urlquery - report: metamask.io.merge.pjbtecnologias.co.mz/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP
metamask.io.merge.pjbtecnologias.co.mz (24)	0	2023-02-08T20:33:43Z	2023-03-12T06:58:41Z	8549	1251244	51.38.118.179
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413	5855	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333	391	34.117.237.239
fonts.googleapis.com (2)	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	765	1468	142.250.74.106
www.gstatic.com (1)	0	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	485	1963	142.250.74.35
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3246	53190	34.120.237.76
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350	965	54.230.245.39
r3.o.lencr.org (8)	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2704	7091	23.36.77.32
firefox.settings.services.mozilla.com (2)	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782	2372	35.241.9.150
ocsp.pki.goog (4)	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1372	2796	142.250.74.163
fonts.gstatic.com (3)	0	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1393	147004	216.58.207.227
push.services.mozilla.com (1)	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606	127	52.41.34.173
cdn.ethers.io (1)	459220	2017-08-30T09:27:23Z	2023-03-13T07:52:11Z	395	95138	18.173.5.126

Scan Date	Severity	Indicator	Comment
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/secure.html	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet
2023-02-08	medium	metamask.io.merge.pjbtecnologias.co.mz/	Crypto/Wallet

Scan Date	Severity	Indicator	Comment
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/plx.chock.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/webfont.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/css.html	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/tag.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/analytics.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/storage.secure.min.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/enterprise.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/jquery-3.5.1.min.dc5e7f18c8.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/mm-logo.svg	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/webflow.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/EuclidCircularB-Regular-WebXL.woff2	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/EuclidCircularB-Bold-WebXL.woff2	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/secure.html	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/meta/bootstrap-tagsinput.js	Phishing
2023-02-09	medium	metamask.io.merge.pjbtecnologias.co.mz/script.js	Phishing

Date	UQ / IDS / BL	URL	IP
2023-05-23 21:46:47 UTC	0 - 0 - 6	www.bnbc.co.mz/notif/infraccioneconas/?hash=m (...)	51.38.118.179
2023-05-23 18:37:53 UTC	0 - 0 - 6	www.bnbc.co.mz/notif/infraccioneconas/?hash=j (...)	51.38.118.179
2023-05-18 01:43:55 UTC	0 - 0 - 12	www.metamask.io.merge.pjbtecnologias.co.mz/se (...)	51.38.118.179
2023-05-16 12:48:17 UTC	0 - 0 - 68	metamask.io.pjbtecnologias.co.mz/secure.html	51.38.118.179
2023-05-16 12:17:35 UTC	0 - 0 - 118	www.metamask.io.pjbtecnologias.co.mz/	51.38.118.179

Date	UQ / IDS / BL	URL	IP
2023-06-09 20:36:28 UTC	2 - 6 - 1	aclknoqenweemjr.longmusic.com/	51.178.87.161
2023-06-09 20:36:21 UTC	0 - 4 - 0	campaign.kabaun.com/api/t/c/usr_gWH8qhHTSPjZe (...)	51.254.243.65
2023-06-09 20:30:42 UTC	0 - 15 - 0	www.evacg.cc/archives/97529	51.81.250.87
2023-06-09 20:28:38 UTC	0 - 2 - 0	download2.vso-software.fr/CleanVSO.exe	37.59.46.10
2023-06-09 20:24:54 UTC	0 - 0 - 3	giulianilex.com/178.jar	198.100.155.18

Date	UQ / IDS / BL	URL	IP
2023-05-18 01:43:55 UTC	0 - 0 - 12	www.metamask.io.merge.pjbtecnologias.co.mz/se (...)	51.38.118.179
2023-05-16 12:48:17 UTC	0 - 0 - 68	metamask.io.pjbtecnologias.co.mz/secure.html	51.38.118.179
2023-05-16 12:17:35 UTC	0 - 0 - 118	www.metamask.io.pjbtecnologias.co.mz/	51.38.118.179
2023-05-01 09:35:36 UTC	46 - 0 - 120	metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179
2023-05-01 09:32:32 UTC	24 - 0 - 62	metamask.io.merge.pjbtecnologias.co.mz/secure.html	51.38.118.179

Date	UQ / IDS / BL	URL	IP
2023-04-03 15:20:27 UTC	25 - 0 - 42	metamask.io.pjbtecnologias.co.mz/	51.38.118.179
2023-03-31 13:07:24 UTC	25 - 0 - 42	metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179
2023-03-14 05:42:32 UTC	21 - 0 - 36	www.metamask.io.pjbtecnologias.co.mz/secure.html	51.38.118.179
2023-03-12 05:58:52 UTC	22 - 0 - 38	metamask.io.merge.pjbtecnologias.co.mz/secure.html	51.38.118.179
2023-03-08 05:03:52 UTC	0 - 0 - 42	metamask.io.pjbtecnologias.co.mz/	51.38.118.179

HTTP Transactions (55)

Request	Response
GET / HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/html Connection: Keep-Alive Last-Modified: Tue, 20 Sep 2022 02:07:28 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 2938 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size: 2938 Md5: a2d4bc164ed35f0e8ab9a24a8d78d2ba Sha1: 23b05632d6673e53091a9423a58cb5c9e287a8cc Sha256: f1526c918214e606e6d02f5c5f5ae7a78391de99d09e2d07d70e041dda13ee91 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6763 Expires: Thu, 09 Feb 2023 04:30:52 GMT Date: Thu, 09 Feb 2023 02:38:09 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dca68db7aea32f6683ce8d542c078f04 Sha1: 19c495238df74fca680e21f18627ff94de5dd2e5 Sha256: 35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D" Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14655 Expires: Thu, 09 Feb 2023 06:42:24 GMT Date: Thu, 09 Feb 2023 02:38:09 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 565c1bbc5c1c40be1988b3bf6fd9dc1a Sha1: cfdba5bc597130461dd67bf6cda53183be592493 Sha256: 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD" Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16243 Expires: Thu, 09 Feb 2023 07:08:52 GMT Date: Thu, 09 Feb 2023 02:38:09 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cc14b0d2f7c451f6431dc87ba54d1d60 Sha1: bab8bfda6fa3e2f17125353f5147211787dc25d0 Sha256: b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 09 Feb 2023 02:36:46 GMT age: 83 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: bf0c602d32b3c14606f22a86183b5e3c Sha1: 6eabd8d83475eba731968abe1a05a8bfd272f160 Sha256: 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: UVa4Bu1AvuJeWHuKiSj5uVffcSiKbgnvl77mHZym7dLf2g1FzXQXM/4oi4L6o9OgQDMHghvBOVp2uRy/wI2rIA== x-amz-request-id: R92JNDTKZT5EWMNJ content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 09 Feb 2023 02:36:11 GMT age: 118 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: e76071a28ee566dababb3834f46d68ed Sha1: aebb4e68c1ba2de0f90025283e8ed8470944fde0 Sha256: 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /meta/normalize.css HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/css Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:38 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 2633 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text Size: 2633 Md5: 74b55c54efadbc58b06a6042cc858472 Sha1: 127ffb851c8bb77bf00de3280d0e078571704de7 Sha256: 435035717bcd1da635fd11e9d0d22c40d2753c48383b1728f66bfd1607bcd54a urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /meta/plx.chock.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:38 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 312 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text Size: 312 Md5: f8a281c232ca490b0fb6a69a0a69aa93 Sha1: 8586880ea6c9a49dd4b2b45ee6f7eff01c5c7683 Sha256: 4acac0377cad7da2cbf6e18c4e9096e95484429bf4589b472bbc276c43b6110e urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/webfont.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:46 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 5431 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (2134) Size: 5431 Md5: f2e75ef01e8ce9b37cec75250d84e8bf Sha1: 76e367a654e7cdaa51872ab26a31eb96605b4544 Sha256: 4a40bdcd270c0a713cc75ff940ab738302bb466ad84bd39780d96dfb77bfedde urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/css.html HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/html Connection: Keep-Alive Last-Modified: Wed, 22 Dec 2021 16:30:22 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 274 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text Size: 274 Md5: a0a15fba936f518c2c1c071b0089c64c Sha1: 6f8526c13dda4943229b9535931f8a6fd169da3a Sha256: 6e9864f7491582647d88fee2b9503d22fc8735f673bb9be1809437c11af8af96 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/tag.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:44 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 7583 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (21652), with no line terminators Size: 7583 Md5: 030e152d0cbf5d9c345726676e20f490 Sha1: d39cd836763535ada905adb47e4d028a80f51849 Sha256: 01cb61852e9ab6166e2651c568c84e93d2dd80a7296b26d2f0539e5dc614787f urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/analytics.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:22 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 20110 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (1325) Size: 20110 Md5: f6172b83fb5bcd8fadd246270f6e7948 Sha1: 910ba56b59eac08dd3461bbf81a19378028b2664 Sha256: 62559499e80252ed5f16b8d9972825db8479ad069a5f3e63a82c37a0d9d4ce91 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/storage.secure.min.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:42 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 13331 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (38562), with no line terminators Size: 13331 Md5: 3d92102abedfdb24487dce53034d530b Sha1: 98a4881577f81b625bc08bf33331295fd996df48 Sha256: b6df362a0fb0fa4eb5c3e8724f44a5a483550e971d2ff3131c82efcfb7d262a2 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/enterprise.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:24 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 617 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (1008), with no line terminators Size: 617 Md5: d81ef5cb351ba48ede3354fa5248ce44 Sha1: 9a08bcf54317bb24610116e0650b520b32dcb7e3 Sha256: 69e117e70a745175180e8c577cec146b059da38bfd77265a8544cfc78a51e32b urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.163 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 02:38:09 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 0333fa3e34f17f01e9829bd8ee662c23 Sha1: be4c7a8599038facc49c73d6d14451023bc919e7 Sha256: 8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
GET /meta/webflow.css HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/css Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:46 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 9350 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (2587) Size: 9350 Md5: d143e827e4004f5af028b3c37e3748dd Sha1: 7531565e84fd2011b5ca8a9b179ecdd4b65d89b6 Sha256: f425ff60551250b2f1dc6a40d92d5ab84847781d370740a945b6b8f1866c4e84 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 09 Feb 2023 02:38:09 GMT content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /meta/metamask-staging-2.webflow.css HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/css Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 16:30:36 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 17590 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text Size: 17590 Md5: 53ff35d49ab5d2089b65f13389233f86 Sha1: cf1714af3125e0fc6b07408fa4269ab003baa162 Sha256: 509ea7e5aac1909a1a0b328b497e47f04cd10eaa3927e65a37cf1900bea5996f urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /meta/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:32 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 30970 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with very long lines (65451) Size: 30970 Md5: 21ab05a6dc4822c20e4f8e617d59503e Sha1: 0431002ed053581f86ceeca6589f3b3fc039d1ee Sha256: d55c3c4566cd69b2af1ac0ef1f24f7d9e781bd67701c2e84a2300a8464636b34 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/mm-logo.svg HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: image/svg+xml Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 16:30:36 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 3289 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001) Size: 3289 Md5: 75536fc9d6e2f24b5d4a43206f59daea Sha1: d6b451451650bb4028e6e36562cf590370534324 Sha256: 1fec7292d135f29856c58b107c76d144f532a9a3b5d36acefa89ae4e3e990c61 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/wpp.gif HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: image/gif Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 16:30:48 GMT Accept-Ranges: bytes Content-Length: 3877 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: GIF image data, version 87a, 470 x 40\012- data Size: 3877 Md5: 941648b845842a709da73e24652cf8a4 Sha1: 099e5f97e602d026c51537c9b45328dc99261d7c Sha256: 2a7344e607a878f0acac7f5c9c3a65fc8a4423f00e21d3fb7a814cae051631d9 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /meta/webflow.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:09 GMT Last-Modified: Wed, 22 Dec 2021 16:30:46 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 147063 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: Unicode text, UTF-8 text, with very long lines (50020) Size: 147063 Md5: 8a4663ee78192e5c9506c2a338ce7723 Sha1: dba17ca619195bfb7ff1a1b55d196bff2029b89f Sha256: f2892479732a4c07ecece62f4c8f12fd9ade7fab06766368a9c87f3bbe96dd59 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.163 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 02:38:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 0333fa3e34f17f01e9829bd8ee662c23 Sha1: be4c7a8599038facc49c73d6d14451023bc919e7 Sha256: 8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
GET /css?family=Changa+One:400,400italic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	142.250.74.106 HTTP/1.1 200 OK Content-Type: text/css; charset=utf-8 Access-Control-Allow-Origin: * Timing-Allow-Origin: * Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin Expires: Thu, 09 Feb 2023 02:38:10 GMT Date: Thu, 09 Feb 2023 02:38:10 GMT Cache-Control: private, max-age=86400 Cross-Origin-Opener-Policy: same-origin-allow-popups Cross-Origin-Resource-Policy: cross-origin Content-Encoding: gzip Transfer-Encoding: chunked Server: ESF X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff --- Additional Info --- Magic: ASCII text Size: 301 Md5: 7fb212f619185f162769684274cb1dfe Sha1: 414b678cfcbcd25c44569e72369a8218bea8756d Sha256: d53161ae9523414449dd0f7083f66fda679084bac2cb18a92b884a43616c1fd5
GET /meta/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/meta/metamask-staging-2.webflow.css	51.38.118.179 HTTP/1.1 200 OK Content-Type: font/woff2 Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 16:30:26 GMT Accept-Ranges: bytes Content-Length: 45196 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data Size: 45196 Md5: 2d75957df3bb3aa6ed84f6591b0d5a1a Sha1: 906424e75625f63b0188471067065794d0348536 Sha256: 8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/meta/metamask-staging-2.webflow.css	51.38.118.179 HTTP/1.1 200 OK Content-Type: font/woff2 Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 16:30:26 GMT Accept-Ranges: bytes Content-Length: 44544 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data Size: 44544 Md5: 9024d0bf73943172297c4628d0054e20 Sha1: 36c3795e7b297d06589e15ef59592683d9ed0974 Sha256: 88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Connection: Keep-Alive Last-Modified: Wed, 22 Dec 2021 16:30:32 GMT Accept-Ranges: bytes Content-Length: 92325 Date: Thu, 09 Feb 2023 02:38:09 GMT Server: LiteSpeed --- Additional Info --- Magic: PNG image data, 1752 x 1452, 8-bit/color RGBA, non-interlaced\012- data Size: 589568 Md5: d0ec70f4c666fbf6ad0d30a52d08c5c9 Sha1: e48f0688bc4f592824840478d12c05df0dd12002 Sha256: 3f4bfc7c6cc471e9d95936dc109852c4f6a4bf1163b63eeabfe840565d5ad8d1 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /s/changaone/v18/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://metamask.io.merge.pjbtecnologias.co.mz Connection: keep-alive Referer: http://fonts.googleapis.com/	216.58.207.227 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 7900 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Sun, 05 Feb 2023 20:48:02 GMT Expires: Mon, 05 Feb 2024 20:48:02 GMT Cache-Control: public, max-age=31536000 Age: 280208 Last-Modified: Thu, 21 Apr 2022 17:15:19 GMT --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data Size: 7900 Md5: 61e86e7a20ecf3ba181ca4b9a9a1cdbd Sha1: 482a65cffc69109af26669d64accbef71db3b836 Sha256: fbd0536d5b92c0dbe6ad2637800ae8da10c20755b564a3575bd12bba57f73b18
GET /images/webclip.png HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: image/png Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 22:03:30 GMT Accept-Ranges: bytes Content-Length: 0 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /images/favicon.png HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/	51.38.118.179 HTTP/1.1 200 OK Content-Type: image/png Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:10 GMT Last-Modified: Wed, 22 Dec 2021 22:03:30 GMT Accept-Ranges: bytes Content-Length: 0 Date: Thu, 09 Feb 2023 02:38:10 GMT Server: LiteSpeed --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
GET /s/changaone/v18/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://metamask.io.merge.pjbtecnologias.co.mz Connection: keep-alive Referer: http://fonts.googleapis.com/	216.58.207.227 HTTP/1.1 200 OK Content-Type: font/woff2 Accept-Ranges: bytes Access-Control-Allow-Origin: * Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes Cross-Origin-Resource-Policy: cross-origin Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes" Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} Timing-Allow-Origin: * Content-Length: 8404 X-Content-Type-Options: nosniff Server: sffe X-XSS-Protection: 0 Date: Thu, 02 Feb 2023 02:59:18 GMT Expires: Fri, 02 Feb 2024 02:59:18 GMT Cache-Control: public, max-age=31536000 Last-Modified: Thu, 21 Apr 2022 17:15:41 GMT Age: 603532 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 8404, version 1.0\012- data Size: 8404 Md5: 141119ae119bf7ca75e10ef82f66e442 Sha1: adebf435aa078db3c116cb9faae15f2ad81d3ac5 Sha256: c6afeb967afd466210e4061473c4855684e84b7e850b248c0533e6288acfbaff
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.163 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 02:38:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 986afab4bad851da3c4a2b8db670c876 Sha1: c58b7142ce3bebda918b77649973715dbd71b4d2 Sha256: 24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 09 Feb 2023 01:51:21 GMT age: 2809 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /recaptcha/releases/rPvs0Nyx3sANE-ZHUN-0nM85/recaptcha__nl.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://metamask.io.merge.pjbtecnologias.co.mz Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	142.250.74.35 HTTP/2 404 Not Found content-type: text/html; charset=UTF-8 access-control-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff date: Thu, 09 Feb 2023 02:38:10 GMT server: sffe content-length: 1621 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136) Size: 1621 Md5: c90524d6a02b27addb56c350fe6fbb2d Sha1: d713d1b53323c0169ffe0649be8c9d04a189f999 Sha256: 4aefd395113d052a874ac1919aed0e288835e0377683f1e71e98838d16c986e0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.163 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 09 Feb 2023 02:38:10 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 986afab4bad851da3c4a2b8db670c876 Sha1: c58b7142ce3bebda918b77649973715dbd71b4d2 Sha256: 24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4" Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15996 Expires: Thu, 09 Feb 2023 07:04:46 GMT Date: Thu, 09 Feb 2023 02:38:10 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 248ce16379b12f11927ecc3142aec450 Sha1: fa5b189f2d9182479170cb61cc1723571e437bd2 Sha256: a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: k34HyExXBbI+xglg8vS4fQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.41.34.173 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: SQrqeVrrDhD4wX2KYj7BYu4aD4E= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5094 Expires: Thu, 09 Feb 2023 04:03:06 GMT Date: Thu, 09 Feb 2023 02:38:12 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1d885cfc22a04f1216c98dd64df5338a Sha1: 589916a844b81fac40af88a772865b8e28dfb64e Sha256: 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5094 Expires: Thu, 09 Feb 2023 04:03:06 GMT Date: Thu, 09 Feb 2023 02:38:12 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1d885cfc22a04f1216c98dd64df5338a Sha1: 589916a844b81fac40af88a772865b8e28dfb64e Sha256: 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5094 Expires: Thu, 09 Feb 2023 04:03:06 GMT Date: Thu, 09 Feb 2023 02:38:12 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1d885cfc22a04f1216c98dd64df5338a Sha1: 589916a844b81fac40af88a772865b8e28dfb64e Sha256: 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.77.32 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5094 Expires: Thu, 09 Feb 2023 04:03:06 GMT Date: Thu, 09 Feb 2023 02:38:12 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1d885cfc22a04f1216c98dd64df5338a Sha1: 589916a844b81fac40af88a772865b8e28dfb64e Sha256: 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4930c104-0ac3-49ae-9506-13702874f821.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3474 x-amzn-requestid: 1b0f88cf-460b-4ed2-8235-86c9e3e3ff93 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ffW2uG3LIAMF3cg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d604f7-42e5c38315bdbd47615985b6;Sampled=0 x-amzn-remapped-date: Sun, 29 Jan 2023 05:32:39 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: j7JqKdXPBH0hFdoy4Qj0ttGzX93CyNdiv6Tn5h1F_zwNhxwb4IYBTA== via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 22:28:34 GMT age: 14978 etag: "a8bb267f929b734a53b3dab0283c717270f6eb43" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3474 Md5: 2c1f5626e7ff7e681468c3c5820f3633 Sha1: a8bb267f929b734a53b3dab0283c717270f6eb43 Sha256: 38d81274cc9f71f149091f72494c74872d99909c69d612a595c930c4755c4da3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3599 x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ABI38GUpIAMFY0Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0 x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: d8ZayLRkBd16PmZsswU0N4ZLVFphVFlgPRloMdqF_U6WMcyvZptmpA== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 21:45:46 GMT etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca" age: 17546 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3599 Md5: 10fd2f55fa0cfb8616ded6ddc2bb511a Sha1: 996ed68f1b9770a19a97f6c8d359e338b8c8b3ca Sha256: e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d76b3c3-ea90-47d3-83f3-8f1550aa26fa.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9846 x-amzn-requestid: 4e6cc2be-bc18-4d66-b338-833a05d0d998 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fsaDlGV4oAMFoZA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63db3d49-14fc32183d3c6afb3a64c27d;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 04:34:17 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: BNBH60bI_wBqaKAFD_FeZHbzfIeJh9-x-JiMsF0Uh9pxKHFPdAH6Vw== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 22:02:08 GMT age: 16564 etag: "efcb6a067bb023865823625e67d9de60d44685e0" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9846 Md5: 1d7814305f961caded310b6f2089219b Sha1: efcb6a067bb023865823625e67d9de60d44685e0 Sha256: 3c01637a052e2394774fc8f6dd37a284afaf76b423219ecd26a89c2d8b69c121
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 15019 x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f583LHiioAMFqkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 12:41:28 GMT age: 50204 etag: "8531c150cb11de44361a95624b11cf46b9e0ba02" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 15019 Md5: 95081172f8e19d19921acc802488e019 Sha1: 8531c150cb11de44361a95624b11cf46b9e0ba02 Sha256: 7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7450 x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmJ2aG-IoAMFfnQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CsMWJP4A64pbv9jhvJkyNF2SU7gQEIkQ5xWBlSVSlGjlfz9O0dkPGQ== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 03:38:47 GMT age: 82765 etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7450 Md5: ce710ab5746832fe637fada3e6d63abf Sha1: d545c85d4a8cf92dc8b88db0a056623d1ef7a943 Sha256: 40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F396748b7-25c0-4112-960c-9c86d5ad28f9.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7451 x-amzn-requestid: a900a5b4-85cd-4817-8e70-2516eb33a0a9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fox8IHMuIAMFdHA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d9c9e7-1122726b315a7c5623d1ff3f;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 02:09:43 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: JFPF2xZJ9QIqJbOEjTi5gt2aflnM9HVaWp8FpRAIIeDf59cJzbp6kw== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 21:46:36 GMT age: 17496 etag: "ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7451 Md5: 5fc553a8677d9c0bf4835a0c29a7345c Sha1: ec8541dd8ae32e1cf597d40cc1d9d04aefb46ba8 Sha256: e821faf86e44f2b9c9d5bd8cd3575c0a99acfc58774077034c413e345a7c0c0c
GET /secure.html HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	51.38.118.179 HTTP/1.1 200 OK Content-Type: text/html Connection: Keep-Alive Last-Modified: Tue, 20 Sep 2022 00:00:40 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 3256 Date: Thu, 09 Feb 2023 02:38:15 GMT Server: LiteSpeed --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size: 3256 Md5: 84e184949729e38ae19a238cd0918bf8 Sha1: 383f7936d6417eaa1c77ac725be7dcf8d2d7b802 Sha256: d3a2a10830d55e606c291c6a9554677535c7e597b1454ea3f3eb6d2b97df953a urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /meta/bootstrap-tagsinput.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/secure.html	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:15 GMT Last-Modified: Tue, 03 Nov 2015 09:26:42 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 5491 Date: Thu, 09 Feb 2023 02:38:15 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text Size: 5491 Md5: 5b983ffbdbd303a37f5b153798286001 Sha1: a4782d23a57b811c34547d75e27bbf0073093413 Sha256: caa4acd6da83afa0cd99d45b91093277c3fbb93c37f0afa0fa7f9f48761d6919 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /script.js HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/secure.html	51.38.118.179 HTTP/1.1 200 OK Content-Type: application/javascript Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:15 GMT Last-Modified: Tue, 20 Sep 2022 01:35:50 GMT Accept-Ranges: bytes Content-Encoding: gzip Vary: Accept-Encoding Content-Length: 681 Date: Thu, 09 Feb 2023 02:38:15 GMT Server: LiteSpeed --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 681 Md5: 134522a48e2972be59a3971575c17e30 Sha1: ea1c1fac3da8f89c7091fb9ccc2617b2831dcda2 Sha256: b620dc8d0b3f34b191934f466cb0793441e98a9705d8f3235d0f75582ecbdc4f urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet - fortinet: Phishing
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://metamask.io.merge.pjbtecnologias.co.mz Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 128352 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 07 Feb 2023 04:56:10 GMT expires: Wed, 07 Feb 2024 04:56:10 GMT cache-control: public, max-age=31536000 last-modified: Thu, 25 Aug 2022 00:26:06 GMT age: 164525 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data Size: 128352 Md5: 53436aca8627a49f4deaaa44dc9e3c05 Sha1: 0bc0c675480d94ec7e8609dda6227f88c5d08d2c Sha256: 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /meta/Institutional-Illustration.png HTTP/1.1 Host: metamask.io.merge.pjbtecnologias.co.mz User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/meta/metamask-staging-2.webflow.css	51.38.118.179 HTTP/1.1 200 OK Content-Type: image/png Connection: Keep-Alive Cache-Control: public, max-age=604800 Expires: Thu, 16 Feb 2023 02:38:15 GMT Last-Modified: Wed, 22 Dec 2021 16:30:30 GMT Accept-Ranges: bytes Content-Length: 289564 Date: Thu, 09 Feb 2023 02:38:15 GMT Server: LiteSpeed --- Additional Info --- Magic: PNG image data, 876 x 1040, 8-bit/color RGBA, non-interlaced\012- data Size: 289564 Md5: 85607339bb7e3cc70e1b7568ed4d29b2 Sha1: 7c6301d70e1ab599857be6e9795b94418cef6079 Sha256: 5bdf1ea203497adb942fa639a322195c744910ae8980d625d986ddead1f8ed37 urlquery: - Phishing - Generic Crypto/Wallet Blocklists: - openphish: Crypto/Wallet
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	54.230.245.39 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Thu, 09 Feb 2023 02:38:15 GMT Etag: "63e2fb48-1d7" Last-Modified: Thu, 09 Feb 2023 02:35:45 GMT Server: ECS (dcb/7EEC) X-Cache: Miss from cloudfront Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: HujlYrOj4RuXX5wNDaXtm45X24mRRtZVUmbO8kGD7t9qL0LskiKlSA== Age: 150 --- Additional Info --- Magic: data Size: 471 Md5: f8d9e6c63a8ce32b223ca7b694ccb47f Sha1: 83d5b61a7aad4893203c6d7e6ec8bdc6e68bf04d Sha256: c04caeed8b0adee9a06aa985d6d39ad5624149f3c904c21d7dc259dad983e783
GET /scripts/ethers-v4.min.js HTTP/1.1 Host: cdn.ethers.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	18.173.5.126 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 last-modified: Fri, 23 Oct 2020 03:52:54 GMT x-amz-version-id: 1vIDD7850l9p1Juv2dxP72RhnSV02NFY server: AmazonS3 content-encoding: gzip date: Thu, 09 Feb 2023 02:38:16 GMT etag: W/"0e66b864a27c5961a702e18683961608" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 fc5c30d1def226a87bafdb8fe4adb50e.cloudfront.net (CloudFront) x-amz-cf-pop: CPH50-P1 x-amz-cf-id: 1vfCh2yBpe7d7OH7-XVVQGJRdbE8BEH-2bIjWvIU2cxsgHa_obwR5w== age: 25036 X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 94598 Md5: 82c0be4a9fe097c30a11587d383a8fa9 Sha1: a41477b77b21a766038f01b88061cbeaf2faa647 Sha256: 8143bd581c5e8cb8394d57814157039eaa219666937fc42f469acbf6e204f6f8
GET /icon?family=Material+Icons HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://metamask.io.merge.pjbtecnologias.co.mz/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 09 Feb 2023 02:38:10 GMT date: Thu, 09 Feb 2023 02:38:10 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: Sha1: Sha256:

URL	metamask.io.merge.pjbtecnologias.co.mz/
IP	51.38.118.179 (France)
ASN	#16276 OVH SAS
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access
Report completed	2023-02-09 02:38:20 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	41
urlquery alerts	25 Phishing - Generic Crypto/Wallet
Tags	crypto phishing

Overview

Domain Summary (13)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 51.38.118.179

Last 5 reports on ASN: OVH SAS

Last 5 reports on domain: pjbtecnologias.co.mz

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (15)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (55)

Overview

Domain Summary (13)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 51.38.118.179

Last 5 reports on ASN: OVH SAS

Last 5 reports on domain: pjbtecnologias.co.mz

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (15)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (55)

Network Intrusion Detection Systems