64HT0g%2FRF2kn5oWZThHvlUTKBhEwiVFzW3hUf6Te04ilYDlbvRNSwuvvqvxCqDWdbdz%2BBPOeWyMkJEiWJQZ8b4jP9ccZEiRGM%2FelHwkEkr6qz4kXpkOhJ%2Fqlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e08f60712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/validator.min.js | 188.114.97.1 | 200 OK | 2.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/validator.min.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (7391) Hashbcb17bca17171883c8bc1dec99880fae c5c518b09743622f47bb6d75e8e9172258ce5d5e 731c763b42ba829a6e28ad983af6151f96709f91b3687f1993193a4f8fa501e7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/validator.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-1da0"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cPF8ptKv8Y8Jv20uIzKIBVVXH5yljS8wuRBjDUOAqQE9YA7wZMSPE0KJbUHeCx8a0nRtpsEVlH8%2BjqIzlGcdxC%2BaaICIksPS30dVJP9cRGBRroqL3VVpa43ZKKounkD8%2Bs11%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8f4712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/jquery-3.5.1.js | 188.114.97.1 | 200 OK | 32 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery-3.5.1.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators Hash9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery-3.5.1.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-15d84"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hU0WjUwHk4vb%2FfNhT5yZ5QQoUWAb90R6jeFjiYoBBZRI%2Byv9G5e%2Fy0GnhabqAbi7NHoMyO0sH8rCNeIWRLBFKBoEzlIi%2Barwc9%2FfUytc2AYzxUDd2l8BMz6zEp8chpl0obefFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9883f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/loyalty.svg | 188.114.97.1 | 200 OK | 6.3 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/loyalty.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash9d4d854be98625230972560f86a80efd a2528b13522e06172e1ca19bd5640ff22fddb5ec 85b8cb503de253afd195f3775b08df3bad432546ffa918cacff7c97ba8aa801f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/loyalty.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-97d"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RxiVb0wI9RRZjJ%2Fl%2BH00VWsqhhEPIVmsJCljOTmceMRUFfaSwd9ri3JNNeindlR%2FmvGfENM%2BBnn1eS1dEBsqizUtsO%2Baq%2FfBHLEreFRvu%2BR1juqDUTD9lm1B08D11QhLQT8GVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea2e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/megamenu-additions.js | 188.114.97.1 | 200 OK | 959 B |
URL GET HTTP/3usps.potsvfoi.top/static/js/megamenu-additions.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash847cc8bd91110ff714275c5a29fbd404 cff690cc070f9539cc1c325ed150b819018e8df7 a33554bd04b3364c1e47b719799ae0df426bb17f9c8ec422bb346227534ebdbd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/megamenu-additions.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-541"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2BVC2Xy%2Fmt5YHZ1QnPSRzWm4fFjcyWxVZ%2F8WoUJIQV6kleLUNHmBk7jEuphRMceOvU8IllJ%2BvYdjI5aVWVBBsvGr5pj8dK3NeaNNSJXd67kDP3WVQZfPY9FnxnepPDv6vV4W3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98856712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/icon-personalize-stamped-envelopes.svg | 188.114.97.1 | 404 Not Found | 183 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/icon-personalize-stamped-envelopes.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with CRLF line terminators Size183 kB (183251 bytes) Hash932da5a430ff6db1bc48425b567d56fa e7e88023dbbc6346d354ffe9fb7db957888c2299 10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/icon-personalize-stamped-envelopes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B7RDeABStZiw3XAwW3bP3G5AMswHfHHONvlvB4hsdcwKHiFX180bRYF2QRjT0mW%2BTfjF7ZQlFIcfbe3vOASrXSYou4N4tZyGEQ5uKEGrxd6AxZL16IANDDhQ4hbPolWGBI8u%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da1d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| api.potsvfoi.top/click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/ | 188.114.97.1 | 200 OK | 29 B |
URL GET HTTP/3api.potsvfoi.top/click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/ IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with no line terminators Hash05969c9968e377b265a1d9af503d1f84 fc8b38bf495f1a171a9f8b9eb659714015915c0a 065943a80a44128d7a31d7409dc2a27575bdb4efc87bfb6e6b6b6c3b57699799
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/addClick?behaviour=&workUrl=https://usps.potsvfoi.top/ HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sink: USPS2
sinks: 2
Origin: https://usps.potsvfoi.top
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: application/json
content-length: 29
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS, DELETE
access-control-max-age: 3600
access-control-allow-headers: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3iIW4ejBztoVbUp8qD3aiNFqGzq91MRFTnmjZQGBETPUGSmz%2FR3KgXfTFAW0tf8bRQyEcJ9wykZVUHqZqkxpLVv65FAQqcg%2FjTEjvzo2rmUjjGW%2FuI9rs7fJgWh7zjnzEPkH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e80e1c712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/main.css | 188.114.97.1 | 200 OK | 46 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/main.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (49484) Hash49c08d404b1b7f928d0620bf933dc391 c03353ab9593939f553cf5fe5ce11c28fcb482d9 7488fa2a2c396b5f1fd2992492f92757cf8b8c465367a91166fc59067ed0e9fb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/main.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-14778"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MEyzj92iN6bY0GuawJ9g15uGi27Cxd5Kak3kfiPzpj41pe6BGCS%2BnRU%2BVg1Lyd7oTH3tuqUuV%2Fieb4fbnoiWlvYB0o848EyBI4n225GWKy%2B7SWkXpsrljLgEmWpYcwW5QGonyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 | 188.114.97.1 | 200 OK | 40 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 40372, version 2.655 Hash9bb1ce2aa7fed31792aa1750d0306831 6a538f9d945eaa6f7e8f97b4530183347d20bee5 5e284133b1b11165e7354b29cfabb5f214c473f0ca18198a49c052d8df3f172f
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/b0868b4c-234e-47d3-bc59-41ab9de3c0db.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 40372
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-9db4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lftNHaN%2BugbQJA6Ab%2FL1dp2DNO8FgER6GUySIzWGSsJFD64Y8qiwbDcNVGOUWZ4siX3PBdVD9YgaxiF4W9e4hPDTDPlbKTZ%2FE06jO68DGCzlwY4XsTEkC09HCiKekqlQ36KELQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b2a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/global-elements/header/script/search-fe.js | 192.229.221.165 | 200 OK | 930 B |
URL GET HTTP/2www.usps.com/global-elements/header/script/search-fe.js IP192.229.221.165:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (2264), with no line terminators Hashf7f70265f5cf47386622e433317412cb e1b28284e51c848685c7ea6d19ff551284c58e8a 766a3dfb7dab82af4fae555132f7fdbacb7d167f17015fbb23c9591daaaf698b
GET /global-elements/header/script/search-fe.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33622
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "8d8-5d77081c47c40+gzip"
last-modified: Mon, 07 Feb 2022 16:58:17 GMT
server: ECAcc (dce/26A2)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 930
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 | 188.114.97.1 | 200 OK | 39 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 39112, version 2.655 Hashe37c1d87055e7062c217e73098ab36d9 61f4c682ce807183e59a52ded2c9af89a419fabe c98cd4bd3267c7d8484044bff1fbffaf0c2362edc04917457244809e1f24e404
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/462d508d-efc7-478f-b84e-288eeb69a160.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 39112
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-98c8"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IcqVajJJGuxjkoKFlsJguAk0cG0rbx7fKMubioZb5IdlZPH27knWcMsRSN7vNfByos6iMgfzYOviF%2FM43YqM0%2BQI0l%2FjtIqiW%2FhBy2LwStyKYrd50i06GAUOY59rFYa24sB0Sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b3a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/global-elements/lib/script/require-jquery.js | 192.229.221.165 | 200 OK | 74 B |
URL GET HTTP/2www.usps.com/global-elements/lib/script/require-jquery.js IP192.229.221.165:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashea38e8196b75d9720bc3902d6d735130 165284464c58d7f213c1211f2c433873299e4527 cdbf334e8e860aaf1665d2ac56113f51f1ff304b63cff897beb969c8dd5597d9
GET /global-elements/lib/script/require-jquery.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: https://www.usps.com
age: 33606
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "4a-5057c23aa4c00"
last-modified: Wed, 15 Oct 2014 20:40:16 GMT
server: ECAcc (dce/268C)
strict-transport-security: max-age=31536000 ; includeSubDomains
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 74
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/js/jquery.ui.js | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery.ui.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (18730) Hash4e7e5ae2451d2efbc3d960b63fa78dbb 1479f717ce0594dde5d020d885a988fcf98b106e 5b55ece99168ef9ba6d8557a4e759ad76f53da94eba1d8f331395ea321441bda
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery.ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-45731"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vsu43d1P9eC9q2szo7xYmnE0klf5EfFJokAhUxqAqqtHtPm4wDzKp1CU4vCoBkyiypxNcP0UKv2j4pUw1FhCxO3akr3HYAZZsovaqou0CDYNOwiv1HzuZHfU05ceECeC5QLrTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8bf712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/bootstrap.min.js | 188.114.97.1 | 200 OK | 11 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/bootstrap.min.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (36812) Hash5a419da48d7b5f7ed34fda267cac899b 5b1552a7baf7a483457cfc229129405f7b6b94ce 6cd4e4ed31432db3cdfdf272f1066de426166a2013598db7cb71b77a47d02148
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/bootstrap.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9049"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PM0bgv%2BXsvFlk4%2F5yrQOtm0pxXaoTiOe%2Ba0e5JgdgmuxwjQhy8eoYoUiqwWr0jlOkUDyAPYIWMrclfAswrpK%2FB1gCYnVU%2BygkdWGwdDmElVXJzvkRRvb31O78C2fKGHkMudsUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8c3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/favicon.ico | 188.114.97.1 | 404 Not Found | 60 kB |
URL GET HTTP/3usps.potsvfoi.top/favicon.ico IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash932da5a430ff6db1bc48425b567d56fa e7e88023dbbc6346d354ffe9fb7db957888c2299 10174434dbe479c08b32ce3b42b70e7c6336647d29e4393483158d590d35c325
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k3nmbPBSmqA8tV6KC7zwdaXSRExRkHHCSBkb9mBitibTRmm4qHf9uz8jvW5xELvIZoothqCIGbEq%2BFu3IPHupnCTcut0OrGxfh5cxLQQX1gsbxCaoSSkuE1TVeO5NgxputolFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cd8fce712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.fonts.net/t/trackingCode.js | 104.16.41.28 | | 47 kB |
URL GET fast.fonts.net/t/trackingCode.js IP104.16.41.28:0
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
File typegzip compressed data, from Unix Hash8132d8a7b72a2068622a4872a1396de7 b912159cd62a4c274bc3a62b159e5b9023381b2f 90a477644e9a5483c64bf7c17f577c62468644410fc885e158bd229c043c4211
GET /t/trackingCode.js HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/plain; charset=utf-8
x-amz-id-2: zYhKraNibKo66IAlBtLIrsktkibAUzYdxDcd1UBHtMIR3rDILmrzgSBdW+oiKuILrXLJ3lo7Mn4=
x-amz-request-id: PG321HJQEBES9CSD
last-modified: Tue, 23 Mar 2021 09:15:19 GMT
etag: W/"32dd789522cc6923c80141fcf5d3a614"
cache-control: public, max-age=300
x-amz-meta-mtime: 1383840033
x-amz-version-id: null
cf-cache-status: HIT
age: 3570
expires: Tue, 16 Apr 2024 17:46:49 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e71f27be53-CPH
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/picture/calculate_price.svg | 188.114.97.1 | 200 OK | 109 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/calculate_price.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Size109 kB (108862 bytes) Hash6204f7fb48ef86964b4b1cce343ebdde d60b7e47e22615fdea2a24e102200090b466b862 edbb6a59137018b9a8229184aac04a2661787564cdf4484229bee96d7c11e771
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/calculate_price.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-8fe"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RemzCneKsG%2B9b6PmTR3%2Bf0SeSUKR%2BJCd%2F4JInJ58Fq0vK9OstNoY6LLyiFNo1dwFS3AFkQsmJ5iRqiEm0M0uKpVuEFIjEonnW3Q09q%2BHKUYb0ho3XlRU3WyR71SmM27quWPrhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98826712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c | 142.250.74.40 | 200 OK | 98 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c IP142.250.74.40:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Hashb4c9231b0c1cb0da2964683e05971664 47932f7bea02b1d18a0d3df3fccc280da0bedbab dde895b38282bc190ce3efddfd58ba868aca7f443ca7a6fa31365c5ebebd2640
GET /gtag/js?id=G-3NXP3C8S9V&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 17:41:50 GMT
expires: Tue, 16 Apr 2024 17:41:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98404
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| usps.potsvfoi.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format, TrueType, length 51685, version 1.0 Hasha93e96be336c174933e68ef61d56e0d3 48f7a75a367904ff4a9a79689a508e29edda462c cc469406025b7ce0913cdefc664007cd0fc46bc66a740dc7aff67cc041bccde0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/5b4a262e-3342-44e2-8ad7-719998a68134.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:50 GMT
content-type: font/woff
content-length: 51685
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-c9e5"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BbrtAfWk1YBkrV3R4oSonjKwpOQINvFlv8RRoEcf3hpT8D0QfUXCHQtPCkTyd68rmlkpglx00eaOeAVwyJgJTQcwc8NRvDgI1fDJVoMPKp6b078TnclDe1oS7gVrgsWJ6Rsyaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e75cd8712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/global-elements/footer/script/jquery-3.5.1.js | 192.229.221.165 | 200 OK | 31 kB |
URL GET HTTP/2www.usps.com/global-elements/footer/script/jquery-3.5.1.js IP192.229.221.165:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65450), with CRLF line terminators Hash9ac39dc31635a363e377eda0f6fbe03f 29fa5ad995e9ec866ece1d3d0b698fc556580eee 9a2723c21fb1b7dff0e2aa5dc6be24a9670220a17ae21f70fdbc602d1f8acd38
GET /global-elements/footer/script/jquery-3.5.1.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33668
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:50 GMT
etag: "15d84-5affcd6633ac0+gzip"
last-modified: Wed, 23 Sep 2020 15:35:47 GMT
server: ECAcc (dce/2687)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 30950
X-Firefox-Spdy: h2
|
|
| www.usps.com/global-elements/lib/script/resize-manager.js | 192.229.221.165 | 200 OK | 468 B |
URL GET HTTP/2www.usps.com/global-elements/lib/script/resize-manager.js IP192.229.221.165:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (1040), with no line terminators Hash90d8fb00194d91e9dd20281817c285d6 e7e37421b14a39e0d3787988a52a45d27ec3761f 479b585bb1f3ca011746467c115b58ca0cd6ac62aa68c9d953635b3344953887
GET /global-elements/lib/script/resize-manager.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33639
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:50 GMT
etag: "410-5057c23b98e40+gzip"
last-modified: Wed, 15 Oct 2014 20:40:17 GMT
server: ECAcc (dce/26B9)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 468
X-Firefox-Spdy: h2
|
|
| resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js | 104.110.27.57 | 200 OK | 528 B |
URL GET HTTP/2resources.digital-cloud-gov.medallia.com/wdcgov/2/onsite/embed.js IP104.110.27.57:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.digital-cloud-gov.medallia.com Fingerprint84:B5:7D:49:49:24:06:EB:EA:17:83:AB:54:4F:3D:08:4E:12:19:EF ValidityMon, 01 Jan 2024 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (587) Hashe978b5bd6c3bd1b4a81447c865d7a516 f03cd1cbd388ae347d5e232ad842c51ab1851402 5d8e2ce33f7ae924669cda91c71102dfaa62587a35d95f6433483d4a0ac5c859
GET /wdcgov/2/onsite/embed.js HTTP/1.1
Host: resources.digital-cloud-gov.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 08kRo1PQRcgEsWcf9xlqXdZqDrp9mq0U5691p/0imLuiHKAOA/ZKjnifLzIPD/m1l6g3jeokdhc=
x-amz-request-id: 4KH1T3CYXQFT0S9R
last-modified: Mon, 08 Apr 2024 17:32:16 GMT
etag: "e978b5bd6c3bd1b4a81447c865d7a516"
x-amz-server-side-encryption: AES256
x-amz-version-id: null
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
expires: Tue, 16 Apr 2024 17:41:50 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 16 Apr 2024 17:41:50 GMT
content-length: 528
access-control-max-age: 86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/picture/change_address.svg | 188.114.97.1 | 200 OK | 13 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/change_address.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash3955e49630deb78cc1212ba20d83bafc 881ba502127d57c48784703683869abf4c8e28d8 b84842a014070d9363a46638e512476260162014c9bde4bcca7a9ade4177ea12
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/change_address.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-74d"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MHrx%2Bp8B3Uk7rqpZmym9VrdfoUV%2BlqPKi4FJK%2BgKRcqQAm%2BksZ1d3ZB%2F0acK24NwA9gFwsEWTgjGdQnonkZ0uk9ixMJsQa1iuNvxA8JDhwEqXniQ0q%2BiGDn%2BQexvcwv9AX%2BGLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9882c712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/free_boxes.svg | 188.114.97.1 | 200 OK | 4.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/free_boxes.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashdc788e0d1e8c7d9463a99882e622730c a079d9612a9c119a9419b620d9dcfc141dd7e011 a3f1dfab56de547e28606e3e2150167339be6a35c8385486066924874d14df47
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/free_boxes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-42a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HI59R3%2FxAicBjoUdFPG5q5Bxts8O2rMmEQmSaQfyS%2Bp%2BBhH4qhzjdKDaCDSLgkn8AGaKUTtQteHsngFNwvsYV%2FQslNT4dASyNKal3pPCr8XFHb0WgP4K6v34udCQZGNU1Qwcyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98835712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/calculate_price.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/calculate_price.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/calculate_price.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f59Xe9ofKhB5otf6fxQJxT9l4FCa9Tip75q250GJfne%2BJgFx%2B3SWDxM6o1h6NqWrpnaSg2GliMYSD9BxFb6E8g5mLGxnTaMvLNWNwbgm3e%2BIPEzGcnbiN8EXHaO9wynfP6Yfog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9e3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/axios.js | 188.114.97.1 | 200 OK | 43 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/axios.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text Hash1eb8e8e2284670dc214a3e70c25992b8 94ece417aa560aa8de906e8f54c0985da90364cc 96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/axios.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a6f0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5gn2hhjVh3Rugh0Uy8kvFxvsODlkVnnEi86gtKPL5%2BdB9IYN5elCJlFaHTk2YsR4DvSdsr%2FO4RXLZw%2FTF%2FPsdOvgncJlaiIyzhdbDCQOOp4WKchXvH1QnEK4Yw3mKqZPS6COag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cac913712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/metrics-all.js | 188.114.97.1 | 200 OK | 11 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/metrics-all.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text Hash34bbbc752c38a085d897eb4d08518e56 f47857ba660bef72853357ebf63c1645ed0e6420 58e2e2233ddbf49425919c629e63a97801067da6538b003f9ecaf0161f9bdd85
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/metrics-all.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2ab1"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4uc35XHAsfiEHD2rn8mbGUigZzQYI2PvF7%2FwqTVm4aCVESSWX61HqJOMnPRjgB1XROOzH2SJ75ftdzCaswoDxu%2FuVG17uPMpybyC3f9u8unFEPC8oO6IQPeiS5%2BQLjDovW3oXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fe8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/schedule_pickup.svg | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/schedule_pickup.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashc523f85f9a06acc80cd618f10c18063a d385730a45e237ac82907718aa3c7d78f2dd74b2 7ea8f48894b1b43539d09fa9328a76470d7642525b20477bd5c43105f7baaf86
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/schedule_pickup.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-6ef"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zbg%2FtqGjh%2FWiZFUiFBpAUU52OvJbBCA8ltL2gtLrBu%2F0MJlEPbOyqPRC9DKviqyqIzk3BQeCgWJGWlXzYeOM878Qu2MRa6qOPVwnAT7ed4zqcDOanHlae2zLCIJXRmDbbW0FIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98824712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/change_address.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/change_address.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/change_address.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9npRna7g%2Ffu0aRF%2BJXPN%2BNTqb%2Fy7iObOQMaD0dcNJabXdtL83UYPh7VvKsGaNN7cQyVN3vUFn5PEtnQbUVab3zuZOGlWfrPBK9db7boKUlvk70ocLjTab1thzMtU8CAAZLBFkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da06712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 | 188.114.97.1 | 200 OK | 32 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31696, version 2.655 Hash10290cd4148c956fa2287d2ab5c71631 0186c7c5f9e12701022362effcab5c7f08ef0a29 0419465d8b720ca4a1a4307e1aaf37c9c1fda715473e458a9e7d1a94854c68e3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/3b303641-706e-4221-94c4-4fb491f4f8ef.woff2 HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff2
content-length: 31696
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-7bd0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i8ui8ZgBolw%2FmaoHMvo8v%2F87KZORFaWZ6o38HnJ%2FHPxj%2BJx6WXdOW3A103cPFMgRhNGITjLWM9EsgjP3VFX5Oc8vp5wDITxitxxZPSXLnS%2FeCHJVBllNtvusT6OF%2B%2FYFLIGndw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e66b20712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/modernizr.js | 188.114.97.1 | 200 OK | 11 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/modernizr.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (11084) Hash66e83c4165a234cdda478a9c55cb90db 22e9211030a1f612ef4acd010185181bde967307 779ab662607b48249e86f3c27e9eafff4bbc808b48899a439d5cd9b2c78f99e6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/modernizr.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2bfd"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F7ImHnmQuGg%2FkCj%2FNvT9OWl%2B67Fzt3bedUJDPMxVpYU1e%2BK7bV5IKpqrjp%2FxRTqm4j25PBTKQ8C9HXu7va0D0Cyx0YUSquO3keW7C5vOHkEG8vvY%2Bx78GgD1abcz4A0rIUnamQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98842712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/config/urlConfig.json | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/config/urlConfig.json IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /config/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cB27EowKXMGlJ7Ko2ZXynAVzDe206myOuc%2BNC8vRcAZkZlf5CSrc1OkG99bFOeHIFR2mpuLqQrbXBrQx0%2FrYFIujtS0Qy%2FHM1slFgNuEKkReviVOdW%2FMbSYQjwGZo5c%2BzYPepA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7d9880b712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/footer-logo.png | 188.114.97.1 | 200 OK | 5.4 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/footer-logo.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 221 x 27, 8-bit/color RGBA, non-interlaced Hashccd62119eaa0e3697f60599487c51ad5 8e44d3123b4ce2005c76a2b8dcf7870058d2a82d 1cc43a97be92fddf0fe4244858f5337c80a8d350cd0afcd0c4d2004d3fded0ab
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/footer-logo.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/footer-sb.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/png
content-length: 5390
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-150e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j7XLTg4RISJcFbKIs7a1j%2FRSYIqHOGCav1YB0AlU%2BDAJON7PJPqyaew9OhVQ%2BAEIo1y9P1S3QEr5b3YFUBPMzv2y5yseJI5F77FHRmk%2FqLM%2B%2BDUAd0mVls4nUVsJa7R3E7Qb3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cae712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.usps.com/global-elements/lib/script/helpers.js | 192.229.221.165 | 200 OK | 695 B |
URL GET HTTP/2www.usps.com/global-elements/lib/script/helpers.js IP192.229.221.165:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerDigiCert Inc Subject*.usps.com Fingerprint89:34:8F:E5:07:0E:C0:73:96:2D:78:82:D6:7B:BC:D3:C1:AB:60:39 ValidityFri, 21 Apr 2023 00:00:00 GMT - Tue, 21 May 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (727), with no line terminators Hash0d79b60b350ca6bf24fc9bfd618d90b7 ecb547882bd208b9b852c66c259f565dfa64f56f a449f05b1170b1141cb02b4a49f7136c98ff61a302577982507d370f7465b079
GET /global-elements/lib/script/helpers.js HTTP/1.1
Host: www.usps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
access-control-allow-origin: https://www.usps.com
age: 33613
content-security-policy: default-src 'self' https:; connect-src 'self' https:; font-src 'self' https: data:; frame-src 'self' https:; img-src 'self' https: data:; media-src 'self' https:; object-src 'self' https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https:; style-src 'self' 'unsafe-inline' https:;
content-type: application/javascript
date: Tue, 16 Apr 2024 17:41:49 GMT
etag: "2b7-505dad4fe5380+gzip"
last-modified: Mon, 20 Oct 2014 13:38:38 GMT
server: ECAcc (dce/26C8)
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-ec-custom-error: 1
x-frame-options: SAMEORIGIN
x-ruleset-version: 3.1
content-length: 358
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/js/jquery.keyboard-focus.js | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery.keyboard-focus.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (1163), with no line terminators Hashf80770d6ef673b444ceb19361315bd76 7f6b37ae017663a9c94251d256d29bcb18a76ac9 f57685215201f98bc879fac89fbd9ec6669a8d88aec2e43d39ed761aa8c87bb2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery.keyboard-focus.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-45f"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5muX44uBjF5UezK%2BKxGrScnbMsrEJX5ShgVOdkrD6eoTPSsel9S%2B8zmLsFlcZdgzjGmQhuUJc8Ohw7ysg8ZmH4bTTWEecLgQPsVUSEW0cYaor4l6gjXPcgIu8qUGYj1PPvEog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8c9712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/data.js | 188.114.97.1 | 200 OK | 2.3 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/data.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (2588), with no line terminators Hash6692d5ea7a27e811825a9159bfaa0210 cc2a3758f56e64554561107df0fbc9765f9ae76a d1147d04efad54c59c37c66620f4aa33ac1f82665f011b8836ba96bb0ea479be
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/data.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-924"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aV4uAxP9XHYYOLzFsGhykAGq7UN2Tf914xhd%2FULmpXJcjes3FTONEbrTmCFkwIlPF6BugBhhaVsCFhCy3pXNYhPjGJufi2jjOoQmXD%2BDumB1NZt1B4lVw%2BYvXk7YiNXZwjf%2FFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8fd712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/megamenu-v3.js | 188.114.97.1 | 200 OK | 13 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/megamenu-v3.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (13400), with no line terminators Hashb62e27b15837b70e7dab99846ac90ab3 9a49415c5e47149a5324705eaf78b4b68ce10edf 50764694ee2da70f2d3ce0e8340eca39b9e2760d293b47e4355c690a4769e781
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/megamenu-v3.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-3458"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tH5%2FHkkniCgAKnWiOISsCr9CPQ0UMJp25NqFsavvyUeY6DuGdhfR7ISIN9pAyzwkpEm1tNhbYMyRSHSfpfgIbHzrzfd1lB0WXudEzbQ4NofWEH%2FgbJGwdiLa5zLpLm6Ei8X%2Bvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9884a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 | 104.16.41.28 | 200 OK | 0 B |
URL GET HTTP/2fast.fonts.net/t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 IP104.16.41.28:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=f3e4655b-fd06-4b8b-8a25-01c859692612 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: 3MfqsHPaoDtzAO5M60cnj6YppXUBAUSyzeBMzUz6Lxda2ER3pN3Q8agq/kaNUhGTvfCNT/hayTo=
x-amz-request-id: RSCD8TA6YG17HWQG
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 368757
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e78822be53-CPH
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/css/footer-sb.css | 188.114.97.1 | 200 OK | 3.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/footer-sb.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (3067), with no line terminators Hash68d1409c402b1d6879903e30bcc24b8f 6200b8ff79f3ec08aaef65f882b3c5dcfbac3302 30584a58d960708fca0df28eae169606378cda2281bcadff205fba6efcfd5153
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/footer-sb.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-bef"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RQbycuUvHWgX2%2BlQZAjt%2BUv4mTAA3nSI8aeGIGfj68JgowXUW%2Bxypgf9C1Ag1dmJpLi5DI8msdZSeT5VJ2PBQgZ7rc%2BotYs%2BI8UzXk%2FZyQ5bECaMqRoIbyzetcLdQUTo867B4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8aa712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/search.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/search.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/search.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w3w5xGkqnQQAG3Cnnt2ixYBYPxohTTHYFL1RbdjQrXs%2B9o2ZHR7lXqfGOaL46CnhFYxMurkqlypYBQh%2FaH4MDyAlo4B7tkM0a4O7MiII%2FEIjM3RCw2l0NrO7GYDWwNRtFqVErg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9f6712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/holdmail.svg | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/holdmail.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash798a735992c99ecdc76454f1c093261a 89058df9342a184b64cdff41a11798ba07628829 cd9c59aa1822c5bf50b3250455ca1d6a7aceded7ad9d92c1e5072367384c1652
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/holdmail.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5a8"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fu8alQWqagOPBC5LAkQedBkcqpOPL2NnnTsmBgnpM0snzu%2BCStEPse0HI4D4BJkfGMo%2F3PNioKx7nA%2BQeoK1AnCDIBfhJWhxd7fVcRQuecphpDqIwD%2F4OeuyQKnLaeOVi%2B45PQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98829712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| api.potsvfoi.top/websocket/274c4bd7790f98846f33fa355b525127 | 188.114.96.1 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1api.potsvfoi.top/websocket/274c4bd7790f98846f33fa355b525127 IP188.114.96.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /websocket/274c4bd7790f98846f33fa355b525127 HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://usps.potsvfoi.top
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: X7IoQ5JyqrcN2RqVplkpCw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 16 Apr 2024 17:41:45 GMT
Connection: upgrade
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE
Access-Control-Max-Age: 3600
Access-Control-Allow-Headers: *
Upgrade: websocket
Sec-WebSocket-Accept: Q5nJ8Z4hBn0FfeZK1nxRCwCUePg=
Sec-WebSocket-Extensions: permessage-deflate
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yu5uBNI5q%2FpuPOaWXmt6E%2Fgdb1a7M1KupCmnFFji81r6cBtbd2JDUmSly7h6e4nC49NfrR0R5%2FmRiTAJkUt1wgNj%2FgCSflm%2FxsKpfZS6XqA89RSeoNwP4dTci7nft2wKGtPz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8755f7cebdd60afe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/logo_mobile.svg | 188.114.97.1 | 200 OK | 2.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/logo_mobile.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashe2168d4dc7567ef926b7623237981a82 e316de76563718e76dca3496358cd6364e283f94 bea15c662f2670c57110879e989f6312ce35fe454a22a7b46b2b63e908337784
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/logo_mobile.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-80c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yJQS%2FH2nKbKHGb%2FGAwLtZJjiNam9KfhP0gbv%2B1T1TuYCpNbl7xTaMLSH5m%2FCvmsBQyDtT%2FSnuVJTxc%2BI0gwpyThwYRpCsOCg%2BRo69VBuBpFNjEa3Ty0WT8k%2FeTSrGFO%2BTlC8Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98816712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/vue.js | 188.114.97.1 | 200 OK | 342 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/vue.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text Size342 kB (342147 bytes) Hasha9b6fe71cb7cfcd689e1ef345aefba51 5c39dfc37fc42400e4b4557db956f3f218a90ca7 159f0ac0c8f517aaa736003b6e13ebc959b5f7129db87e4e56bf2eec8d6d02d7
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/vue.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-53883"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KJpG%2FfSJ6UoXoepJIJkBLFkuiCsBUoerJlpfReVqndN%2B5UE3Zk1n50e8XXMsxP8jGB43zEbiX5gYwbFoAq%2BsSMUz50CDsQuWJxQmQc%2BkX%2BSyOD6KnLK8DB4yDM1TwSWo99PLmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98806712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/search.svg | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/search.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash72686f982dfebbd9157958b01f2ce9e6 525eb380721cdc53b170b7ed00d9a87f6ab71167 92f4f127afbc23dba0b9a8edd2b7baf572c6f2abec350a4d992e372b000e674c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/search.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5b9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0y16CL5U4K1LPQx0zFvRAwWbS92cRrW4TCgdpS%2FO8yjHGTUPt0mzoo4GJ%2Fm%2FU1Ob34Hel86AxytX1bi%2BslPwmJDmHP%2BkMk8Y%2FphNoXbpbbRQjgCrikF59uN9toyg6ZZifIT5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98818712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/idxs-icon.svg | 188.114.97.1 | 200 OK | 1.9 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/idxs-icon.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash583ef52bd60e417556db5f135ccde412 95657d33aff9e4378ebe4d23588822e15decf037 5a5fd0aafb20d9cb95bf9e3e7110d8877c7bfe8a990e6b5d4ba59148da355bf2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/idxs-icon.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-754"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U3kDcCHbF2ou2Z2Q%2B8m7A%2B4diRm%2BQtsKIk8E%2Ba6RH%2Fm7MSKmO%2FIs15dKL8k8P4jRZLk9GXHTIjr8PR7zfcPbcamppinPK5ZK8yJ2wXrs1%2Bfm%2BLEUOn5Q6N5aXWdJyq0%2B7Qsgsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b89a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/config/urlConfig.json | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/config/urlConfig.json IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /config/urlConfig.json HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/html
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CsUTV5RKheVlPYkmd8r78vxLjlvyuEB49OhYSJWOGwxL9J%2FwGj2BU23JiVKif4v5wQ06wagHOcy151gYnnlW7RoDCfT6XOQ5Kh7CquWA%2BczfV6WdZzUP6MQ4UeXSpJSfrAPD6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e0cfbb712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/stamps.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/stamps.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/stamps.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BWQu4rNXVUSlS1vjX6Wmn9eNrY9avwFut0xX%2BCEUbNWHC7SAMaTEiGz3d%2BuQwh%2B0hM9RK7ECzKzk3iE7QcTpMsFnAX1%2BSMcwdaRph6xmHK7xIny2Z5dXiPtVxNwaRcJZlNFGVA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9d8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/find_zip.svg | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/find_zip.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash947f73db1be85b62c0a78fd947ea8f48 4b7cdd980fc356f9afc040ceaa1e4eff64eccdb6 65633c2f9e1f520fcb432d8f51929e8d0872964d876ff9d19e882af7eada0166
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/find_zip.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-5bf"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NfDFWm2jrmgOABMoGKKUnXWugjgu%2BXts7FWHGdHA%2F0NCmM3Ff9KF9MGVg0GoDEvVQy9OnZc919xdRmisWSrHH87FCkPMc%2BdJYP3VCxnhDl5WZnNq%2B6vfYsDz1kqJ1tjLeQIj%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98828712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/onelinkusps.js | 188.114.97.1 | 200 OK | 3.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/onelinkusps.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (4144), with no line terminators Hash2575b25dbdbd1b914b3c983cb24bcf90 31a451e8403be6b3f4fffb0bad224b1e02464c0f 07b3aca05a0a6d91a57cd83bafc5366a099a5719cab8a5a672a4ab732ae3c2f5
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/onelinkusps.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-e37"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hHxzSLHnd8jc225gYQVrpyUPjDbw63z%2FupF2K%2BMQETYiTNGARnaqRrO8fpfTTNBLyt78jFXKFapLM2xx4NkYsvBzGtXesu6pcrr23BVrC%2BV4weNx7EQnWAyo4PkyjHY5NsOMIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9884d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/logo-sb.svg | 188.114.97.1 | 200 OK | 3.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/logo-sb.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashbd8c973ec0b53678ec2e4dc5134fa653 e643657e09913383e36bfb797352a7223e202f15 3c24c49690aa84ba6ff95c560fb35c92ea3b7b7f6d7a4355f8628b19b3e1f97d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/logo-sb.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-de5"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NMU63NQSii9V7Ir5hhEJp%2BVY1%2FGq92YOrccijpv15BOupys4ix0d9kFV2UKVc65L%2FWwVb1i33o7cSH6s7YXb1Eh%2BSQiCJTCD%2FQe634GTnozxumJDuMgfMPX5rhYbODy95E4s9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9880f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/main-sb.css | 188.114.97.1 | 200 OK | 7.9 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/main-sb.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (8068), with no line terminators Hash240d2c6020f53f231be98f099dfc00cf b855005ba3a6be537b754a324853a89f53f33150 ea58be7f60a5c2d65f14278ed684965d8c69be76db4562a9eaef78844d271ed6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/main-sb.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-1f01"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=37mX9wlRsrBz8MeqTPLRmMVABqpKyvMY3dXkt9e3WF14oPlZLeyqnKrfzhVcJvFjh5QH%2BgyU00wo7cjtW%2FHLKTdCCvtpYNkDQOBp2VOVj5rnBC2GCDszqW9vUrblr7VxARF0yQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8a7712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/hamburger.svg | 188.114.97.1 | 200 OK | 546 B |
URL GET HTTP/3usps.potsvfoi.top/static/picture/hamburger.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash877d4644f0a505bf30be77169524e441 d85faf0831fb39673ad3733ad6ecf1d8bac778cd 2336a119dddc7aa4b6d54a4ecd251f5a30cf0572816db55b92e9f0b43ee63ecf
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/hamburger.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-222"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JUaXTYj6BuezHGIySBH9MGSjZqMWUWFtTWVfYTZIv65sCWnCJnFvXtuEjuWOPpjjUxe%2F5rSu4g%2FnecFvLpwZaAk37%2FK%2F%2Bs4Y6RaBCYNALLfEpAeRkTC2UrflJwejq1%2B0o9qhCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98811712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/jquery.min.js | 188.114.97.1 | 200 OK | 85 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (65453) Hash8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-14b60"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q1cOwMeCoG6bS%2B%2BHH33fnvgzOfFQn1uweaf2vmdUtT4Qo5wF5SRwz6WNX04psnwyoiO2t9qj622dDuSeBTMzQf5EE%2BsuGlMX44ZuIidgt1qkrWjsHGa8%2BaWt6%2FOUFOTNRWB%2FUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e70c4f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/bootstrap.min.css | 188.114.97.1 | 200 OK | 121 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/bootstrap.min.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (65371) Size121 kB (121084 bytes) Hash473c24f70d7d3d76cc9d6c67a852b100 4b017192f7e665f0b5cc5ed1b737f709fc7a6be4 a78c4915ce28caf156345123fa0a8a4424355edd10ea1f733ac93c87ebc9637c
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/bootstrap.min.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-1d8fc"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6MZ3F43wISEH38VCdbgJNI4xCE4AdQbOCv3htlNhhwL1Ien6ZeskkciaA2cbuuAFooTiRiFQhpJxckv2ZWEQkLHFmfIT%2FfOqNAE5ckCiqQICPWWb%2B%2BCfrgagZyr8lnrSVIwkgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff2712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/megamenu-v4.css | 188.114.97.1 | 200 OK | 43 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/megamenu-v4.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (42778), with CRLF line terminators Hashffff53c10c3ee489b1b0100d34eaf6be 2b388dc2ee7341a6b183e2652f2a07953468164c 12608b8833ec103ad06f97ca844c653f22dd8e03b50632d8d6bd3dbccdc5c422
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/megamenu-v4.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-a71c"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3MJx6zEsrm4S9PaLsLdSl6dWpYJeiQOZ835tyuEZDK1piTXNlZjRMAo4WdewKA71jpgmn19HqYXFPwZy%2FGfPyLnhYMoOVQ3AFnLuL5VFOf6Ol3%2FJBpLIALKpcpRRuBUAUErMTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98802712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/landing.js | 188.114.97.1 | 200 OK | 9.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/landing.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (10234), with no line terminators Hash0f4184554a83887bcb3f73f463933a90 e093bfdcdf35253d254999395bdaa7ed67a99068 d868a0399477d0d43d7d3caf437be0a1263e7d41b6cdc81b3ff05b6f68d7c5e4
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/landing.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-235a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Ycho7C%2F80gdIrUQh1ATofbYmOogarAvzTfpg9Nx%2BHvLLSHE0qyL3zBHlg%2Fx5A6i32fVgPheVMSIRn0BXbDLwglsPw5aMB7sPmAUOxhopMLLF7CYczJn502EbDcJU%2Bvi00mGLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b904712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/mailman.svg | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/mailman.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash7e63b1510cfe1e7b2e2c00dbe7b48f49 7b13f782d0ea7d101e612cab914da1574180fa76 3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-723"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hrPhfV8jOQfb5fdIE7%2FoVNXPmeFb1YRe9VdvfDwd8vgqkwWxI7xJeDSABCmI%2Bnf1uM6HYrQoc%2FHo7EjdncOvIE1rggHrZVe%2FVaxc7ZNvM5V7hL69Ytmlvjetvkc6xRRHNr1HxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9b3712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/po_box.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/po_box.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/po_box.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2sgNVCJ5xVDw9P7TsZrGbWTKC9w8rHyHbZspxryLDUjPZpE5zu7g5OmYeoAUxN6fuUadNDbAtU3iVFhZkcUAB%2FSn67LZ2%2FrF45uK6ZRdlrCqjWaaAAq0IKjhGYOIXJIHmfJkNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da0b712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff | 188.114.97.1 | 200 OK | 59 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format, TrueType, length 58690, version 1.0 Hasha6e2d3921c9ea0fd81897d9ae7a33ba4 bc31969f2fb1926a15cd678b3e573c37a44e5421 f2e2ef638dd9aac863f0f6027ceb784cd4c5a14a676bed909c8f2ac4b088d510
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/d5af76d8-a90b-4527-b3a3-182207cc3250.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff
content-length: 58690
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-e542"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HcltkjQ5EAEjmTI9f5iaYLGWb0fDafhCYyLgVFyt7TqGGTxjHxuGBeN4mk5P64MtwcthpL55Q6yTmnTX%2FljjQcMBSzB53P%2BO74aybAV3KLO2FUvThUwsX5WOm5SSKhO0R0Z3Uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cc8712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/tracking.svg | 188.114.97.1 | 200 OK | 1.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/tracking.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash51e3139d76e5dc032ee585cca0dc7fa3 25f66b3ef42009851954f22e6d6f4904f506c0b8 dfd96cdbd5e0b4bd7f31c68d620874a37ec2c3f4e5d2716d7227057d2e66d264
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/tracking.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-619"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6awkZSoqBpU0d8KG%2Bt5qtGKp00mfy5E4l3oPZAot1i5MLFHya%2BrQc1VMU5ZPcwNKiBi%2F0NfGXpmZciWVuRGVLPoa4%2F7dZweOtTLGZ2VxeVz3x3JBzYcbWJ%2Fm0b92O9yswhGDRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881a712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/header-init-search.js | 188.114.97.1 | 200 OK | 904 B |
URL GET HTTP/3usps.potsvfoi.top/static/js/header-init-search.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (964), with no line terminators Hash7970c1b8c1d52efdac61d94339578276 e76bef0dd2ca49af09d70c1eb65243b91f21f11d 7030f4d79b1c80b071817d31c710667ca861245e453c877d9afce871e7e66cea
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/header-init-search.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-388"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ti0zxeZ%2BN5S2HY10HMRfjr08hITKZ6FngPooSLlDVeruV4k8aQPmUTYYReJMCfumGPS%2BpZCJppve08Jb4Ha7LiK2bwJSEo8UGFpw7FCqLli6k%2FhDFwc3L7GXJCqjEzMvh1%2BUlw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98853712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/cards-and-envelopes.svg | 188.114.97.1 | 200 OK | 2.2 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/cards-and-envelopes.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash6088261f72b5ce3642b5cec0eb113793 d132c9f520c2a5b4a724c5ecb2e8fc4f4f45fa07 2a7560f8b14ba4d21e129f29758c750aca7787cff99c49c1c05c389d22a15457
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/cards-and-envelopes.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-8a9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZauNPPUZcP7GKcbadBEguKlpcGH1KjFvd0beHcGpwDVH6t34YseQaif9gJAh3XWGXG9bTsqVNJFFOq2f1lZiabNxWnuySaseV3T5xd3mlpm0ohw3E5Kzf%2FLecedYZ8c7fC9Cqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da18712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/find_zip.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/find_zip.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/find_zip.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GHOO9nVihsw8n4%2B9cqT0Uvo6g8tqP9zxBCVjpf67t0s5xZgRSyJrvNOGl8q9%2FqAj7%2FMZq7HmX3irPQzegyRlBRAZJYl0hEy%2BHR851u4oCxzRZ%2F%2FlYn6HAWgqeSvljpTK1t9e7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9dc712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/mailman.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/mailman.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MlwAPn5CpPA6%2BHRdO9th%2BW0M8SBS9x7%2BcaPnHQMaa1WsmyyqILxp9RcdmrYP%2BUDP%2FJ6AooQk7H3uC%2FM%2F4aDWEIlCm%2FFuQI05RwZL2sKBMiQkMa3pkMY%2FRDfwoQI1mzzn%2FL7tMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5d9f9712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/location.svg | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/static/images/location.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KmDhY6qrmDGRMWB2nCNP5Su9BdFO7%2Fv3L31WEAyXWLjYI%2BCLWwlaFYAVi8E%2FPmX2RtqzFclHfHSKUH99wnVKLsZ4EDJ0LqogCJLu4jEbINx1IxgQ8%2Ft1SCmYTmH3%2BNmZu4ddPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9a8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/utility_languages.png | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/utility_languages.png IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typePNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced Hash410956805d5701e87299cff412827e1a 5de9a390649dfc12e3d6df431140d499ad8abd67 6e727dbf5b0f4a3ec76762e445ad2c5cb750f7de41afb8b0342f903124d09826
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/utility_languages.png HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/png
content-length: 1456
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-5b0"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FnxH6ghusPYAq0MfREL51D0ILL3uy8OsOYlGG0hJDgXoHP%2FoKYzrmvZ9v%2BdYLf0hKvNw1IKOm2xoZckEdRpnhqlJnso8yTnTfZiO9EP2xjEYWiEeiL%2Ba8wCsb1lD74jAfhQ1zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a992712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/package-intercept.svg | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/package-intercept.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/package-intercept.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BnkkZnHNgNSpBLox6GPzcnfsgzBiE8mMGffJrfG3VWSROzrsJWPqr%2BOGpaWpkfermKk0WeKN%2FCjoJHIm0YSHURYJP0oQrBOHljqJg7bKNTxpglkWwqBHnWzk0qSRrNnmTfxYPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da00712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/printcustomsforms.svg | 188.114.97.1 | 200 OK | 2.5 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/printcustomsforms.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashc0b073578837924579ce25dc32d69c37 9b6cc85096bc4c634fe5625c7f399a273fd468d1 f6b5598453fece3bdf76222a246cc73e36d5df1896420a35a3c31c3b58cfa2ec
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/printcustomsforms.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9e7"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oaiGJTZK4Pnkeu1w7fX9CXqfkBjYGr19johekQCCE2kbGnnecUSRUNjue3x5ETen22N%2BhLF7SJnwkb4PnHAClXn%2Fit9X9iD8EPZ3oBPNyYK4PYt7gHwT1lXhArw7euGjtXIEbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea31712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/loading-icon-transparent-background-12.jpg | 188.114.97.1 | 200 OK | 82 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/loading-icon-transparent-background-12.jpg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeGIF image data, version 89a, 630 x 637 Hash9e0373c2b4410c49439dfd822c5fd16e 427f86c03751b7e107fd282bbe32be18fc2e0898 05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/loading-icon-transparent-background-12.jpg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: image/jpeg
content-length: 81572
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-13ea4"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AWSJSKmpl4737j2%2BbsMfYBpUrLHiYs6Q4%2BsmbC2KgZTwD9Njp2SESQdFLa7idKj2bGgNQtgVn2EoWrglWio08FmhteOmIJYwFh8zMKTdMuHz6VjXXEtLrMIkifJeiitX%2FHTU6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cac90a712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/__imp_apg__/js/sed-usps-70fc8edc-qa.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /__imp_apg__/js/sed-usps-70fc8edc-qa.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:46 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fK%2BPW7tPMdSYzF%2BKBJRHAFMUAveweidcTz9juvDvy6gqJERQ6nfRujO1%2B2CsMbFUKbDf7hbsZlcXNfKykIIyPDH5bev%2FKfceBUM9%2BhnqBGVps5ah2D5PY%2B%2F2B%2FmfpsOAvZX7Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d6084d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/footer.css | 188.114.97.1 | 200 OK | 2.9 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/footer.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (2924), with no line terminators Hash8f712712b0de29097c944acffb88091c de7c34ad57e913b27cefb63c472ca27d02ae5df2 173e627d22f2d55b5d8e377edf12bc26f078028c91efd78365e5ae80f59da2d1
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/footer.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-b60"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6gpWOBqpJTLkPjdg%2BXe1CWjz8cbLsjlrWa3QocQNr33qjLDZcljEbj14uDiMyrh1pdUeBejRfRvvX7B%2BqTw6cfpMg7W5Z9Qj2Eo%2FugzW7IjO3pVe4WbXQaxC9cfJAzH25VqFuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ff0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| api.potsvfoi.top/click/queryIp | 188.114.97.1 | 509 No Reason Phrase | 17 kB |
URL GET HTTP/3api.potsvfoi.top/click/queryIp IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /click/queryIp HTTP/1.1
Host: api.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://usps.potsvfoi.top
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 509 No Reason Phrase
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/html;charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: *
access-control-max-age: 18000L
access-control-allow-headers: x-requested-with, authorization, Content-Type, Authorization, credential, X-XSRF-TOKEN,token,username,client
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: *
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GGgF2f%2B%2F2nBesM93DTfIP3cY2RNPrDyYnoQmlDyEB4B7vDEpF0MLIZVTpk2IBPVClYz99aCQnp4DWC1MuTPuLDvxGw2iQYitHJnQUOvLVwYBIkPGo3Ie8qk%2F%2F%2BdjRBlsIYcv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8755f7e209ea712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/tracking.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/tracking.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/tracking.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DIwfkeCcN9mGtWpZ4j%2BRMATb20K4yY8a0XQKM%2F3JnWiDHEEEa04Olr5KxW6B0d8%2FX1fIhGulvBlaiGM04XEptvgaI9sB9%2BoExS%2FmFBdIMzw4lZbzdmEmNrxS6acitdbTla7LIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9f4712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/images/chinese_characters.gif | 188.114.97.1 | 200 OK | 2.2 kB |
URL GET HTTP/3usps.potsvfoi.top/static/images/chinese_characters.gif IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeGIF image data, version 89a, 44 x 102 Hash6cfd66aca15e28ed9e77672fa22604b7 79f78e9167a5853d740486cdae627034cf2a7085 dc9835ec6574c8d748f4fe255d01035a7d289f4a8caae72a989a32d3973caecd
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/images/chinese_characters.gif HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/gif
content-length: 2173
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: "653f5e14-87d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p1cB%2Fj2FOqDbh0rjtGDtsBJONbD1P%2BqOM1zuFndF9S0ngM6YVJK6sSwOYLrwObOaWcomYV6%2F6ZMHKllRnE5%2Fo8TQaIXx8aP%2FtZ%2F9gvSQUV8V%2F1O1TczDrn9wr1Ihq3RhURIUmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5a9a3712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/schedule-redelivery.svg | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/schedule-redelivery.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/schedule-redelivery.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pu1yd4flXf090gciCj7QWgCzGcSyJuwDS9%2FPI0m5Rz6RZk6%2FObALIdxMyQpohkTV%2FMykvI2akcoqFN%2FcKkHt9jtuKThFc2Bpj%2BQ%2BH8WS8EoJYggk3wYoDsNHjBB3lGfaiIKnCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da02712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MVCC8H | 142.250.74.40 | 200 OK | 687 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MVCC8H IP142.250.74.40:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (65316) Size687 kB (687320 bytes) Hashb429e898518205f450014ff16759d7b5 5efd50b1dc2b21e304b2c3df95d4d82b8c7ea9b8 159fb0fccae74c09b7c258581a680faba5c11beaf9b14e7315cbe08acf4a20b7
GET /gtm.js?id=GTM-MVCC8H HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 16 Apr 2024 17:41:49 GMT
expires: Tue, 16 Apr 2024 17:41:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 Apr 2024 16:16:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 152492
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/js/us.js | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/us.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with very long lines (1239), with no line terminators Hash521545b0f7e96f3b10f337850665452b 16240deeb0f6f95fc7b1a5e9b34a33c72def413f 0fbc52576d1edee5f3bed2b51c4c97a00fad81b7e5382ab9fa39a5ba39c03fcb
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/us.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:44 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-43f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E9z0%2BpGCytxZnKRBXTCXnDQmxn5fnrGwd4AL5%2F7VTnfZRbg%2BMkVmuuVRWT5zn6WkGej1q4vkcP5QP2alc6cnlU%2BWDtGcECGh3M1egmkl2J%2BBuc8lBKxME%2BkqOvF3A0X9TFNbvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7c81c07712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/mailman.svg | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/mailman.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash7e63b1510cfe1e7b2e2c00dbe7b48f49 7b13f782d0ea7d101e612cab914da1574180fa76 3bfb113a66658cfbfb3238b0210f43d4e564d7fce174ee72f3ab8d3b8b3cff41
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/mailman.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-723"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFRYdr1wW0ySumYkawNc9Z4mz7VVK6thsDXg7jPwdOnW1bmS1iJc%2Fl%2FSRc5nOrqMt0qhXEyF7sf8845vzxgauHE56RIlcUuE4%2FFyWfvHSgU965IKCG0gf6%2FXyRtpcHhxPSk0ng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/po_box.svg | 188.114.97.1 | 200 OK | 1.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/po_box.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash2cc2a9cd603e3badb3f767a4a4728f5c 40f414f0ff209023650ca7014ec2a57939229d1d e60ecbbbdfaf3944b4ec3ffdb090954b0ede6607da1cdbf9fb7d2963fdee61b6
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/po_box.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-667"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ln42jspJm41%2BjtLZg1hDIKrLPzvjL3mMUghpNHH0Ytr0NJ6Dyh2hnyYqnc4b3UPSA4M4SSbLr9%2Fekc5BnVXnBC%2BQ3WCkwFGbDo2wsk2BXgcuxotLkek5sn8mZYzqB49dQCCLdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9882f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/gifts.svg | 188.114.97.1 | 200 OK | 1.0 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/gifts.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashd5e000eef8dcaa68cd64f751ed58bbe1 ea5f010cf037aa26788ee74d0b93431f769c99c5 bd96da0c1c77a63e3eb4d350d786cb53debebe069efd91879f62ae24362fc53a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/gifts.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-3ee"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yg7plO1grGfT9a%2F0j1wfeYET7Ttup8G1fwMzs%2BVgX7cvtPrO6P4yCsVcMhN%2F3dTEfHNriUI8rfw3aDNdghxuD3RgxLIqUvUp5IOiD4HaiLLN1TXb75%2B9msoyCoiHGEXzeihJ2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea23712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/optimize.js | 188.114.97.1 | 200 OK | 118 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/optimize.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (1720) Size118 kB (118492 bytes) Hash649c3e8e8378fdc785ae5fbd51f843b4 5eb51f662d4652db4932aa3bd444a3399923a9f4 8ff752ffa3c7cc5de38982c9e9e02bcd12f7ec83d5401438af6cc8b983b6d32a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/optimize.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-1cedc"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DxD2BqE38i3KztLXy0x0O32lugyxEJ1Lj3gdya73jNX7GgL%2Fs3qg4JeVMXe14jJEXydwHUT%2F1%2FPmRwgEwELs7DbbslOr543pAzjOJc0Mv%2FblapFnr%2BywfLV%2Blm6XMSRtqEkM3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fed712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/featured_clicknship.svg | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/featured_clicknship.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash4eaba35653e775df78f96942d040dcc3 f5fd90e8f32041520795f0c82a1652124a02f93c 08f3c04fe589387977fca30dc02a87bf42ce3c066fc28c1071be412aaf9cf852
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/featured_clicknship.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-436"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zggp66w0BzekSc4G4ePQ47nQEdkzyAkPW6IJo1GuwqMbIr6OZo%2BOeKw9DCwTjG9kkBwLuHISrv3%2BuCzJvTVTdtJ51GYlfOS6CBRcTAb5qrqKX9uU3XkvMyQo4fBuAPgHQZ4eKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98838712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/collectors.svg | 188.114.97.1 | 200 OK | 1.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/collectors.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash4554cbdb5e84baf194db7efa63951371 66719fafdb1a0a831b647addd645607f0449adef 7e7cf980806d79cc11f61e846573b77d601c9eca47cbf1b760a072c66288e8ef
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/collectors.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-461"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5O1GOqQXTXucmrywmEelN9B1dCP6tpmsR1r6DCm907jjRrf4%2BOcEZWdGj6P%2BI2OaSv7PMngDyPJZjl2P3xyiKv76e1cOyISlnkvRn56Ue59C%2BYIH%2F%2FxtioZYl3mKvlT6JGBMkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da1e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/conditionalchatlink.css | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/conditionalchatlink.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/conditionalchatlink.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cb57"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5wTDFI4m5pH2YHoDbnKIdmOxnEWtjGucB61ObfbX6A0jPx6YA3Zx0lRpRg3Qt%2BFku6aG%2F4OGmdGRFQDHK9JrxHreGQcVY0YpKJQlUppC4TQCj%2BMt6XdQNmPfPNmA5pvVT0GEKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ffa712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/picture/location.svg | 188.114.97.1 | 200 OK | 2.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/picture/location.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash2b06f7a382ea90d910403786f60f9d81 9f10825ebeb9516e451a6077b1d0049a352b48e3 a0e33a0b87e479cf85c9df62303b3952357a0645e6c7c36627a43fccaafad182
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/picture/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a1a"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qEc%2F9JJyJeJSoBCE5n8cj%2FZriP2WE8jaPvSCWJWQIgCFe8%2F031iuDhxh9nMNaJv8qDy%2BoDZriCff0Af9KYTS%2BKAHKWl%2BDsVOpNImK7dLgAKVWgvfcJyn%2Bo%2BCmKlkcB6VYLT5%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9881f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/ge-login.js | 188.114.97.1 | 200 OK | 9.3 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/ge-login.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (10568), with no line terminators Hash8e71360989154bfff52eed7385693c97 fef06dd99e04c205b34719c8e60d038327551574 92a38453573da7e18c1db67ab224561714b604b7c517034e3311b65aac11346e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/ge-login.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-2460"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2V7C7%2Bql81NMmogE8SqkWHXUYpXGRJXwm69sb9w5Xk0T9hD%2BWOjgv9JXXh4qinnz2wMXPNk2LZIrl6Af9FeLq80Axb5N6qhOfkYaD3iZd1i6ZcjVS9m5xgFcoT3jDwt8sE0YWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98850712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/shipping-supplies.svg | 188.114.97.1 | 200 OK | 2.6 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/shipping-supplies.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hashab67d7e569a64be0744cb3d179612d50 65e256ede2d7bc4297f7497f4430182c04b627e9 b3b380736b4280b27e829b17a7fb722f88c100d77bea94909c9b110e2a4a691e
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/shipping-supplies.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-9f8"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CPqRF9wsb0MHU0Zf1%2BXMqAbvZjRfBHlncyVAlbmsmLDMuSJ%2BXzeQTs7LSzAHhnyq7dp61q4yIAODbNL1xaEPjtgg6R4E5T1ASqASl24HoDd4EO%2FTjo0CxZ%2BrjmdlwFcC%2FKuZLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da0f712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff | 188.114.97.1 | 200 OK | 47 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeWeb Open Font Format, TrueType, length 46657, version 1.0 Hash3beb1cf49dc702cd4de8618eeb344dd4 080e1b4dc8b43ddb06961a3490857cdb936a8c2a ffd7af6177837790e2620c429dce0da6dc7d18bbdcf87a7ed2c033a03513e947
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/4a9c62ab-b359-4081-8383-a0d1cdebd111.woff HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main-sb.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: font/woff
content-length: 46657
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: "653f5e13-b641"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5rMaWxuVeBPYFxWuR0EGQbJ1CE5X%2BUr09deQ3TTo0paLdr7VIR1yv%2F6SeLEkVR8%2F13hlXXxMBWuNj8W3ucypvR1Ljd2WV9ctxLhj7y0ZNo2r5GS0y0U3wsY15FsaIwSzD%2FRBlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e74cc1712f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/css/tracking-cross-sell.css | 188.114.97.1 | 200 OK | 3.1 kB |
URL GET HTTP/3usps.potsvfoi.top/static/css/tracking-cross-sell.css IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (3072), with no line terminators Hash1748fdddbf9576848c632cc84284cb18 9375f807310e395cfb36a1a0d04df4ae78cfb397 504797b896dd4ddf1f976e9b4719bfcec92f5a897a44760c6dcf42fcc40812d3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/css/tracking-cross-sell.css HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: text/css
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-bec"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pz2HsTFqMP%2BDlTKIxu8uwBhM49ki4e1fHRFVuXRCI4ISojLsXhVX2ZlDAlVGNEDs1p7bbZQ5h%2Fh2Xf3ubI7n86LFUBodBe9NEykM%2BrgbnY5vFBSjVHLeBHC2%2FFkwanSQWUQ3UQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98ffd712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/schedule_pickup.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/schedule_pickup.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/schedule_pickup.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Q%2FOqgAvJUFAGAx7PJ2D%2BE6i4lWIjyNuPrVSxSUA2iSndtODc5oIWeUm37DG2pZkJ6ZnUX8jl1ldJCSIRk2gOSvORmoJCXWv%2Feqq%2B69biScbLj9FZr3QNqkhKWBGMJVotjPYOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9e8712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/holdmail.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/holdmail.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/holdmail.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KBOCm4n7x6WgBuIVQZNcDtr0HrLvVldSwppARkNgvHCyfhSvvco7kkdsBQxQlWdUUgMLzuM6jdIWqEl1JHvkL9VnQTUTiXWM2B9LnWOTeFHUOmo2tPujGtiRF6QeCmCEpoFUrQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5da05712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/nav-red-chevron.svg | 188.114.97.1 | 404 Not Found | 153 B |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/nav-red-chevron.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeHTML document, ASCII text, with no line terminators Hash2311107fc4a0cc05c1bf56cf25df6b90 f60e44c137b1c78e8b732aaf85e8d9efa0043140 518be356167fcc8b31e415bd6054a1214b010541c1f2a21d6839cb9bc95987b0
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/nav-red-chevron.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2nn%2BanDyWK1uPmrooiydIkE3%2BJ8WL5PLIRCmzQyhFp4t5wcFyZ8%2BK8zhlnpsE9KavKji7eWQ1LIQQlkWtfCqTC2pmZP8pBEAcNBIHfcuaqluiLaYK8%2FUHGKEqqsqe7IVBMd%2BfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e65b12712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/jquery.min.js | 188.114.97.1 | 200 OK | 85 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text, with very long lines (65453) Hash8234c1aca62c1e09cc00f7fb5908d309 831062e805247046abdbab52149b03604119fd11 e1ee1eb92c6acc3fbf821c99963ad92dd9954d576eababe7f6df6800f91bc062
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery.min.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-14b60"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UI4dQO%2BxyrOsxYm4dA7DEsnj1bvsW5bt9GxQf%2B8FkhaJ0IIYDVWJjybpsH2H3kXximAR2TrQRH4sgqoh4bV21l9uXQelqpXpjn295R21YVZbkLxdsZjIYkWLr8lc4GMkTqZo7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98fe5712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/location.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/location.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/location.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IcXGA29kSNuzoLMuD3y2pII%2FR7Lh6p2bA9lA%2BCoucLt%2FINfDNT7MJiThVpSTzz5odqRVaDP%2Be58QrPXgkelL1fpFI21I6cYiBRpSM8MXrvP5lgFhGI9%2BJeQw6NB9jn7dEPv%2F%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5c9ee712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/axios.js | 188.114.97.1 | 200 OK | 43 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/axios.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeJavaScript source, ASCII text Hash1eb8e8e2284670dc214a3e70c25992b8 94ece417aa560aa8de906e8f54c0985da90364cc 96b65382c74cd6255d4628044c5394f2ef3f0662d7d72b10f1bceb50b6ee5455
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/axios.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-a6f0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=02kAGrfANFxXapJaEA4IXB5NZvjPirSvqbRb1Ii5F8U3hjpck2lUNRPR7aYBlRfPQchjX4Q2uf%2FUHgxxNMyNk24ohGOWAyrzIa8yYtCs%2FfrPpyPldY7NPQmc6vaST4GyI8Jw1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d98805712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/jquery-ui.js | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery-ui.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (1452), with no line terminators Hash41b0999494be450f941d147a1b4e8da4 f3c6bb5dca48bc65a85110db1dae651ac5c3d9b5 523325d1f02572c5e57dab27b722584e4796944e26f498c18db7cd1dfe425cad
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery-ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-59f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lBDSiytYTLpIr%2B2%2B%2BGP6qFRtn32jT3V%2FOKgEZpjh0hL7xUVq4y3ACaRMrzLlOkbEU65o6QCcbPb1K2F9k4MxPGSgAYXJGdis9hsWHfCCDrk4TKMic%2BMvNmxsp8eiW9RWaIvtQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9880d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/jquery-ui.js | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/jquery-ui.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeASCII text, with very long lines (1452), with no line terminators Hash41b0999494be450f941d147a1b4e8da4 f3c6bb5dca48bc65a85110db1dae651ac5c3d9b5 523325d1f02572c5e57dab27b722584e4796944e26f498c18db7cd1dfe425cad
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery-ui.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:45 GMT
content-type: application/javascript
last-modified: Mon, 30 Oct 2023 07:41:08 GMT
etag: W/"653f5e14-59f"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oAdGr0XxRptc2egRKw85QBnEuSTHFFvwFXfrJziFgVCdL4J4PtMmVXbkhrLEnNnj3yB1SycPJSgXTnDKRfN82q61pWHDliDyScXlGRFzwRxuM88TQYje31sjqY3wj32qrVxDgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7cae94e712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/js/ResourceConfig.js | 188.114.97.1 | 200 OK | 16 kB |
URL GET HTTP/3usps.potsvfoi.top/static/js/ResourceConfig.js IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | urlquery | suspicious | Suspicious - Suspicious Javascript code | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/js/ResourceConfig.js HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:47 GMT
content-type: application/javascript
last-modified: Mon, 06 Nov 2023 14:01:09 GMT
etag: W/"6548f1a5-3dd9"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=71Ad%2BOX3csQSBcgdQSmG3hNePwBs4igw%2FD43xN8Popb5BIcZzQcyZfhXXn778Q7lLizjIdsMA6Hprvg6gev7Z3shbyQSMqXaeWCpxwB3tytyi3N7Or2%2FYJzH2q3z0QBzY0mAXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7d9b8a0712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 | 104.16.41.28 | 200 OK | 0 B |
URL GET HTTP/2fast.fonts.net/t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 IP104.16.41.28:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectfonts.net Fingerprint40:BB:71:39:9B:62:CA:2E:30:5E:D3:A9:33:D6:69:83:D8:1F:D0:57 ValidityThu, 04 Apr 2024 03:21:50 GMT - Wed, 03 Jul 2024 03:21:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/1.css?apiType=css&projectid=ee38900c-6459-4e0c-95d6-896c0208d3d0 HTTP/1.1
Host: fast.fonts.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 17:41:48 GMT
content-type: text/css; charset=utf-8
content-length: 0
x-amz-id-2: ki65sQC1HlYAvAwzpIlg68BKJDoZiZ/BwbN/hDH5RUfm7vMSBZqfat1D29ePjiEs20YJy+049dY=
x-amz-request-id: 4MWDSXH8MPCQQMJM
last-modified: Tue, 23 Mar 2021 12:59:23 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
cache-control: public, max-age=0, s-maxage=604800
x-amz-meta-mtime: 1519217722
x-amz-version-id: null
cf-cache-status: HIT
age: 427332
accept-ranges: bytes
set-cookie: __cf_bm=1pepvnKKsWPl6gGVTgSbBUC_fXPeTjAu9smjyvITVYU-1713289308-1.0.1.1-SmRm_.eQFiZtTTsKqSkjeP8XQ0ZHv9IwPGiZiwx9xD.X59lsFeBUtRpDcf_3XnGP69oe_roVkRb0i6mw2E2Azg; path=/; expires=Tue, 16-Apr-24 18:11:48 GMT; domain=.fonts.net; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7deff04be53-CPH
X-Firefox-Spdy: h2
|
|
| usps.potsvfoi.top/static/fonts/featured_clicknship.svg | 188.114.97.1 | 200 OK | 52 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/featured_clicknship.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/featured_clicknship.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-cbb4"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FulNXqpwbVFJyL32kBbbSE2M5Z3z5aDOHpQKfxYUyJ3e2sEXHFBgXVgdwaKUPHomMTPS%2BS2EWhEL4fafIkta9AV9ufgfTmUjICx8DcHb2JEffM6PUlr%2BnzNEyKfQgbTZVd6%2Brg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5b9bc712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| usps.potsvfoi.top/static/fonts/business.svg | 188.114.97.1 | 200 OK | 1.2 kB |
URL GET HTTP/3usps.potsvfoi.top/static/fonts/business.svg IP188.114.97.1:443
Requested byhttps://usps.potsvfoi.top/ CertificateIssuerGoogle Trust Services LLC Subjectpotsvfoi.top FingerprintD7:83:43:36:71:A0:AD:F4:D8:C3:BB:37:11:F2:4E:3F:F1:AA:A9:A6 ValidityThu, 11 Apr 2024 06:49:23 GMT - Wed, 10 Jul 2024 06:49:22 GMT
File typeSVG Scalable Vector Graphics image Hash6908931641755e0439879badd7d60325 bb620d016ac952020b5a234e5cc1448c11d0fce7 db9835eb4a5a2c0a97c5dc0982f7be2281e727322699d8a1df3b2a4155ea0f37
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - US Postal Service | OpenPhish | phishing | United States Postal Service | Quad9 DNS | malicious | Sinkholed |
GET /static/fonts/business.svg HTTP/1.1
Host: usps.potsvfoi.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://usps.potsvfoi.top/static/css/megamenu-v4.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 16 Apr 2024 17:41:49 GMT
content-type: image/svg+xml
last-modified: Mon, 30 Oct 2023 07:41:07 GMT
etag: W/"653f5e13-4d2"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p8NRNM9%2BgRWRpCxxrCrhI8JKncQblyMEzs0rf4PlaY5RXudPFleiT3GukA8WcXqfmxRX8ZfqiovWa4CgWoc5TFQBY67ZWyX7pN9LDYonMWhSH77NzkNHdJEPcPeb5HZfmzngmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8755f7e5ea26712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|