Report - opensea-claimnft.com

Report Overview

Submitted URL
opensea-claimnft.com
IP
185.149.120.71
ASN
#57724 Ddos-Guard Ltd
Submitted
2024-05-10 14:13:43
Access
public
Website Title
Opensea Mystery Box
Final URL
opensea-claimnft.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
30

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-09	862 B	288 kB	104.17.24.14
opensea-claimnft.com	unknown	unknown	No data	No data	7.4 kB	924 kB	185.149.120.71
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-09	1.4 kB	172 kB	151.101.65.229
unpkg.com	11693	2016-01-06	2016-01-08	2024-05-09	1.4 kB	265 kB	104.17.248.203
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-10	561 B	26 kB	142.250.74.106
cdndelivery.pages.dev	unknown	2020-09-02	2024-01-11	2024-03-10	452 B	1.9 MB	172.66.44.173

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed
2024-05-10	medium	opensea-claimnft.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	opensea-claimnft.com/	3.2 kB	2024-05-10	2024-05-10
Pretty URL opensea-claimnft.com/ IP 185.149.120.71 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-10 16:13:50 Last Seen2024-05-10 16:13:50 Times Seen1 Hash b44f8b73f1aacf29753a6a325e162e3d 1f6ff31bdee5c03ee053d0cad5f588bdfbe0c2f9 12ccb5a8e746d3ddab6a640029f671092b991cce94641752043d9624a7c7632e Loading...

	opensea-claimnft.com/encryption.js	84 kB	2023-10-15	2024-05-20
Pretty URL opensea-claimnft.com/encryption.js IP 185.149.120.71 ASN #57724 Ddos-Guard Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-15 16:15:19 Last Seen2024-05-20 19:46:38 Times Seen158 Hash 81e8c22ea207dece0624d6209db46cce cc6ab31cc685e11bfc69fda72ad6c295130cf2a7 0a9f0840be094f6fc48b6e8abff400e72e937aba6ceeb6eca4b60db4e8806fd7 Loading...

	unknown	34 B	2023-04-11	2024-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-20 20:10:27 Times Seen77803 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js	68 kB	2023-07-11	2024-05-20
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-11 17:54:11 Last Seen2024-05-20 19:46:38 Times Seen475 Hash 0aaaa3278d29d8b8d9b3795f60d3b836 519ef68609c1f595ee6a9cbb7660e4c8585a0d41 b030031299100b9d6c6b413bf9e9d712f59695f1384ef548c3f43b0a0faecbfa Loading...

	cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js	323 kB	2023-03-07	2024-05-20
Pretty URL cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js IP 151.101.65.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:06 Last Seen2024-05-20 19:46:38 Times Seen879 Hash ca1104de538caea2d54265fbe90916b4 d6c416e5d153f500f7ac66d25a2b73db45867ad4 10d78c0a5e8664889dc8eb47c72bfa46ad0ed02c70a234be9acdefa27dbb24b0 Loading...

	cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js	760 kB	2023-03-13	2024-05-20
Pretty URL cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 00:48:53 Last Seen2024-05-20 19:46:38 Times Seen980 Hash 71f8c498e792c6179d4e2840228f777a b651545587f6257345dc3de9ddaa444b10dedf3e a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73 Loading...

	cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js	638 kB	2023-07-13	2024-05-20
Pretty URL cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-13 05:39:36 Last Seen2024-05-20 19:46:38 Times Seen465 Hash 1932881debf364cfed402e1d0c7a54e3 e53d84ee93cb7c4eae82bdce939e80307b2cb1b1 e95c1fc6aaa308b9bbfc7ba359f34b57c65e4932440416441fe7c8864ccbdd84 Loading...

	unknown	1.5 kB	2023-06-07	2024-05-20
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-07 22:44:52 Last Seen2024-05-20 19:46:38 Times Seen257 Hash 1884ef3dcd9482d5f21c955b13eab060 bce91cb9cb511d0cd0a19f8f0fc5bfe03f3fbabf 938cde8b9179eff487eed4b7e1d743302676b96ee0286cc8c2e095160e147db6 Loading...

HTTP Transactions (25)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js

104.17.24.14

200 OK

139 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/ethers/5.7.2/ethers.umd.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
139 kB (139139 bytes)
Hash
71f8c498e792c6179d4e2840228f777a
b651545587f6257345dc3de9ddaa444b10dedf3e
a66293a6a2bb4dee061a68612be0be3c5c0ab7e4068ab8d98a4a357baf664c73

HTTP Headers

GET /ajax/libs/ethers/5.7.2/ethers.umd.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 14:13:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 139139
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6350cee7-21f83"
last-modified: Thu, 20 Oct 2022 04:30:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 856027
expires: Wed, 30 Apr 2025 14:13:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PYmvFpQJzJfsIwjosIkZvvqfbhVmQ%2F6AkdtGo4wbhLunlBKdc%2FsPokDAXlOuUyqK8gIhDNoiXId1V9SSSPkBBZiQfIqNhny0Dq2yTy77zj3987kg7oqGLEXiv4pSmU5wQFigrtY2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881a877239d0712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js

104.17.24.14

200 OK

147 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/web3/4.0.3/web3.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65470)
Size
147 kB (147285 bytes)
Hash
1932881debf364cfed402e1d0c7a54e3
e53d84ee93cb7c4eae82bdce939e80307b2cb1b1
e95c1fc6aaa308b9bbfc7ba359f34b57c65e4932440416441fe7c8864ccbdd84

HTTP Headers

GET /ajax/libs/web3/4.0.3/web3.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 14:13:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 147285
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ad8554-23f55"
last-modified: Tue, 11 Jul 2023 16:37:40 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 848749
expires: Wed, 30 Apr 2025 14:13:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJ5BkiX0eWDezI42UUK9plXSvPm1FpU77Hy1uDiRgjaJ8rKEdPdRR9E8CSGWp0jE1b%2BCgAHCJWcfvHqE%2FzeAlM7TZaUmyUCKe8hKMJe9T9n45CeVTCxiNuTmSy6klwvUS%2F3hcQS%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 881a877249ee712d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

opensea-claimnft.com/css/1edbe2c623a68108.css

185.149.120.71

200 OK

1.4 kB

URL GET HTTP/2
opensea-claimnft.com/css/1edbe2c623a68108.css
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
ASCII text, with very long lines (1351), with no line terminators
Size
1.4 kB (1351 bytes)
Hash
399de44ae2a4c80b4731d97b4eaa201a
f549f49d9946dd5ec9a3216d80c631ef47725f9e
f8966866d2ae2ae033baa924d6f839640e5ece9c364f971dff400c78f761f64d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/1edbe2c623a68108.css HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: text/css
content-length: 1351
last-modified: Tue, 07 May 2024 21:51:09 GMT
etag: "663aa24d-547"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/images/Logomark-Blue.png

185.149.120.71

200 OK

9.3 kB

URL GET HTTP/2
opensea-claimnft.com/images/Logomark-Blue.png
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
PNG image data, 360 x 360, 8-bit/color RGBA, non-interlaced
Size
9.3 kB (9268 bytes)
Hash
b026ccd2a6476482bcbbe445e5c45ed4
11c8f2f0bb8af88a748bd971af511f2cabfdbf82
f93b9d7d1d6b2d9262073078965f9fe1fdd857f75880f8a412f74b4ccb267fc9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/Logomark-Blue.png HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: image/png
content-length: 9268
last-modified: Tue, 07 May 2024 21:51:34 GMT
etag: "663aa266-2434"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/images/opensea.svg

185.149.120.71

200 OK

3.9 kB

URL GET HTTP/2
opensea-claimnft.com/images/opensea.svg
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
SVG Scalable Vector Graphics image
Size
3.9 kB (3905 bytes)
Hash
c7c3ed10e5c602fba31f6e93a6fbc957
3fa948ddaa2c1aa91fbb94527a7908f39896a887
8ae5fefbaeebd874dfebfc4b5ef2a251005ae26b0a7cb9bd531a1c131c44f6ad

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/opensea.svg HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: image/svg+xml
content-length: 3905
last-modified: Tue, 07 May 2024 21:51:35 GMT
etag: "663aa267-f41"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/icon

185.149.120.71

200 OK

569 B

URL GET HTTP/2
opensea-claimnft.com/icon
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
ASCII text
Size
569 B (569 bytes)
Hash
4f6cf048f20bd0f06b713e6388541306
2903c4f3d442c0e206c19d9b975feaf973e6af6c
5848fed0499a99763526e2178efc1bec18842259a88cb1cf12600be9ddabbdcd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icon HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-length: 569
last-modified: Tue, 07 May 2024 21:51:30 GMT
etag: "239-617e4304748af"
accept-ranges: bytes
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2

opensea-claimnft.com/images/remove_FILL0_wght400_GRAD0_opsz48.svg

185.149.120.71

200 OK

130 B

URL GET HTTP/2
opensea-claimnft.com/images/remove_FILL0_wght400_GRAD0_opsz48.svg
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
SVG Scalable Vector Graphics image
Size
130 B (130 bytes)
Hash
5aa1fdfcd31815981bdf499793c1be71
1dc3fc3a0f977a5569cdd701f2ffb7da683bb143
327ad03cd5a9da87f2f30d7438a24598a86d82153e17c8a68877b84b213cba94

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/remove_FILL0_wght400_GRAD0_opsz48.svg HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:18 GMT
content-type: image/svg+xml
content-length: 130
last-modified: Tue, 07 May 2024 21:51:35 GMT
etag: "663aa267-82"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js

151.101.65.229

200 OK

97 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (43040)
Size
97 kB (96826 bytes)
Hash
ca1104de538caea2d54265fbe90916b4
d6c416e5d153f500f7ac66d25a2b73db45867ad4
10d78c0a5e8664889dc8eb47c72bfa46ad0ed02c70a234be9acdefa27dbb24b0

HTTP Headers

GET /gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"4edeb-1sQW5dFT9QD3rGbSWitz20WGetQ"
content-encoding: br
accept-ranges: bytes
age: 1849
date: Fri, 10 May 2024 14:13:18 GMT
x-served-by: cache-fra-etou8220137-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 96826
X-Firefox-Spdy: h2

opensea-claimnft.com/images/add_FILL0_wght400_GRAD0_opsz48.svg

185.149.120.71

200 OK

163 B

URL GET HTTP/2
opensea-claimnft.com/images/add_FILL0_wght400_GRAD0_opsz48.svg
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
SVG Scalable Vector Graphics image
Size
163 B (163 bytes)
Hash
6c1a23a2f164cad06b71fa324db1455d
10715b5744c6c3f85b34be4daf5184facee494ae
a5295245ac9f77a50ee34d487fe064afa338551f922ae39ac9cf0fabfee60881

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/add_FILL0_wght400_GRAD0_opsz48.svg HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:18 GMT
content-type: image/svg+xml
content-length: 163
last-modified: Tue, 07 May 2024 21:51:31 GMT
etag: "663aa263-a3"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.min.css

151.101.65.229

200 OK

4.6 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.min.css
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
ASCII text, with very long lines (23850)
Size
4.6 kB (4573 bytes)
Hash
d849077e8b4cc93dd5c925165f2cded4
496b8e753292cc78d4964d94eee5c250d53ca13a
ee3512f8c59eaa415d996f68ce467b98f6a0cfe42631bb0196df90dccb04f855

HTTP Headers

GET /npm/sweetalert2@11.7.16/dist/sweetalert2.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 11.7.16
x-jsd-version-type: version
etag: W/"5d2b-SWuOdTKSzHjUlk2U7uXCUNU8oTo"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 14:13:18 GMT
age: 898574
x-served-by: cache-fra-eddf8230076-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4573
X-Firefox-Spdy: h2

opensea-claimnft.com/encryption.js

185.149.120.71

200 OK

84 kB

URL GET HTTP/2
opensea-claimnft.com/encryption.js
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
84 kB (83670 bytes)
Hash
81e8c22ea207dece0624d6209db46cce
cc6ab31cc685e11bfc69fda72ad6c295130cf2a7
0a9f0840be094f6fc48b6e8abff400e72e937aba6ceeb6eca4b60db4e8806fd7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /encryption.js HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: application/javascript
content-length: 83670
last-modified: Tue, 07 May 2024 21:51:10 GMT
etag: "663aa24e-146d6"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/images/1828640.png

185.149.120.71

200 OK

16 kB

URL GET HTTP/2
opensea-claimnft.com/images/1828640.png
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
16 kB (15714 bytes)
Hash
d1826015d458a030a28f932535bc384d
e8f2902e70a8dc99c8049a83ba4786261dd0087d
de5b3a9f770a7179c1ca7dc89abf0003dbf0467b73fc7aa03485dd34cacf5bff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/1828640.png HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:18 GMT
content-type: image/png
content-length: 15714
last-modified: Tue, 07 May 2024 21:51:30 GMT
etag: "663aa262-3d62"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/css/ba7a7d07c522979c.css

185.149.120.71

200 OK

110 kB

URL GET HTTP/2
opensea-claimnft.com/css/ba7a7d07c522979c.css
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
ASCII text, with very long lines (65365)
Size
110 kB (109487 bytes)
Hash
9f80e7ae2f91004236a9e2b9db32fa6f
b92a323f00b8d44914eb8991edc2db9cf13f3b57
a40ccebb184ae3112398cb71d598b5abd118236f202846b2b6f2edee76dee6aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/ba7a7d07c522979c.css HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: text/css
content-length: 109487
last-modified: Tue, 07 May 2024 21:51:09 GMT
etag: "663aa24d-1abaf"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/

185.149.120.71

200 OK

35 kB

URL User Request GET HTTP/2
opensea-claimnft.com/
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
gzip compressed data, from Unix
Size
35 kB (34561 bytes)
Hash
a47b80378fd17c5f01c7c2440b9fe098
9a8654bb786dea38c32526b5b7cfe02525149b5c
ba78123bcfb1b7163e7aed8e417928f5ed03a5db05e7e8d988f9ce89f5918f24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
set-cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL; Domain=.opensea-claimnft.com; HttpOnly; Path=/; Expires=Sat, 10-May-2025 14:13:17 GMT
date: Fri, 10 May 2024 14:13:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2

opensea-claimnft.com/images/389-9bec97c22fa2e411.gif

185.149.120.71

200 OK

660 kB

URL GET HTTP/2
opensea-claimnft.com/images/389-9bec97c22fa2e411.gif
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
GIF image data, version 87a, 750 x 750
Size
660 kB (660432 bytes)
Hash
b9f393bd75705f60c29e15ceddfd2db9
9b3c4261f673b54903d47a5df6b6c981cdd1276e
09268325243816ed6fe7a556c9e33ff179eae6e4a1e9de2194f590aef36d905e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/389-9bec97c22fa2e411.gif HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: image/gif
content-length: 660432
last-modified: Tue, 07 May 2024 21:51:31 GMT
etag: "663aa263-a13d0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

opensea-claimnft.com/images/favicon-16x16.png

185.149.120.71

200 OK

0 B

URL GET HTTP/2
opensea-claimnft.com/images/favicon-16x16.png
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/favicon-16x16.png HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:20 GMT
content-type: image/png
content-length: 0
last-modified: Tue, 07 May 2024 21:51:34 GMT
etag: "663aa266-0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.js

104.17.248.203

200 OK

240 B

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle.js
IP
104.17.248.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
Java source, ASCII text
Size
240 B (240 bytes)
Hash
fad3fe239fd356bc775d0b30587a6e4f
ae832884e1984b9e1fc2290d02acd59a54a23d5f
094505bbeb108003566526df8766f6fd81d6b8370ff7a8ca028231b03a1ea5e8

HTTP Headers

GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
Referer: https://cdndelivery.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 14:13:19 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "ed-roMohOGYS54fwikNAqzVmlSiPV8"
via: 1.1 fly.io
fly-request-id: 01HWQX8E700NN746BED3JT63SZ-arn
cf-cache-status: HIT
age: 856010
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 881a877c3c1fb512-OSL
X-Firefox-Spdy: h2

opensea-claimnft.com/assets/ba7a7d07c522979c.css

185.149.120.71

404 Not Found

282 B

URL GET HTTP/2
opensea-claimnft.com/assets/ba7a7d07c522979c.css
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
HTML document, ASCII text, with no line terminators
Size
282 B (282 bytes)
Hash
c2997cdee8639f3dc5c08a853cde55a8
fdbcd71cb95343531816e91f68004149f3a0cf1e
18bd472effe076b0285f939dc459d927b50a9d662802b27ea4b68c5fef6ae177

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/ba7a7d07c522979c.css HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap

142.250.74.106

200 OK

25 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
25 kB (25076 bytes)
Hash
6fecda30a359603dcc3d3cf3b7028749
0cc2a3e532d445323028611087dce6c5fb5a6ad6
453e1303e4b318f6d3bdbb546901d68412355084c54b11d37d235d184ad8e862

HTTP Headers

GET /css2?family=Inter:wght@400;500;700&family=Montserrat:wght@400;500;700&family=Raleway:wght@400;500;700&family=Roboto:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 14:13:18 GMT
date: Fri, 10 May 2024 14:13:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdndelivery.pages.dev/web3-ethers.js

172.66.44.173

200 OK

1.9 MB

URL GET HTTP/2
cdndelivery.pages.dev/web3-ethers.js
IP
172.66.44.173:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectcdndelivery.pages.dev
FingerprintAA:61:A1:15:72:D8:27:28:37:28:EF:1C:18:B0:29:83:38:F3:C4:D1
ValidityWed, 08 May 2024 19:56:56 GMT - Tue, 06 Aug 2024 19:56:55 GMT

File type

Size
1.9 MB (1900267 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /web3-ethers.js HTTP/1.1
Host: cdndelivery.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 14:13:18 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"1aff58b30ccee412617c85ed33bfb5e5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B82grJvyDCyB6td94eQQ5yGl2F%2FCnMUnlGE0SOP90Edkh%2Boxf%2F0w9j%2B5sssu80tunun4rn7PktgYofI2RhQVFnjBtvpjaPelnRYjcKU6CXdjEA4TINSbIeX0P6xwisGaCAvJOlD90X8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881a877378151c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2

104.17.248.203

302 Found

237 B

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2
IP
104.17.248.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type

Size
237 B (237 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /@web3modal/ethereum@2.6.2 HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
DNT: 1
Connection: keep-alive
Referer: https://cdndelivery.pages.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 10 May 2024 14:13:18 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
location: /@web3modal/ethereum@2.6.2/dist/cdn/bundle.js
vary: Accept, Accept-Encoding
content-encoding: br
via: 1.1 fly.io
fly-request-id: 01HWR79E4101DXPWT5M64PD5JC-arn
cf-cache-status: HIT
age: 845491
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 881a87777d15b512-OSL
X-Firefox-Spdy: h2

opensea-claimnft.com/images/apple-touch-icon.png

185.149.120.71

200 OK

0 B

URL GET HTTP/2
opensea-claimnft.com/images/apple-touch-icon.png
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/apple-touch-icon.png HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: ddos-guard
date: Fri, 10 May 2024 14:13:20 GMT
content-type: image/png
content-length: 0
last-modified: Tue, 07 May 2024 21:51:31 GMT
etag: "663aa263-0"
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2

unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js

104.17.248.203

200 OK

263 kB

URL GET HTTP/2
unpkg.com/@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js
IP
104.17.248.203:443
ASN
#13335 CLOUDFLARENET

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT

File type
JavaScript source, ASCII text, with very long lines (18875)
Size
263 kB (262939 bytes)
Hash
7d8348176a8bb75544030d3f2be92d49
03d81ce4b033dd99566148c33f77b56fa37e2135
89e11baee7d5cf5645ec30f3b92208f4497867d4cab79823180d9be9021b79d9

HTTP Headers

GET /@web3modal/ethereum@2.6.2/dist/cdn/bundle-fdcfd0d2.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea-claimnft.com
DNT: 1
Connection: keep-alive
Referer: https://unpkg.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 14:13:19 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: "4031b-A9gc5LAz3ZlWYUjDP3e1b6N+ITU"
via: 1.1 fly.io
fly-request-id: 01HXAWGXYMKPH9QE5TBN99F00R-arn
cf-cache-status: HIT
age: 219247
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 881a877cbcfcb512-OSL
X-Firefox-Spdy: h2

opensea-claimnft.com/assets/1edbe2c623a68108.css

185.149.120.71

404 Not Found

282 B

URL GET HTTP/2
opensea-claimnft.com/assets/1edbe2c623a68108.css
IP
185.149.120.71:443
ASN
#57724 Ddos-Guard Ltd

Requested by
https://opensea-claimnft.com/
Certificate
IssuerLet's Encrypt
Subjectopensea-claimnft.com
FingerprintB8:B5:9F:DB:DF:A3:4C:80:F8:F5:69:27:7C:AF:AB:B7:F8:E5:93:8D
ValidityTue, 07 May 2024 20:53:13 GMT - Mon, 05 Aug 2024 20:53:12 GMT

File type
HTML document, ASCII text, with no line terminators
Size
282 B (282 bytes)
Hash
c2997cdee8639f3dc5c08a853cde55a8
fdbcd71cb95343531816e91f68004149f3a0cf1e
18bd472effe076b0285f939dc459d927b50a9d662802b27ea4b68c5fef6ae177

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/1edbe2c623a68108.css HTTP/1.1
Host: opensea-claimnft.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Cookie: __ddg1_=xUfKyHllnTQaRNi2tSQL
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: ddos-guard
date: Fri, 10 May 2024 14:13:17 GMT
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js

151.101.65.229

200 OK

68 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js
IP
151.101.65.229:443
ASN
#54113 FASTLY

Requested by
https://opensea-claimnft.com/
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (43691)
Size
68 kB (67863 bytes)
Hash
0aaaa3278d29d8b8d9b3795f60d3b836
519ef68609c1f595ee6a9cbb7660e4c8585a0d41
b030031299100b9d6c6b413bf9e9d712f59695f1384ef548c3f43b0a0faecbfa

HTTP Headers

GET /npm/sweetalert2@11.7.16/dist/sweetalert2.all.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://opensea-claimnft.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.7.16
x-jsd-version-type: version
etag: W/"10917-UZ72hgnB9ZXuapy7dmDkyFhaDUE"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 14:13:18 GMT
age: 1414011
x-served-by: cache-fra-eddf8230055-FRA, cache-hel1410028-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19370
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (25)

URL GET HTTP/2

IP

ASN