ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1820
Cache-Control: max-age=162589
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:01:32 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8249
Expires: Thu, 01 Dec 2022 16:09:12 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17987
Expires: Thu, 01 Dec 2022 18:51:30 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 13:19:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1917
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: K4yiIM6IxjTv1S4+OSX7/J8HdTssPPX6Wp5MX2RJQFJn+PxSRj5WlBtqP1BawSlSiEg5tpf18ms=
x-amz-request-id: G53KMX00HNMHGN79
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 13:45:41 GMT
age: 362
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 13:51:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
104.17.25.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32030)
Hash 92a5ff32a622bce0ca55d5644bdd4076
ad3c2861d6216aaf07b6ba1a0eb3b1a4eaa1ae91
1811f05ec81d0f3d900617e8760efb623e1a0f5ca0e8e424124181581653dbf5
GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 27192
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-152b5"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2492738
expires: Tue, 21 Nov 2023 13:51:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZomeK23I2hmdkuRFbOZRie8syxHSEyXUi1IWIekcggfL0lF%2BMjHYsy4XLJU52RrbZom6b6fYQeqmXnPB3I5SY4CBzY7tdQBJokAj5mQVpGw%2BrwvWN9E7o9akx4reo3DV7eBIB726"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772c4c99784db523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 13:08:56 GMT
cache-control: public,max-age=3600
age: 2567
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1812
Cache-Control: max-age=157518
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:37:01 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
opensea.io.offer.brainsonit.co.za/
102.130.117.137200 OK 37 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2327), with CRLF line terminators
Hash 697633a7b5b04dd402b65f1898497839
82cc041d0a466de48d5d6efb92cc734d20bc2b54
33d1d04c1212406959368ea05fbf77abbeff0399a0e2e396aab4012dff4d2c56
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=0, public
expires: Thu, 01 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: WP Rocket/3.10.4
content-length: 36852
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style1.css
102.130.117.137200 OK 452 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style1.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Hash 110f441ca83a85a95e23efda79b6537b
365d54ae745fe48b965e8a823ac84d0ecee4932a
d1d00c2e703dce94ad62db7bf884b70e83dc30d2d2d67f976cda0c77a39cb4ea
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style1.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:04 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 452
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style3.css
102.130.117.137200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style3.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type assembler source, ASCII text
Hash 0c1984dce15360939d6d3bd15e90ea8b
6be8050dc86416615edf99af9c2534b32f90ce3e
6d21d503e5a691e7567d5a880cf67585c8ee10a2852a2042f2e05b1cf680dd1d
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style3.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1364
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style.css
102.130.117.137200 OK 1.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Hash 2eafdf4bdca92051c43eb69d5a9d3d6c
43e7c62b5a390f6f734892c348dc479113c909f4
31399ab8d1531f9f17baee3674acbb86495f14fd525f2e3f4172905c21798c53
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1547
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/opensea.svg
102.130.117.137200 OK 1.9 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/opensea.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash e13fb61d5dd04aa9d205f000081b2902
5ac5e31ce14a4485df24c698292605a6de7ea67b
2b817c1fea3ecd3198251bd916ab3573a50575751c01b8a67b73f8020df6f8b2
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/opensea.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1922
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/810eee84d49a36e81867.css
102.130.117.137200 OK 568 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/810eee84d49a36e81867.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (1390)
Hash 090c22ffa2ea098190ea4e0c9916cdeb
c7838cd2dba9f047b2c4cd3849b53ffa8951262b
f1281515c424d96f66781c3e3d6cc271ad97c9c5948c39e58fad55499468baf1
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/810eee84d49a36e81867.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 568
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/main.css
102.130.117.137200 OK 8.7 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/main.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type Unicode text, UTF-8 text, with very long lines (499)
Hash c4a0997c2615433afc5089f4e2e66b86
e4dc0f78ecb5fdbc13324e32d20c8e572ed84efc
c81dddc5e7d592ef4e833c5797e6affcfbe9d2ec878dd614ed462cab78cc9b2a
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/main.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:32 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8651
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d296c212fdea11c6836ebcb174edef92
1bd1d91d2c76f43ed0df3d34e8e45f3ce41c3e84
6d44e74e38f2902dd709f264f4fc1864dce0e82c09c7df1bca92551b7df8f63f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D44E74E38F2902DD709F264F4FC1864DCE0E82C09C7DF1BCA92551B7DF8F63F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20686
Expires: Thu, 01 Dec 2022 19:36:29 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0afbb96e4de738457bcbdb859a3ba46c
c2a15b09f09f2aa770a16cde6f296780e3307fce
a0beffe7b50a60c0ee3aea25371fdaa9695c39eb6d738468b5f139ad41f04794
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A0BEFFE7B50A60C0EE3AEA25371FDAA9695C39EB6D738468B5F139AD41F04794"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2444
Expires: Thu, 01 Dec 2022 14:32:27 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 712e63d8a92a06a4a713562c417ed1ea
51019b1c810145549387a1c212e7f75dd2fd20ca
19105d2d78fc82659db729dbd4efe9999a67270b4713a606f5b97dc2f96c608c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "19105D2D78FC82659DB729DBD4EFE9999A67270B4713A606F5B97DC2F96C608C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8469
Expires: Thu, 01 Dec 2022 16:12:52 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
code.jquery.com/jquery-3.6.0.min.js
69.16.175.10200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:43 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669902703.dop209.sk1.t,1669902703.cds240.sk1.hn,1669902703.cds210.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a7768a8a4d5f2b246e1c7184e4526eef
424a0bbdad4a58e0eeced80d976613d4925a8f55
6233da50858bbd760a4da93d72eaf8b0a3379184601e8eb76db9a306af568c71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1740
Cache-Control: max-age=91936
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Etag: "63876ec3-117"
Expires: Fri, 02 Dec 2022 15:23:59 GMT
Last-Modified: Wed, 30 Nov 2022 14:54:59 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
opensea.io.offer.brainsonit.co.za/assets/style/img.jpeg
102.130.117.137200 OK 36 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/img.jpeg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash cc0be347e76a88bae60f377b403aad73
28125cb2444b4d76f11c24cd8bdd2ab9d01d591d
310e5e38ecd829ab28a0236f20bae00f6eed96168fe98489357824f032ecb056
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/img.jpeg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:54 GMT
accept-ranges: bytes
content-length: 35953
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/collection.svg
102.130.117.137200 OK 476 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/collection.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1090), with no line terminators
Hash 42068232dbaddd4b956d479b8dc65f70
4a30f53fa6669bd2c41ea8eec7f4a23fd34510c7
1c1e0ebc1c3cd646cdf85b5e625a5129036d51d2dbd13dbfdba12e69cddc042d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/collection.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 476
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/wallet.svg
102.130.117.137200 OK 529 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/wallet.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1173), with no line terminators
Hash fd2cba90564f996f6220feb975f182c4
f6b0a5ef0c0bef28da72a42c15f740ae9a960570
e79dda2f96a83f34815c1058f3f630c7ba63c6875572581e8d9b16fc13472b10
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/wallet.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:02 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 529
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2e229bda908b2010dcc19d4b0101a447
ebbd694d5fa2ef474ca5bb31c2d65b4f4ba3e03d
755e96dcc7faa003fb83b822e6941e5bd0abe870889a91db0ffd09cb7a8cffdd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "755E96DCC7FAA003FB83B822E6941E5BD0ABE870889A91DB0FFD09CB7A8CFFDD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Thu, 01 Dec 2022 19:51:10 GMT
Date: Thu, 01 Dec 2022 13:51:43 GMT
Connection: keep-alive
opensea.io.offer.brainsonit.co.za/assets/style/nft.svg
102.130.117.137200 OK 467 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/nft.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 1dfbad7134e55aceb9eb40baa64f66da
6c5228ac5eac1cf1433de0ee4c3dfce477d7f6ad
c0b405e883a5fb061f302461412aeb67096702ab578865f967e54a079459b0ec
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/nft.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/ismobilejs@1.1.1/dist/isMobile.min.js
151.101.193.229200 OK 862 B URL HTTP/2 cdn.jsdelivr.net/npm/ismobilejs@1.1.1/dist/isMobile.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (1882), with no line terminators
Hash 069d9bfcaee604f8f1d8b7c126a2cfe5
ce00de60bcf55e66702fb13768240e4db5e8b99e
78885d3b504939e50df1d231830a3fc683a01635d319fd6036da85216fdb40aa
GET /npm/ismobilejs@1.1.1/dist/isMobile.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.1.1
x-jsd-version-type: version
etag: W/"75a-FO4CH/twosD6GHbI49EEMaxGxg4"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 13:51:43 GMT
age: 5060745
x-served-by: cache-fra19180-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 862
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js
151.101.193.229200 OK 225 kB URL HTTP/2 cdn.jsdelivr.net/npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (50903)
Size 225 kB (224550 bytes)
Hash 5c6445d9345ccf8d200f724d148477cb
64d345ec247c0e7b73ccb56fb1f14d001c205853
0a6ec02559aef4f10b65fa68ebe3935d9b8a167cc0b1658d07dc6728ee6d02e0
GET /npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.7.7
x-jsd-version-type: version
etag: W/"b660c-MTEbN9OFqURIn0SqyJJBl4qWSNk"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 13:51:43 GMT
age: 3137659
x-served-by: cache-fra-eddf8230090-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 224550
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/sale.svg
102.130.117.137200 OK 611 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/sale.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1062), with no line terminators
Hash fa7dd16849c4ba31beace7f42d68523a
54c336aea462d6c4e613be98dd4dc1d0c93e080e
ae4989d29260e6886cda48c21e04b9384982d889a85a81810beefe484ae12910
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/sale.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:42 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 611
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: a/Sbz5v/lfb6bgEBEr/26Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nAXw6f8pafrNYNcijTiaI5SrlkY=
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 4006e2dc2ab9c1062f99d7d07730cc97
1222db7aabd01487567064c9957037da7628ad33
fa6d484c6388b5f6c68034673ca943b532f7307298d018e1f9257c4bdc2444cb
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 13:51:44 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "A4FDCD26B01F1668988872E2CF0CD64014C0D717"
Expires: Fri, 02 Dec 2022 01:00:00 GMT
Last-Modified: Thu, 01 Dec 2022 13:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2316
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772c4c9d0916b51d-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
216.58.207.227200 OK 151 kB URL HTTP/2 fonts.gstatic.com/s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), CFF, length 151244, version 1.0\012- data
Size 151 kB (151244 bytes)
Hash e1a7398bccc3cac6f91a6feafad048a5
0f1bb2cac93fae4fe053f3ec87a7a6eae2046577
09278f5e4175344bf9f92b8e2e7be3940da6ae4c067c21e66ea676fa8be58bee
GET /s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 151244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:48:40 GMT
expires: Wed, 29 Nov 2023 18:48:40 GMT
cache-control: public, max-age=31536000
age: 154984
last-modified: Wed, 09 Mar 2022 18:26:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
216.58.207.227200 OK 124 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 124404, version 1.0\012- data
Size 124 kB (124404 bytes)
Hash 94cef4c50fdde3db87d08031a829d1a8
88f7b5ba379df8bac8ea74bdb62c374dce17e994
273150c47a3c72fac516c64dbc2609311a03456037a0ff70ee1f1c85307eaa1a
GET /s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 124404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:07:37 GMT
expires: Thu, 30 Nov 2023 19:07:37 GMT
cache-control: public, max-age=31536000
age: 67447
last-modified: Wed, 09 Mar 2022 18:26:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/stretchoftime-promocard.jpg
104.18.2.144200 OK 139 kB URL HTTP/2 openseauserdata.com/static/promocards/stretchoftime-promocard.jpg
IP 104.18.2.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 139 kB (139020 bytes)
Hash 908c76cdc513bad1a352191b4ef3152d
81e281cad758365c5327aaf9ffb8fe62a182f27e
6cefc398b0f8f4c2901f659ff7d6fc9a23ced2c6e7a7561272139ca33699bb63
GET /static/promocards/stretchoftime-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: image/jpeg
content-length: 139020
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "908c76cdc513bad1a352191b4ef3152d"
expires: Thu, 01 Dec 2022 17:51:44 GMT
last-modified: Fri, 08 Apr 2022 16:42:38 GMT
x-guploader-uploadid: ADPycdv6B7uaQ0yQ9D2bV2sRdDZI0UZeroVDH-akWJ9IBgHQhYZs5gPLG7TjwvqiKTLdrPj_sBqcg7XHNiYDJaOJJJztZR1TmLeM
x-goog-generation: 1649436158203430
x-goog-hash: crc32c=gUITFw==, md5=kIx2zcUTutGjUhkbTvMVLQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 139020
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9ba8ec0b59-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
openseauserdata.com/static/promocards/tales-promocard.jpg
104.18.2.144200 OK 200 kB URL HTTP/2 openseauserdata.com/static/promocards/tales-promocard.jpg
IP 104.18.2.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 200 kB (200055 bytes)
Hash f84fe59c1980b3e940d1e800e7b0e46d
1588c4c406ac37324f0ff63e28d4957b109f42dd
a306f54e4803b1138fe36f82079a4151dda215d21b05fb20389b8dfeebc6d901
GET /static/promocards/tales-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: image/jpeg
content-length: 200055
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "f84fe59c1980b3e940d1e800e7b0e46d"
expires: Thu, 01 Dec 2022 17:51:44 GMT
last-modified: Mon, 04 Apr 2022 15:13:50 GMT
x-guploader-uploadid: ADPycdt4db65tHhVJ2fKm4srSCNhhZVwmOc0IUx3aCnYEmu5eyHlasAalH9hjHbOv8D-KEif8Z528xFmu2TjBfHs7_iyZA
x-goog-generation: 1649085230932984
x-goog-hash: crc32c=KU1PFQ==, md5=+E/lnBmAs+lA0egA57DkbQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 200055
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9bb8f80b59-OSL
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/api.js
102.130.117.137200 OK 259 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/api.js
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash e9cc8ed91a5aca9a1c7d7ad0edeaea48
9353023e1a8547f5f7028213298c8d6662912438
d771264775bf18d93edea86b8491ded127276edc694964350101d0946267a0b1
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/api.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 06:55:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 259
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/abis.js
102.130.117.137200 OK 281 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/abis.js
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash 99b9e19471ffdbb7cc145addba0738e1
9887a39482f79d7c18f4d914f5047adbc85ed5b5
bd2362fe594e45e01200731cc58c3e5e9e2b7f44e5fb58524dc45ff1ab896a9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/abis.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 27 Aug 2022 05:29:14 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 281
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
static.opensea.io/solana/home-banner.png
104.18.17.184200 OK 100 kB URL HTTP/2 static.opensea.io/solana/home-banner.png
IP 104.18.17.184:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 100 kB (100274 bytes)
Hash 33f331b6507939aaf696e1a96d86f1ff
75e1ccac392d1f49acb433155ae2e9c07a8ee348
7e7e3ed14195df0f997098eecbc398379e6b49e347a40020007b4bbbde3358fb
GET /solana/home-banner.png HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: image/webp
content-length: 100274
access-control-allow-origin: *
cache-control: public,max-age=3600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=133431
content-disposition: inline; filename="home-banner.webp"
etag: "e120318ca8f3642dac87a7c96e0cee86"
last-modified: Tue, 05 Apr 2022 16:01:13 GMT
vary: Accept
x-guploader-uploadid: ADPycdtcL75sgaMnGXeUc7RWZiv_XM6SjHz3srJsChPA-w5MzQGXt20Ep9Ce8D2W5eSp_mmAXA8vWfsAeZdWYCsTBz8xby_JJ0fg
x-goog-generation: 1649174473639146
x-goog-hash: crc32c=XR+cXg==, md5=4SAxjKjzZC2sh6fJbgzuhg==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 133431
cf-cache-status: REVALIDATED
accept-ranges: bytes
set-cookie: __cf_bm=znW0RseEBRKR9uuo7nmIS5e.FRfnFnxw.1OlIMhH6ys-1669902704-0-AQxiHS23fb8DxfZJnBQOPW/zO1ANYSnCWQk1nD/e6A+l6NQL3ZP2JZzgy3UtNK/W/APs4x4Z25xfngEyGPOVP7I=; path=/; expires=Thu, 01-Dec-22 14:21:44 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9bd87cb50c-OSL
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/wallet.js
102.130.117.137200 OK 835 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/wallet.js
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash 0ca0289635bd26fae0fe71c0b688524f
c9200713831e0f7a779dbc02012de42c98198bc5
af9118148ee2587c91db3ae3d78374c20b8a8921b16ffc17edb2f8766713e70d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/wallet.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 21:35:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 835
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
opensea.io.offer.brainsonit.co.za/assets/style/opensea-white.svg
102.130.117.137200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/opensea-white.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2931), with no line terminators
Hash f29566c5690ed78eafc3a2f8cc385f2c
b24cb004454d0843e10bf6c72fa6751ddd74c868
eb4a75ba1317149969b554a6016aeb515816cb4d98f3e121f3186263af9ec0a6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/opensea-white.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1385
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/connect.js?v=1111322123
102.130.117.137200 OK 5.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/connect.js?v=1111322123
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (14979), with no line terminators
Hash 0bb678c4625a225395b8733c58f7b1fb
d90dfff0a0e258a82e6c6cf4a9adef6af8a3ac26
9e8b5b2eea804045f1958b3f51d70e29e80daa49f090615c43d7ff4943230dc0
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/connect.js?v=1111322123 HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 23:41:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5480
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/sandbox-promocard.jpg
104.18.2.144200 OK 128 kB URL HTTP/2 openseauserdata.com/static/promocards/sandbox-promocard.jpg
IP 104.18.2.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 128 kB (127667 bytes)
Hash fba591f0f17f640919d1ea47d1afdae6
57c79f6ba254d668eb455e418a0e0dd611857c4e
0b32a829efd726cacc736971a310c2ab427591597bccbdce2da206cf06219566
GET /static/promocards/sandbox-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: image/jpeg
content-length: 127667
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "fba591f0f17f640919d1ea47d1afdae6"
expires: Thu, 01 Dec 2022 17:51:44 GMT
last-modified: Wed, 06 Apr 2022 16:48:32 GMT
x-guploader-uploadid: ADPycdtnXrAO2_IE3fnBeNahRma5h0FKtWT6hiXCe6neNFX0Gy78SBF-GNp0ZQqOy_z7Fa6inJceCqwaF3KeVX14yQ6w3qnG6EF6
x-goog-generation: 1649263711972899
x-goog-hash: crc32c=77Qc2Q==, md5=+6WR8PF/ZAkZ0epH0a/a5g==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 127667
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9ba8ea0b59-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 576221
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:43 GMT
expires: Fri, 24 Nov 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 594661
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/utility.webp
102.130.117.137200 OK 141 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/utility.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 141 kB (140854 bytes)
Hash 77290dadd246bda015753085a7c755fe
c04973aabbe7c8925766c84c0bf88c7a820f8949
46441628c5e6b667e374d0fd5b4688efb15be39524e608bb20765f2274e38526
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/utility.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:24 GMT
accept-ranges: bytes
content-length: 140854
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/sports.webp
102.130.117.137200 OK 129 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/sports.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129352 bytes)
Hash 9a0077fded7f3fb9b2618594ebc859e4
d8149685f5d0c6fe66311dee6e606f2e2c13d8b9
ebac54aa2f93a252975e3ca96d62dec0caa9a01e1f33668620aac442a0036ce7
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/sports.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:12 GMT
accept-ranges: bytes
content-length: 129352
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/photography-category.webp
102.130.117.137200 OK 215 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/photography-category.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 215 kB (215364 bytes)
Hash 5b836f4bed45402184ccd898d52fa8bc
4e407d1900f8928da324c957cf43a99aab478ed0
bbf7fa21aa40409faa6416554f4bec4b482dc671c6338ca88050a61f2603a7fc
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/photography-category.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:04 GMT
accept-ranges: bytes
content-length: 215364
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/trading-cards.webp
102.130.117.137200 OK 180 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/trading-cards.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 180 kB (179596 bytes)
Hash a995601de89992960cb18f1ba89479d2
110346a4d12b8e47c3ad44385f85a916d15ee206
ecf70633eab5862ce8d0097d47f1c075be220c716a2a2e44930d2acca6c19811
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/trading-cards.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:18 GMT
accept-ranges: bytes
content-length: 179596
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.opensea.io/gas-free/video-background.svg
104.18.17.184200 OK 7.8 kB URL HTTP/2 static.opensea.io/gas-free/video-background.svg
IP 104.18.17.184:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (12235)
Hash dd7fdc1b799fcfc04eac2cdb096eb8c6
bd194b08b34cd8f9b7fae7708b456fba8b683276
cd022bc8cb7e46625fc16798ae166de79c8c5d8b7c06abf08b330c557c3af730
GET /gas-free/video-background.svg HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdsv4zeXqUuap7ZHtxBQ21htxixgBfJlRFfz6TZdvVkxamQCb5XxIxGi0GI401w11xqjWWSS-ncaCkPSUhPaR3Qg
x-goog-generation: 1630524348914119
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20064
x-goog-hash: crc32c=8vorDw==, md5=9AtoCsBIAExuRya7g4YFUA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
last-modified: Wed, 01 Sep 2021 19:25:48 GMT
etag: W/"f40b680ac048004c6e4726bb83860550"
cache-control: public,max-age=3600
cf-cache-status: HIT
set-cookie: __cf_bm=9WaRsSJDE0R3QoR9ZE2489F0WOndgvjdC8W2OqVb4wI-1669902704-0-AXWlw4e7yf5lPMFT0qyFpsYa9QFNLMql2GPicFTPaQ758QqveFPa01MLFGpHLoyMe9fRK5gSrUJAtt7ot7EHoJo=; path=/; expires=Thu, 01-Dec-22 14:21:44 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9bd87eb50c-OSL
content-encoding: br
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 01 Dec 2022 13:51:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 13:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 13:51:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 57745
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 11001
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 13:51:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uSFcMoAMF2CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:29:36 GMT
age: 1329
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/16x16.webp
102.130.117.137200 OK 254 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/16x16.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash def398722dced71ba0d2bae2e7d52939
65e7949cb82c5777ea3c45d8c19a3dfc6233546a
5d486d1b18cd39803401e57d3a6b0293756035320e531456278c6173319f87c3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/16x16.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:34 GMT
accept-ranges: bytes
content-length: 254
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:44 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:44 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/180x180.webp
102.130.117.137200 OK 1.8 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/180x180.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 504a6cface1532e9d9d02b3f484b590b
61f4c7b992c8af388efa731d50442515c2b9749e
0938a2f31549bc9225534b09e85b66a749d3e922c1ce139267ac30bbfb0a3e9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/180x180.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:09:42 GMT
accept-ranges: bytes
content-length: 1782
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:44 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:44 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 13:51:45 GMT
Connection: keep-alive
openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
104.18.2.144200 OK 16 kB URL HTTP/2 openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
IP 104.18.2.144:0
Hash 90ec480bca7cb869b494104b2dd94529
7354646c5d777529ca5436f31edfb9e1801b9d66
f13e7ead04eaaa5f3ede3537e81f84f2fe5a8e0c7f8159a78ea4b22107a74b8d
GET /files/6f8e2979d428180222796ff4a33ab929.svg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:43 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdvfSAWPppDl1jrbYZvv_JuhcERKUYdEkg7-0Yr-yc3mfeTklho8_Bvc2r3LVK8WaUTaYCYmFA7yE9MZKL3aKy0BEKk3EGg0
cache-control: public, max-age=31536000
expires: Fri, 01 Dec 2023 13:51:43 GMT
last-modified: Fri, 21 May 2021 02:51:27 GMT
etag: W/"6f8e2979d428180222796ff4a33ab929"
x-goog-generation: 1621565487252748
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 684
x-goog-hash: crc32c=VbTFmw==, md5=b44pedQoGAIieW/0ozq5KQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: HIT
age: 1716305
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9b98e20b59-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3286
Expires: Thu, 01 Dec 2022 14:46:31 GMT
Date: Thu, 01 Dec 2022 13:51:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qftF-GQkcjKTs30KMGCTDymw2SVSXeAYKGNWUnaMfvIb8HjtfHUx8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:44:47 GMT
age: 58018
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 12:31:43 GMT
age: 4802
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250
172.217.21.161200 OK 120 kB URL HTTP/2 lh3.googleusercontent.com/uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250
IP 172.217.21.161:0
File type PNG image data, 250 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 120 kB (119666 bytes)
Hash 2afa09a5c02bd2694a7f8f6b3754e9ce
58084063ee98910c2cac273322b06168fafca4a6
7d1d56c1f5fb5b8f5904bb7a6878bb14027956a5abed29b2d8425363874b083a
GET /uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 119666
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 13:51:45 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100
172.217.21.161200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 98a561436ae37cf62368739c2b2d0ab3
cb633d6ef0c36f4963df9c34725174ffaf1b7f65
51f8e39428b85eb68838441f98ae3dc70a5afb7d07a9efa3518e5cfca40d5ad2
GET /lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4130
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100
172.217.21.161200 OK 2.4 kB URL HTTP/2 lh3.googleusercontent.com/xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 949082247fc8e74d1bf82465c96d3994
2ccdf9065c6b2172772e5ebc58770d08d846b9ea
6859a9717441e1122df3e1b79d56b16bf9b38c01caad5d8c0d39c8dd141de813
GET /xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2373
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100
172.217.21.161200 OK 3.6 kB URL HTTP/2 lh3.googleusercontent.com/YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 2ea7fb6016d77311b4c46c6da13af7ed
86f4da864b1a18c251334b14981e2ae06bbbc93c
054ff14da4cd5fd19c4eb13b99a6b6666c4fd900388841fd135fd44379d7789c
GET /YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3649
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:08 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/image-13.png
104.18.17.184404 Not Found 11 kB URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/image-13.png
IP 104.18.17.184:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5879)
Hash 1ca31f51c60798bac9a30400a6ce8511
bb6abc002f536e3f8b8d77e74d46ccfdb62c6580
7b100a4d567b9d2864293219bdfbcb79f3fcb99728ccf928e5642fdf7c8e9469
GET /blog/wp-content/uploads/2022/02/image-13.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: text/html
cf-ray: 772c4c9bc86ab50c-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kjyo7100169-IAD, cache-dub4332-DUB
x-timer: S1669902704.324599,VS0,VE152
set-cookie: __cf_bm=DntY7TQ7_4D_mLLqPwzLREEKkIWE5x9xgL9Jc5pvIj4-1669902704-0-Adja0uA6IQb8HAtnqLGzAD7BK3nx3dt2H/NNZb8LrYR+hl/Lq8I1YSZoo01LoUFirA7OZ55wJ3cWgnDOAWU1ALw=; path=/; expires=Thu, 01-Dec-22 14:21:44 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100
172.217.21.161200 OK 12 kB URL HTTP/2 lh3.googleusercontent.com/Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 32aa5a489ec84f784c225e5bd300e4a9
d25bf2f8f79ca4359f8956d621c7832780ad8b76
b840f2b1b9bc787049914f23eaa8ed38a5da6fad01fbeee2e5ce07405f7cc9c3
GET /Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 12539
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200
172.217.21.161200 OK 17 kB URL HTTP/2 lh3.googleusercontent.com/_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200
IP 172.217.21.161:0
File type PNG image data, 284 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d179f9e491fab161cc8e1d6a736a9f8
9aff966244af251034503f0299a3c71b5821df0e
e6045fd192389c8e9ca3df393ffb1119aac3c7b05150dec3299a75166aa7791a
GET /_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 17119
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100
172.217.21.161200 OK 11 kB URL HTTP/2 lh3.googleusercontent.com/i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100
IP 172.217.21.161:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash a668f94dc091a5ecdf3e7ccc3ac89fcd
42e4b302280b5c166a752669d83fa30136181b53
55a9decc5441777f9fdb6dbdd4d66bdcd2c1ace5a4696c2cf179e0f686a88a9e
GET /i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 10907
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block
142.250.74.74200 OK 8.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block
IP 142.250.74.74:0
Hash d184e6ff82011aacfdd7ee92dfeada09
a2824d6ab91b9d1e7747bf7daaaa64f369fd8290
c7adfc9debf9c2ad5a605c66e58c15801088664a06c598ffaab262881ebcbfdf
GET /css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 13:51:43 GMT
date: Thu, 01 Dec 2022 13:51:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 10:09:03 GMT
expires: Mon, 27 Nov 2023 10:09:03 GMT
cache-control: public, max-age=31536000
age: 358962
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.2 kB URL HTTP/2 yt3.ggpht.com/uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 184161ae4a7d95a66d334b8e86b5c138
177f1960c06ecd54e8b15728d5e8491b9e049abf
f4cd6bdb68a11d75123376a8d84333fd2e97059aa3185ca07ae443378bb2d47d
GET /uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2154
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Sun, 06 Nov 2022 06:04:56 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100
172.217.21.161200 OK 6.5 kB URL HTTP/2 lh3.googleusercontent.com/iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 2c37b0f458002ef317edd9ef910f86ab
a364c18d736ca28df46850889967421345c16cd4
624733c671daac9f7e4fcabecf516bdd1d7bd8c3ce51e03fd78cf21680ba7f02
GET /iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6453
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100
172.217.21.161200 OK 6.6 kB URL HTTP/2 lh3.googleusercontent.com/MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash d097c7b5795a85cedea670d904683c9d
bf7f0e946853ad2932c3b3fd9867ca9abdee9c8a
82d085d61dc48bd471cef04224bbfc552360e403007d9828c818246eb3c4ceb0
GET /MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6648
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.211.10200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 15488cd1a808e88114f6be84acac6c44
06bc01d15625ccb1bcf993b461780bb49f4e47ae
fc8b5c9c8d5979408ab13ff7ac41b52faf7e95dd93792538e253b577eaf1d31d
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 13:51:45 GMT
server: ESF
cache-control: private
content-length: 31087
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
142.250.74.74200 OK 11 kB URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP 142.250.74.74:0
Hash 842b854e853ce1806df54cac624b7c3e
828a1f98c4cea7225fb1fd5ca72ece82ed53d7fd
a64aa9d72da558d893518818e10607851b2bae9f895ae0723cccb02e346849f9
GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 13:51:43 GMT
date: Thu, 01 Dec 2022 13:51:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100
172.217.21.161200 OK 1.7 kB URL HTTP/2 lh3.googleusercontent.com/Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 2ffb2726cdf60e01c5af6d05405e1245
1c2f75812adf533916fec9306bf71367894b8b2c
870adc5a61f98a6e547ef83daa2d2af3e03cef57adf8748583691132af8b428c
GET /Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1739
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200
172.217.21.161200 OK 6.2 kB URL HTTP/2 lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b28ab430435756b661ecc62bc09ed705
746b1e37934c0aec41a436053fe4182ef44a45e1
a1126cc1899d77e609207f57ee9739c18ceed611603f99b541524b7d94302472
GET /j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6171
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100
172.217.21.161200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash adc28f8c004cda50159eb2e29c58bdeb
615c85b42c8b0d6dd675cd8876dad1914a498055
0ee336cb24501b896b266be1ac7b0e5f3774556e07a6407a04e118055b0570fd
GET /uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3818
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=s100
172.217.21.161200 OK 1.6 kB URL HTTP/2 lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 643b35c1dbc665fcfc3445b9532c48ac
62eb51b9f5b7da21508f6fc41238144f6e9ecf08
d7931db0322d823f23bf6e1fb03cfd293c493f1134f1f31294f5e11594cd27f8
GET /j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1612
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/CypyKknm6gD9Wcz3y9KaxwpEvEWXEC-tHnPbFO0n-obVc12mVOItr6upZAoYi5HkRugrHU7xTeiHVw0d2HuaYDQDZ4bqrV9JXEVdXg=h200
172.217.21.161200 OK 40 kB URL HTTP/2 lh3.googleusercontent.com/CypyKknm6gD9Wcz3y9KaxwpEvEWXEC-tHnPbFO0n-obVc12mVOItr6upZAoYi5HkRugrHU7xTeiHVw0d2HuaYDQDZ4bqrV9JXEVdXg=h200
IP 172.217.21.161:0
File type PNG image data, 300 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 87a854d863a4937e19f590460177179c
50388c1f38dc25ba1f09637c2a09c545139560d0
e549bf5558cac6622f0cb5aa5176ed86961762d3b07780ae5a0f808dea1253dd
GET /CypyKknm6gD9Wcz3y9KaxwpEvEWXEC-tHnPbFO0n-obVc12mVOItr6upZAoYi5HkRugrHU7xTeiHVw0d2HuaYDQDZ4bqrV9JXEVdXg=h200 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 39934
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100
172.217.21.161200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e1a49a417f8b9d62a662f9114f85aa10
6743f2cbfcc78f6f4d5850054d131daa874e5854
896d3d489f353b7b4f3995e0ec155ac30e0a76f5d02e2a2d4cfdc728d2db982f
GET /Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4149
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100
172.217.21.161200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100
IP 172.217.21.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 9ccecdf82adeeca9cd27ef63b01bf332
5672a46ec284d44fee9735c5f10a27b53cd8e2db
685a9f2b48196b57e007319518fda88d8daf0ef5bfd885f30c92f02e3fff7c18
GET /H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2642
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Fri, 02 Dec 2022 01:38:08 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100
172.217.21.161200 OK 7.6 kB URL HTTP/2 lh3.googleusercontent.com/4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 65c723fd5d8d3f2ac7c01e6a1a510934
5b4115dcd4b79fe968842ba634ea0426d48b962f
d15b3f74ad50b9567eaeb6721523665c6123ac6af6d8c33845d13a69e71f6b8f
GET /4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 7644
x-xss-protection: 0
date: Thu, 01 Dec 2022 11:52:33 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
age: 7152
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
172.217.21.182200 OK 24 kB URL HTTP/2 i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
IP 172.217.21.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 94d015ce62cec9dc2c61420a977da42b
c657a723c06ab007f5dd99b12bcbc500f534bded
cc374be9c2cde17b898c0a88a66162c972adf073e335828e60555b699c76b58e
GET /vi_webp/gfGuPd1CELo/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24130
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:46 GMT
expires: Thu, 01 Dec 2022 15:51:46 GMT
cache-control: public, max-age=7200
etag: "1633564202"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100
172.217.21.161200 OK 3.7 kB URL HTTP/2 lh3.googleusercontent.com/XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 1209d911b32dc2147b94d606b63cd4f0
c04dac737ecc115472f8825baacc9dcced062a7a
dd96bc841f3ea99e844d79b4af86eabf5626eae058c784a6237aa1136655a814
GET /XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3716
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100
172.217.21.161200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100
IP 172.217.21.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 096ff4156dffe840fa815d6caf9ff5e7
8871d70770ce4e1677b01160d1c00182328896f4
3aa8c59639a748328ada5ef2189b4a565cd0e3571c8fb38cd19c8de6a3304dc2
GET /BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2612
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 13:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 13:51:46 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.211.10200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.211.10:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6da3bf66aa81bb2bcb8d9722fbe7d0cd
e730c55720114d1d076a8d1662470a057a71af52
6fbf4fd84b35cf108cc7945ebebdad5633b06396761b5cd5dcdaae966488b5db
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1064
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 13:51:46 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/
102.130.117.137200 OK 40 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2327), with CRLF line terminators
Hash 84f9ade16068348ba59e467fa6b493ef
216c6acb201a18197d5bbbda81dab6a6ca5861df
b9442b1c10185aa2e7d7f5a835435b6fa611833c0646fc5b6d04fa5551a1f962
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/ HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=0, public
expires: Thu, 01 Dec 2022 13:51:47 GMT
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: WP Rocket/3.10.4
content-length: 39761
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 13:51:47 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style1.css
102.130.117.137200 OK 452 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style1.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Hash 110f441ca83a85a95e23efda79b6537b
365d54ae745fe48b965e8a823ac84d0ecee4932a
d1d00c2e703dce94ad62db7bf884b70e83dc30d2d2d67f976cda0c77a39cb4ea
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style1.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:04 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 452
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/opensea.svg
102.130.117.137200 OK 1.9 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/opensea.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash e13fb61d5dd04aa9d205f000081b2902
5ac5e31ce14a4485df24c698292605a6de7ea67b
2b817c1fea3ecd3198251bd916ab3573a50575751c01b8a67b73f8020df6f8b2
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/opensea.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1922
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style.css
102.130.117.137200 OK 1.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Hash 2eafdf4bdca92051c43eb69d5a9d3d6c
43e7c62b5a390f6f734892c348dc479113c909f4
31399ab8d1531f9f17baee3674acbb86495f14fd525f2e3f4172905c21798c53
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1547
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style3.css
102.130.117.137200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style3.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type assembler source, ASCII text
Hash 0c1984dce15360939d6d3bd15e90ea8b
6be8050dc86416615edf99af9c2534b32f90ce3e
6d21d503e5a691e7567d5a880cf67585c8ee10a2852a2042f2e05b1cf680dd1d
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style3.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1364
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/810eee84d49a36e81867.css
102.130.117.137200 OK 568 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/810eee84d49a36e81867.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (1390)
Hash 090c22ffa2ea098190ea4e0c9916cdeb
c7838cd2dba9f047b2c4cd3849b53ffa8951262b
f1281515c424d96f66781c3e3d6cc271ad97c9c5948c39e58fad55499468baf1
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/810eee84d49a36e81867.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 568
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/main.css
102.130.117.137200 OK 8.7 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/main.css
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type Unicode text, UTF-8 text, with very long lines (499)
Hash c4a0997c2615433afc5089f4e2e66b86
e4dc0f78ecb5fdbc13324e32d20c8e572ed84efc
c81dddc5e7d592ef4e833c5797e6affcfbe9d2ec878dd614ed462cab78cc9b2a
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/main.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:32 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8651
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/img.jpeg
102.130.117.137200 OK 36 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/img.jpeg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash cc0be347e76a88bae60f377b403aad73
28125cb2444b4d76f11c24cd8bdd2ab9d01d591d
310e5e38ecd829ab28a0236f20bae00f6eed96168fe98489357824f032ecb056
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/img.jpeg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:54 GMT
accept-ranges: bytes
content-length: 35953
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/collection.svg
102.130.117.137200 OK 476 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/collection.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1090), with no line terminators
Hash 42068232dbaddd4b956d479b8dc65f70
4a30f53fa6669bd2c41ea8eec7f4a23fd34510c7
1c1e0ebc1c3cd646cdf85b5e625a5129036d51d2dbd13dbfdba12e69cddc042d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/collection.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 476
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/nft.svg
102.130.117.137200 OK 467 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/nft.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 1dfbad7134e55aceb9eb40baa64f66da
6c5228ac5eac1cf1433de0ee4c3dfce477d7f6ad
c0b405e883a5fb061f302461412aeb67096702ab578865f967e54a079459b0ec
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/nft.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/wallet.svg
102.130.117.137200 OK 529 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/wallet.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1173), with no line terminators
Hash fd2cba90564f996f6220feb975f182c4
f6b0a5ef0c0bef28da72a42c15f740ae9a960570
e79dda2f96a83f34815c1058f3f630c7ba63c6875572581e8d9b16fc13472b10
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/wallet.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:02 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 529
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/sale.svg
102.130.117.137200 OK 611 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/sale.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1062), with no line terminators
Hash fa7dd16849c4ba31beace7f42d68523a
54c336aea462d6c4e613be98dd4dc1d0c93e080e
ae4989d29260e6886cda48c21e04b9384982d889a85a81810beefe484ae12910
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/sale.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 611
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/opensea-white.svg
102.130.117.137200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/opensea-white.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2931), with no line terminators
Hash f29566c5690ed78eafc3a2f8cc385f2c
b24cb004454d0843e10bf6c72fa6751ddd74c868
eb4a75ba1317149969b554a6016aeb515816cb4d98f3e121f3186263af9ec0a6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/opensea-white.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1385
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/fox.svg
102.130.117.137200 OK 1.6 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/fox.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (359), with CRLF line terminators
Hash c9f06b8b7a10a9e8a057689ecd338ebf
c73ddbb62564dcc0f0f2e096ba69555281121c43
7faeed7cfc7df590f940e92eebd57d7ad9302b648d7d12c26212333605e15c3f
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/fox.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:50 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1643
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/bundle.js
102.130.117.137200 OK 11 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/bundle.js
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Hash 81bddca4f08bca6e31162fa0170e9d9a
dba3a2e5bf92b19fca70c702049f2fefdd9e8a81
4082a99391972e0017b701b2e8511236489aeaba083e5b8841689f9ec05884ea
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/bundle.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 10912
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/foxy.svg
102.130.117.137200 OK 1.2 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/foxy.svg
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3231), with no line terminators
Hash 221c6a0c4e819165b96933ad55fc3f47
820c8c138b33165cd8f847cae06d7c60b3ee1159
658e4745219e01068c2520503b7a78159d112d411e9fff0248b474ea612808d1
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/foxy.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:04 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 13:51:48 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1188
content-type: image/svg+xml
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/domain-names.webp
102.130.117.137200 OK 52 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/domain-names.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13f3061ad278717cf185a4e3be105d35
037ecd16b1646de7690a1a2b8c15c4260a5b0f19
84092dbeee0c446ec5a3fb0aa65b244c1d92ced4d0ed39f4e4e65f548e8f0fca
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/domain-names.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:46 GMT
accept-ranges: bytes
content-length: 51922
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/spinner.gif
102.130.117.137200 OK 74 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/spinner.gif
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type GIF image data, version 89a, 200 x 200\012- data
Hash 6c4931387212c6d3a51bfde363e20e57
3cf5bfa5cb3d2c9c294b09ab1ecbac06bf5dfd9d
f279295f81cdfcf5bc2a01ed3ffbd6949713ba9ac40f3aec0a5075bc0ad1f5f1
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/spinner.gif HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:58 GMT
accept-ranges: bytes
content-length: 73625
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/gif
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/loading.gif
102.130.117.137200 OK 65 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/loading.gif
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type GIF image data, version 89a, 200 x 200\012- data
Hash c8465a7764ad647e5aa84cc24f0b79a1
7ae18b8a5d54324a131418eaf591e260d8434320
432f23042d18bdadb6863ddc464691923e628a37727d06d2dfc96bdb350848f7
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/loading.gif HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:16 GMT
accept-ranges: bytes
content-length: 65429
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/gif
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/collectibles.webp
102.130.117.137200 OK 52 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/collectibles.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 476ce7100d248414d01ebe385b9a3699
036cc014ba812783bd079e04bbc828ecd1f1094d
ccf8d844fce53f496903e474f331d318e9498ea957126a2152afee889f4a60ea
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/collectibles.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:40 GMT
accept-ranges: bytes
content-length: 52248
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/music.webp
102.130.117.137200 OK 131 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/music.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 131 kB (130734 bytes)
Hash b74b0a9e12d5194fabe6686e6cd36fbe
483164561faed595318dddbabf17678eeaa7a78a
a336a33e8d6a3b74fee191121a0c950229bc6097f9018983181b730b875c741d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/music.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:52 GMT
accept-ranges: bytes
content-length: 130734
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/virtual-worlds.webp
102.130.117.137200 OK 97 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/virtual-worlds.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash bd88b2dc4a25e15e246d200396492836
fdf5d8ea368487a3554cf4caba2a17a82a28e8a7
3b337c5115eccc66bbfebd7fc08aab4f6200c4f4a3773b680d42804aae1f4351
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/virtual-worlds.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:30 GMT
accept-ranges: bytes
content-length: 97424
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/utility.webp
102.130.117.137200 OK 141 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/utility.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 141 kB (140854 bytes)
Hash 77290dadd246bda015753085a7c755fe
c04973aabbe7c8925766c84c0bf88c7a820f8949
46441628c5e6b667e374d0fd5b4688efb15be39524e608bb20765f2274e38526
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/utility.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:24 GMT
accept-ranges: bytes
content-length: 140854
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/sports.webp
102.130.117.137200 OK 129 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/sports.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129352 bytes)
Hash 9a0077fded7f3fb9b2618594ebc859e4
d8149685f5d0c6fe66311dee6e606f2e2c13d8b9
ebac54aa2f93a252975e3ca96d62dec0caa9a01e1f33668620aac442a0036ce7
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/sports.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:12 GMT
accept-ranges: bytes
content-length: 129352
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/art.webp
102.130.117.137200 OK 257 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/art.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 257 kB (257268 bytes)
Hash 5306867e611ccf4ae4870f2a397ac666
05ddd42571a601d60d4fdef8539bc6e827d4d724
9a1d2967a227349ee6e2a778ff87f336b77cd406bac35dea39a05345d9a2fa04
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/art.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:34 GMT
accept-ranges: bytes
content-length: 257268
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/trading-cards.webp
102.130.117.137200 OK 180 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/trading-cards.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 180 kB (179596 bytes)
Hash a995601de89992960cb18f1ba89479d2
110346a4d12b8e47c3ad44385f85a916d15ee206
ecf70633eab5862ce8d0097d47f1c075be220c716a2a2e44930d2acca6c19811
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/trading-cards.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:18 GMT
accept-ranges: bytes
content-length: 179596
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:48 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:48 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/180x180.webp
102.130.117.137200 OK 1.8 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/180x180.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 504a6cface1532e9d9d02b3f484b590b
61f4c7b992c8af388efa731d50442515c2b9749e
0938a2f31549bc9225534b09e85b66a749d3e922c1ce139267ac30bbfb0a3e9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/180x180.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:09:42 GMT
accept-ranges: bytes
content-length: 1782
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:49 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:49 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/16x16.webp
102.130.117.137200 OK 254 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/16x16.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash def398722dced71ba0d2bae2e7d52939
65e7949cb82c5777ea3c45d8c19a3dfc6233546a
5d486d1b18cd39803401e57d3a6b0293756035320e531456278c6173319f87c3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/16x16.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:34 GMT
accept-ranges: bytes
content-length: 254
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:49 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
IP 216.58.211.14:0
GET /embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 01 Dec 2022 13:51:44 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=qtYSmnWwugk; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=EpS6HlS3gGQ; Domain=.youtube.com; Expires=Tue, 30-May-2023 13:51:44 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+513; expires=Sat, 30-Nov-2024 13:51:44 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/web3/web3.min.js
102.130.117.137200 OK 0 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/web3/web3.min.js
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/web3/web3.min.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 01:05:00 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 13:51:43 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 13:51:43 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
151.101.193.229200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
IP 151.101.193.229:0
GET /gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"4edeb-1sQW5dFT9QD3rGbSWitz20WGetQ"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 13:51:43 GMT
age: 15745
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 97784
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/virtual-worlds.webp
102.130.117.137200 OK 0 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/virtual-worlds.webp
IP 102.130.117.137:0
ASN #328364 Host-Africa-AS
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/virtual-worlds.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:30 GMT
accept-ranges: bytes
content-length: 97424
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 13:51:42 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 13:51:42 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/image-13.png
104.18.17.184404 Not Found 0 B URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/image-13.png
IP 104.18.17.184:0
GET /blog/wp-content/uploads/2022/02/image-13.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Cookie: __cf_bm=ZUBF0mtrbsyae5eLbbRsA5pzMFeVOfbAI8vgeJo1KNE-1669902704-0-AWFIAvXqXZGusRZcyEfe5g0pJFvXDwfYbU97Dyej82qK2cdCLvGHdIrYmRbCdzoqJcz5u6OFQP45xclm0682J9g=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 13:51:49 GMT
content-type: text/html
cf-ray: 772c4cbd2c49b50c-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kiad7000147-IAD, cache-dub4336-DUB
x-timer: S1669902710.652688,VS0,VE141
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
IP 104.16.124.175:0
GET /evm-chains@0.2.0/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 13:51:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 02 Nov 2020 20:31:28 GMT
etag: W/"5881-yk4n8EqlvpHDLglCWD85vKUneh8"
via: 1.1 fly.io
fly-request-id: 01G3YDPBXRA18B04P0CD7HWFWJ-fra
cf-cache-status: HIT
age: 16393103
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772c4c9bfc501bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2