Report - metamask6.com/

Report Overview

Visited public
2023-08-24 11:02:52
Tags
URL
metamask6.com/
Finishing URL
metamask6.com/
IP / ASN
182.255.62.72
#136933 Gigabitbank Global
Title
MetaMask - 一个加密钱包和通往区块链应用程序的网关

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-23 18:12:04	2.0 kB	4.2 kB	142.250.74.131
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-08-24 05:08:02	428 B	6.4 kB	216.58.211.10
js.users.51.la	53024	2005-01-17	2012-05-30 17:10:11	2023-08-24 07:19:08	318 B	2.6 kB	42.236.73.41
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-08-24 03:19:39	3.5 kB	99 kB	216.58.207.227
forms.hsforms.com	5160	2013-09-18	2018-03-07 16:21:13	2023-08-24 02:07:09	477 B	3.2 kB	104.16.212.191
ia.51.la	59607	2005-01-17	2017-10-31 09:01:51	2023-08-24 07:19:09	862 B	71 B	42.236.73.38
tracking-protection.cdn.mozilla.net	9282	1998-01-31	2015-09-17 19:00:28	2023-08-23 16:02:08	5.3 kB	1.9 MB	34.120.158.37
metamask6.com	unknown	2023-07-20	2022-02-16 04:54:55	2023-08-23 20:35:39	9.3 kB	1.5 MB	182.255.62.72
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-08-18 17:41:21	4.1 kB	94 kB	142.250.74.164
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-08-24 03:07:23	4.9 kB	803 kB	142.250.74.35
perf.hsforms.com	10768	2013-09-18	2020-07-03 15:11:28	2023-08-23 18:16:24	503 B	1.1 kB	104.16.212.191
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-08-24 03:39:19	363 B	848 B	142.250.74.106
metamask.io	81413	2015-07-02	2015-11-15 18:16:41	2023-08-21 22:46:23	1.3 kB	55 kB	185.199.111.153

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet
2023-08-23	medium	metamask6.com/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (28)

	URL	From	Size	First Seen	Last Seen
	unknown	Function	92 B	2023-04-13	2025-05-08
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 12:35 Last Seen2025-05-08 00:19 Times Seen829 Hash 0195aee91cd277604a3e95d6b67cf817 cfc91455f2c998cc69c03c31b749ced8aebd0ce7 822317cfabb3d4b8fe0d843530b2844b9b00eccce923366226866aa4acb34c96 Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr	ScriptElement	75 B	2023-03-07	2025-05-09
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:15 Last Seen2025-05-09 10:33 Times Seen14229 Hash dca9d53787fff314e5bd1a123b28906a 1350c858f60bbb03d1b53b05cbad6cea82ff29d1 2475d902b4182bac667d464a44c89ee405e5cfd64156b30f811557cf2b347e2f Loading...

	www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr	ScriptElement	47 kB	2024-08-21	2024-08-21
Pretty URL www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 08:13 Last Seen2024-08-21 08:13 Times Seen1 Hash 052622a3d7516d538c8cf32638987746 a14b8b8db351128d935648d6bf0f6de69812bc8e afee959693fc49c42b8558dcacfe6b486dfb0390be37ea959536200e01c6c6e0 Loading...

	www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm	ScriptElement	0 B	0001-01-01	2025-05-09
Pretty URL www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-09 11:38 Times Seen4635640 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	metamask6.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-09
Pretty URL metamask6.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:18 Times Seen341422 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	metamask6.com/forms/v2.js	ScriptElement	579 kB	2023-03-07	2025-05-06
Pretty URL metamask6.com/forms/v2.js IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:29 Last Seen2025-05-06 11:44 Times Seen26 Hash 49987de4bcbe452bcfd1007cc2d781f9 dfc42e15103223d1c2f76a441fdbfc147d287e39 adfaf54621f479fda0fa70f3235cb7e8dc5c30a6b896e5e2c025ea0e8971d06d Loading...

	forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=	ScriptElement	5.8 kB	2023-08-24	2023-08-24
Pretty URL forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk= IP 104.16.212.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 13:02 Last Seen2023-08-24 13:02 Times Seen1 Hash 91f6471db7386ece833e3a0d431c2db7 5aa625333ffb472ad12efea65172b85898f31bb1 654e504c78b18a5b3f8b6c3485870a2b506e9d26d1be64cd120840476ddbafe5 Loading...

	js.users.51.la/21744701.js	ScriptElement	4.9 kB	2023-08-24	2023-09-08
Pretty URL js.users.51.la/21744701.js IP 42.236.73.41 ASN #4837 CHINA UNICOM China169 Backbone Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-24 13:02 Last Seen2023-09-08 13:32 Times Seen2 Hash f844c8605de7bb102e393f529e6c5422 7481fed463fc8a842fab8fb2d29acc97d61fd66c ff384d6e864ad3ce5becbf3dcef9aa4c35561040eb78bf21569c7da2ee5482f6 Loading...

	www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js	ScriptElement	461 kB	2023-08-18	2023-08-31
Pretty URL www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-18 04:48 Last Seen2023-08-31 09:12 Times Seen1265 Hash e346196cabbe1100839406d8f02a31c3 24f54bd82fdab0dc9bc5c6a71e33eefc02286aad 9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35 Loading...

	metamask6.com/	ScriptElement	73 B	2023-03-07	2025-05-06
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:24 Last Seen2025-05-06 11:44 Times Seen200 Hash ccf7a258eee5e12d2cb3d813a5da86c8 0d0c6985e493d2f610870c9259901a2511734328 441b05bfa42c0b589fd682ec21e9ba36e55f6ec2718fbb259a812cd0b999c28e Loading...

	metamask6.com/js/jquery-3.5.1.min.dc5e7f18c8.js	ScriptElement	90 kB	2023-03-07	2025-05-09
Pretty URL metamask6.com/js/jquery-3.5.1.min.dc5e7f18c8.js IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 11:25 Times Seen108613 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	metamask6.com/gtag/js.js	ScriptElement	93 kB	2023-03-07	2025-05-06
Pretty URL metamask6.com/gtag/js.js IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:59 Last Seen2025-05-06 11:44 Times Seen31 Hash 04a274cc3e470c2933ee3cce95a98e86 5fbe18748a0ffccb9cbbcf278443ce54dff86776 001d571f07421e4f3d037d9d7541d31c7230f8df77205fd5ab303b7d6fa864c9 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js	ScriptElement	13 kB	2023-03-07	2025-05-09
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP 216.58.211.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-05-09 11:08 Times Seen17504 Hash 7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee Loading...

	metamask6.com/	ScriptElement	181 B	2023-03-07	2025-05-09
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:17 Last Seen2025-05-09 11:08 Times Seen15839 Hash 0e9e3ad57abeefde87342864450cc232 4dc8676bf3417d597053d5f253fce034007f63da 9a37601d1f5a5f2fba3b000694d4bf5e035c606d5485dd94e2997cbe2efe5c26 Loading...

	metamask6.com/js/webflow.js	ScriptElement	601 kB	2023-03-07	2025-05-06
Pretty URL metamask6.com/js/webflow.js IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20 Last Seen2025-05-06 11:44 Times Seen100 Hash 9758f7e3aa0c79ea7a3cadb16d10087b 07f3c4e552e28eba6172f53d6dcf981a55f42031 0bb0c326dfc33136ad88e7454f06d22398a75f57f5eef79a30b218c171136f0d Loading...

	metamask6.com/	ScriptElement	164 B	2023-03-07	2025-05-06
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02 Last Seen2025-05-06 11:44 Times Seen134 Hash 9fb685752617cf9403453cc16f9b0469 84d82954770f482fbea43960d5a5dc36e3572d1a d57443d0c7faf37db40a6058be8401314277c4b2662d8ed301ee6c0bd99a8c4d Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-09
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-09 11:18 Times Seen340621 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	metamask6.com/	ScriptElement	1.8 kB	2023-03-07	2025-05-06
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 17:55 Last Seen2025-05-06 11:44 Times Seen114 Hash 8b1fb904d189e68aaf32a2223915fdfd d1a510fab3db50f7482275581d2171914e1d6631 c1863d7b43731c0cb9a160099c3fa80215e0b0966f27061f78eb6af1da84f026 Loading...

	metamask6.com/	ScriptElement	116 B	2023-03-07	2025-05-06
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02 Last Seen2025-05-06 11:44 Times Seen140 Hash 65eedcd8ea68974fc10b18a001f5ff0d d57d865c29e2ba5f817f850194c33f6d1e7ea064 681e6299492c0b7a15980513d81a420ff8d912dadc14d90148b77bd81018926e Loading...

	metamask6.com/logo.js	ScriptElement	46 kB	2023-03-07	2025-05-06
Pretty URL metamask6.com/logo.js IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-06 11:44 Times Seen59 Hash 62e0e533c3ce4dc08ebf2a640f22164c 9a930c6f184104a9f7403244a841d0fe208b27d9 6137618d3823a779dd702a546f64a767860341256ed661e1204b2dbdfc680ef4 Loading...

	www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true	ScriptElement	1.0 kB	2023-08-19	2023-08-25
Pretty URL www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-19 13:45 Last Seen2023-08-25 12:18 Times Seen8 Hash aac3288b87f93219ccd838f40e3985d7 4f1e30acf86e034db135c6d666702fc72f86c155 8eace2ac1082d16eaa54c0851cf077baf7d925e1791e24df78d4d1d72fe02958 Loading...

	metamask6.com/	ScriptElement	184 B	2023-03-07	2025-05-06
Pretty URL metamask6.com/ IP 182.255.62.72 ASN #136933 Gigabitbank Global Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:02 Last Seen2025-05-06 11:44 Times Seen149 Hash 12c0659e2686c193368d09f53edc8090 e2a481f856253ec2b3dfe266ab035bc1ca650b72 7269e1e3bae2d22edc632e41922fd7e090dd785fdb749c05b577f78e9126075c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3165dace417aab8e736cb1548dc5ef19	20 kB	2024-08-21 08:13	2024-08-21 08:13
Pretty Observations First Seen2024-08-21 08:13 Last Seen2024-08-21 08:13 Times Seen1 Hash 3165dace417aab8e736cb1548dc5ef19 7723fbb714f1ceff0b79ee370f44f3c100a38e3f d6c00de04a4cc81fe6775fcabd73e47cdc7561fd66a7ba3b22f91091330ac277 Loading...

	#2 Eval - e441937c4f2f07f6d3354c6ad1b22c66	22 B	2023-08-17 16:23	2024-08-21 08:31
Pretty Observations First Seen2023-08-17 16:23 Last Seen2024-08-21 08:31 Times Seen480 Hash e441937c4f2f07f6d3354c6ad1b22c66 21f145951b64155a76a793cd33b66fe128d93de1 f132be20496bc0923dbd1f9fff8fe5f20480a25118d64fcba8f17dbcd87fc397 Loading...

	#3 Eval - 89bd09467fcf972e2e31479d8362119b	22 B	2023-08-17 16:23	2024-08-21 08:31
Pretty Observations First Seen2023-08-17 16:23 Last Seen2024-08-21 08:31 Times Seen482 Hash 89bd09467fcf972e2e31479d8362119b eb62943799ff64ddc091960c8dd02ef1daf34008 fad7a71298be0c9a5a3e4a6ea9b00be919a80061b9cbaaaacce78f81f5db80c5 Loading...

	#4 Eval - e5331e16fb0e9b22d95c3a52fc9838e2	16 kB	2023-08-17 16:23	2024-08-21 08:31
Pretty Observations First Seen2023-08-17 16:23 Last Seen2024-08-21 08:31 Times Seen482 Hash e5331e16fb0e9b22d95c3a52fc9838e2 65991bda31c37951624f7766318b850e2550005f 98c6675f06f58f8ffcecbb872b4cb5feb24b25a31d213dea639e4bae73521bdd Loading...

	#5 Eval - 0f73cfb2a7dd102466ba89e462fc6bc2	64 B	2023-08-17 16:23	2024-08-21 08:31
Pretty Observations First Seen2023-08-17 16:23 Last Seen2024-08-21 08:31 Times Seen483 Hash 0f73cfb2a7dd102466ba89e462fc6bc2 bac7684b917eb345707a0daafa61db677d90e976 30945008e16eabad892034aa6430c1cb3ecb3f83e458a018a1f7d1ae7521eddc Loading...

	#6 Eval - 4749e054145e585f2f2382cc262c4f9d	16 kB	2024-08-21 08:13	2024-08-21 08:13
Pretty Observations First Seen2024-08-21 08:13 Last Seen2024-08-21 08:13 Times Seen1 Hash 4749e054145e585f2f2382cc262c4f9d 35ac6c6b39f771c6bfe89fe2658f20afcab710bf cc8fd4de292fe3ab0a772231d66feb3d490cbb68d539967002f42c0c82d2e449 Loading...

HTTP Transactions (77)

URL IP Response Size

tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982

34.120.158.37

56 kB

URL
tracking-protection.cdn.mozilla.net/ads-track-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
56 kB (56118 bytes)
Hash
eccf8436aa08de0d355cd2c068568453
e05e69cb2970888f00770ab772d77354df830f05
71a2d75150b4656ff17a9589a66e9e03661fa4ea1dfdf16c1d848efaae082439

HTTP Headers

GET /ads-track-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: o49fqwOIfy+F9iDZq9gEkcnVIweifyxM+oRuvjNYdCIFOKXQFl8jHJXHTcM9KDtX9qvk2lyEuDk=
x-amz-request-id: WYAX22MPEAMFWCZB
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 56118
via: 1.1 google
date: Thu, 24 Aug 2023 11:00:38 GMT
age: 115
last-modified: Thu, 18 May 2023 21:16:40 GMT
etag: "eccf8436aa08de0d355cd2c068568453"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755

34.120.158.37

10 kB

URL
tracking-protection.cdn.mozilla.net/analytics-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
10 kB (10262 bytes)
Hash
27ca7a562ad626165a25126b5975bc58
de8e9d89b673f3e1375e2a70f3c9d696726dfbe4
405d79f4b44125a2147ac70652ea7e7a544c1a5b34b376f683ea3e90445e7e42

HTTP Headers

GET /analytics-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: I5EjstXWQq+cHULM/TIFi9dPZ9fQG2YXfeLyeIF5klWYpZe6xcikVzSCE04wsDtFSeWDbhVBQUv1wJcSqWpbUOmY4DPQDxxLwoDJthTOfRg=
x-amz-request-id: QSYB4TXG27MFRNDF
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 10262
via: 1.1 google
date: Thu, 24 Aug 2023 10:33:35 GMT
age: 1738
last-modified: Fri, 12 May 2023 15:46:41 GMT
etag: "27ca7a562ad626165a25126b5975bc58"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755

34.120.158.37

2.3 kB

URL
tracking-protection.cdn.mozilla.net/base-cryptomining-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.3 kB (2293 bytes)
Hash
7938ce04b9288ce2553c06df7544718e
0f6bcdb2770858cfc9018dd76d3ac16386afd3e0
efedbe30e6f1ac7617b022b31ccd2920f0d518e9a7f8818447e117fbc7cd30ee

HTTP Headers

GET /base-cryptomining-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: NDIfDypZHwb8xW7VeqpWtmhvkJWDptKiQpm0Zp+OIjm6SQJMrrT6Hn8KRZ/Tht1jZlvunBMHtNQ=
x-amz-request-id: FM7CPKM0JFZN697G
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2293
via: 1.1 google
date: Wed, 23 Aug 2023 15:29:48 GMT
age: 70365
last-modified: Fri, 12 May 2023 15:46:54 GMT
etag: "7938ce04b9288ce2553c06df7544718e"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755

34.120.158.37

7.0 kB

URL
tracking-protection.cdn.mozilla.net/base-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
7.0 kB (6965 bytes)
Hash
02560eef6a3e694713d21ba526dbf2d2
c300dbaeeb367bd302eaf2941a97cdd54c84bde9
6796e1d3ffc1d5316c498c022fd22be9e15842a3b3166f664d14042b614e491c

HTTP Headers

GET /base-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: PIoMLYu1tq17fNVV8bcY6/w/HmTkfIkgKprmDF596aoo0Q5FBAeNf0+K1Wa/HhqY5Kdbj31CzM0=
x-amz-request-id: 7S7FGZCSBS8ZBYK6
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 6965
via: 1.1 google
date: Wed, 23 Aug 2023 17:51:13 GMT
age: 61880
last-modified: Fri, 12 May 2023 15:46:56 GMT
etag: "02560eef6a3e694713d21ba526dbf2d2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755

34.120.158.37

3.6 kB

URL
tracking-protection.cdn.mozilla.net/base-fingerprinting-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
3.6 kB (3637 bytes)
Hash
84a28e1e64a4aca618879e590fb29c47
ddea829bfd334fe48e25374f36119c6ce19bdfeb
e87ee13b3afbcefcfd7f87bdd26b12aa18b79437ebd4a3cf689f78aefa0a7d1e

HTTP Headers

GET /base-fingerprinting-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: KB7RhWm/vLFLR1XK5l9ui3xiQRCsOqQx7pPR/V2fe7mIwP7zieBkvJnb48l1IOuNnJYe0IPDRSk=
x-amz-request-id: 15BXZ75ZK9BMP5RA
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 3637
via: 1.1 google
date: Wed, 23 Aug 2023 16:06:12 GMT
age: 68181
last-modified: Fri, 12 May 2023 15:46:52 GMT
etag: "84a28e1e64a4aca618879e590fb29c47"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

metamask6.com/

182.255.62.72

6.3 kB

URL User Request GET
metamask6.com/
IP
182.255.62.72:0
ASN
#136933 Gigabitbank Global

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1843)
Size
6.3 kB (6308 bytes)
Hash
d30c92df6d612b152d223475fd1861d3
3dff134de5f08a7f48a4438ac031b11af3f140b7
25dfb8bec7095eb6dcd13a2531043d3683929f0ed1886f8b5f1cf8923bf90b0b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: text/html
Last-Modified: Sun, 30 Jul 2023 18:59:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"64c6b32a-4b4f"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755

34.120.158.37

8.9 kB

URL
tracking-protection.cdn.mozilla.net/content-email-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
8.9 kB (8853 bytes)
Hash
b9c2809ffc057abb94df0750c8cb57dd
e8ab5e486a0b53147eb8d66ca4585a06c5bbd210
b9816319448d2ccb8ef6a6e2aaefe13a9fa96335bdc1fd57c281dfe7ff95ede9

HTTP Headers

GET /content-email-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: 0dchFnQyyWYB73hjojB56WmPTl0PE7s7fLE0Ro66dmCwBIA5Wj5tbiirtAmh35O45coTUtUHe1gW3BVSDJev/ozr7/tGoKjP
x-amz-request-id: MFCNCT3704G8YDX8
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 8853
via: 1.1 google
date: Wed, 23 Aug 2023 21:17:22 GMT
age: 49511
last-modified: Fri, 12 May 2023 15:46:57 GMT
etag: "b9c2809ffc057abb94df0750c8cb57dd"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755

34.120.158.37

15 kB

URL
tracking-protection.cdn.mozilla.net/content-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
15 kB (15382 bytes)
Hash
d78d9f71f82fcce3a0d9079ec988ed05
13f8a07b0437728b11cefeda36b6211262d3af16
7449b095579811871ecad49889db2ae188486b18ab96f903a20941e34cfef7ee

HTTP Headers

GET /content-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: FRAKrGLl0hFAzXrYl0B6HZO8blFTaZq2vnigAl1r8kZo8eQjsGzQj7UfgomQaC5I66eGYZS12DE=
x-amz-request-id: 8RJ336Z8EFD9ESK7
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 15382
via: 1.1 google
date: Wed, 23 Aug 2023 16:01:10 GMT
age: 68483
last-modified: Fri, 12 May 2023 15:46:39 GMT
etag: "d78d9f71f82fcce3a0d9079ec988ed05"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bcdf43508e7b58692399e44ee02e61e6
b40b19a9469099e371ebc5688235e01d78cf77c1
efa06e4fb6c00cbb63c746479f62e92a38dca0badc50291d36fd59170e4b3cac

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755

34.120.158.37

1.5 MB

URL
tracking-protection.cdn.mozilla.net/google-trackwhite-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 MB (1470328 bytes)
Hash
2146c997750a1c7e55eb69a5a1a5e5b4
69ba29aca5c6a4bea1365e895b3c5b31df31220a
507d674f59748ff86ff629a2eb98b3cd343aec0a21e58089793341dc96361188

HTTP Headers

GET /google-trackwhite-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: vlsOwMlkV909tKRFJWO8aaiY23ePyjSI5L5w8eZxgrULggrRHInea2dIp+NlJ7wZmJahz2S9b3U=
x-amz-request-id: 0WNS2S4W8R3YCQG9
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
via: 1.1 google
date: Wed, 23 Aug 2023 23:41:58 GMT
age: 40835
last-modified: Fri, 12 May 2023 15:46:50 GMT
etag: "2146c997750a1c7e55eb69a5a1a5e5b4"
content-type: application/octet-stream
content-length: 1470328
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js

216.58.211.10

200 OK

5.4 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js
IP
216.58.211.10:443
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint2A:06:F9:5A:FD:FC:89:5C:D7:C5:CC:38:F0:25:78:FB:15:9F:5A:67
ValidityMon, 31 Jul 2023 08:22:19 GMT - Mon, 23 Oct 2023 08:22:18 GMT

File type
ASCII text, with very long lines (2134)
Size
5.4 kB (5437 bytes)
Hash
7c96a5f11d9741541d5e3c42ff6380d7
d3fa2564c021cf730e58ffddb138cf6b57ed126e
81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee

HTTP Headers

GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Aug 2023 13:23:20 GMT
expires: Sun, 18 Aug 2024 13:23:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 423553
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

metamask6.com/css/normalize.css

182.255.62.72

200 OK

2.9 kB

URL GET HTTP/1.1
metamask6.com/css/normalize.css
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text
Size
2.9 kB (2903 bytes)
Hash
4951cc88307c632cf285d3ba988ab283
031d58bc40b4242b27d8171a01bb0ecb5f9d22d7
5c4a6fe64efc5d07833c35af9630d0f9b3d4d09a63f9358e441374e9102c9e81

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 15:52:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ea5cb0-1e5c"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bcdf43508e7b58692399e44ee02e61e6
b40b19a9469099e371ebc5688235e01d78cf77c1
efa06e4fb6c00cbb63c746479f62e92a38dca0badc50291d36fd59170e4b3cac

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982

34.120.158.37

345 kB

URL
tracking-protection.cdn.mozilla.net/mozstd-trackwhite-digest256/111.0/1684443982
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
345 kB (344663 bytes)
Hash
aacf54fd5b2994c73b3e4e5e13f4b5a2
10494f54553c768432a556492e655aa774456927
bee12d3c1d013147f78ee8ce7d9fa5e83679cc650763c6f4f49a10ff2d4537e5

HTTP Headers

GET /mozstd-trackwhite-digest256/111.0/1684443982 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: npww+dYzohhe6FjhvHw33s1y2wNsFm7nxVSv0ydukADqf/WupxtxfsNiTVyczCfc9f4VlXGPhwY=
x-amz-request-id: 753APXJ58E723Z01
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 344663
via: 1.1 google
date: Wed, 23 Aug 2023 21:13:52 GMT
age: 49722
last-modified: Thu, 18 May 2023 21:16:46 GMT
etag: "aacf54fd5b2994c73b3e4e5e13f4b5a2"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

metamask6.com/logo.js

182.255.62.72

200 OK

13 kB

URL GET HTTP/1.1
metamask6.com/logo.js
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text, with very long lines (497)
Size
13 kB (12775 bytes)
Hash
62e0e533c3ce4dc08ebf2a640f22164c
9a930c6f184104a9f7403244a841d0fe208b27d9
6137618d3823a779dd702a546f64a767860341256ed661e1204b2dbdfc680ef4

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /logo.js HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: application/javascript
Last-Modified: Wed, 12 Jan 2022 10:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61deaed4-b430"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/css/webflow.css

182.255.62.72

200 OK

11 kB

URL GET HTTP/1.1
metamask6.com/css/webflow.css
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
Unicode text, UTF-8 text, with very long lines (2587)
Size
11 kB (10647 bytes)
Hash
13fc860cb6eddbf469d986e1a6b6480b
6bb85ecdc704734f59d4984d202f75b02048a58d
ba6716203b5a6f128eab828aef79dcdfeab87ec1ee605392e4a9d6955de30842

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/webflow.css HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 15:52:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ea5cb0-98c5"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

js.users.51.la/21744701.js

42.236.73.41

200 OK

2.3 kB

URL GET HTTP/1.1
js.users.51.la/21744701.js
IP
42.236.73.41:80
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://metamask6.com/

File type
ASCII text, with very long lines (4898), with no line terminators
Size
2.3 kB (2306 bytes)
Hash
f844c8605de7bb102e393f529e6c5422
7481fed463fc8a842fab8fb2d29acc97d61fd66c
ff384d6e864ad3ce5becbf3dcef9aa4c35561040eb78bf21569c7da2ee5482f6

HTTP Headers

GET /21744701.js HTTP/1.1
Host: js.users.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: openresty
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Cache-Control: no-store
Access-Control-Allow-Credentials: true
Content-Encoding: gzip

tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755

34.120.158.37

2.2 kB

URL
tracking-protection.cdn.mozilla.net/social-track-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
2.2 kB (2197 bytes)
Hash
f901679cf935d4b6067610a7287d0b99
fffa5389bec50a175f18deaf8933401edc4bd262
d553a4537f796d580ea8f696062c19540f1d332e2b478942f6ddea3952c6df4c

HTTP Headers

GET /social-track-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: QRSHJR2vVJUBbvX4SBT0WMvka7n2gD3OjTPC6tmYusRPkcX4GWJKr+KapRy1kNiVyVJwWNZnFXY=
x-amz-request-id: T9GSVCZR5Z6K3GEV
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 2197
via: 1.1 google
date: Wed, 23 Aug 2023 23:38:05 GMT
age: 41069
last-modified: Fri, 12 May 2023 15:46:42 GMT
etag: "f901679cf935d4b6067610a7287d0b99"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755

34.120.158.37

468 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-facebook-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
468 B (468 bytes)
Hash
092bf11bed810e853f65d296f1e8b9e3
fed3b3a85aaf2bf1790fb115201b0dfdefe3982c
8c89c977f2c3f91b1050c645843453edc3d5bfcbe5e4af4b945b385f1b60046f

HTTP Headers

GET /social-tracking-protection-facebook-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: jbl9gmoweCP85YKKyPF8bhF83tEpyA2UfZHXsFS0hcA2ScJqvygJtj/Hf4kt09G5pKJg4sKFI3Y=
x-amz-request-id: 3MA0M4QN98SFRW4C
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 468
via: 1.1 google
date: Wed, 23 Aug 2023 15:58:08 GMT
age: 68666
last-modified: Fri, 12 May 2023 15:46:44 GMT
etag: "092bf11bed810e853f65d296f1e8b9e3"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755

34.120.158.37

148 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-linkedin-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
148 B (148 bytes)
Hash
90a72e82e4192224c509d557fd1d0d0c
19fe3346057c74364b7a2a2c1de0011a19c153d8
1024a91771abf18dd0a4de9dcc166ba7f9d224c803b6a5854f3f2db8d9a3c4a2

HTTP Headers

GET /social-tracking-protection-linkedin-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: E/qRpPhaOw2D1RA9kd2GcQtrNsMjkO/b8LfvMVDiAmpEMc4X/Hqr7GM1L4g1X7kzgyaX3+3xhtfi3AOrQXuzU3QjavsDsDmQhfuzW695qLM=
x-amz-request-id: 123HF53QD3ERKACT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 148
via: 1.1 google
date: Wed, 23 Aug 2023 21:06:11 GMT
age: 50183
last-modified: Fri, 12 May 2023 15:46:46 GMT
etag: "90a72e82e4192224c509d557fd1d0d0c"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755

34.120.158.37

244 B

URL
tracking-protection.cdn.mozilla.net/social-tracking-protection-twitter-digest256/111.0/1683905755
IP
34.120.158.37:0
ASN
#15169 GOOGLE

File type
data
Size
244 B (244 bytes)
Hash
44186218fd668b3ffe6d95bc9c2acf06
e5b11bad035d82c42f2783024bb40fb2fa00d7e6
6d7715ed174a8438063ca39237b2e0c7e204dd68d0396866bc898a7e7aa70372

HTTP Headers

GET /social-tracking-protection-twitter-digest256/111.0/1683905755 HTTP/1.1
Host: tracking-protection.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-amz-id-2: s2qmoygZZf06r8Fe69TBzAcP+DnkHmJM25TrKpeav/4aJ2+ZLLKNErgoTHZvj1ElsTrbBVbv8Gw=
x-amz-request-id: 59TXCGA2QWDSYFPW
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
content-length: 244
via: 1.1 google
date: Wed, 23 Aug 2023 15:11:04 GMT
age: 71490
last-modified: Fri, 12 May 2023 15:46:45 GMT
etag: "44186218fd668b3ffe6d95bc9c2acf06"
content-type: application/octet-stream
cache-control: public,max-age=86400
alt-svc: clear
X-Firefox-Spdy: h2

metamask6.com/gtag/js.js

182.255.62.72

200 OK

39 kB

URL GET HTTP/1.1
metamask6.com/gtag/js.js
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text, with very long lines (1776)
Size
39 kB (39175 bytes)
Hash
04a274cc3e470c2933ee3cce95a98e86
5fbe18748a0ffccb9cbbcf278443ce54dff86776
001d571f07421e4f3d037d9d7541d31c7230f8df77205fd5ab303b7d6fa864c9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /gtag/js.js HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: application/javascript
Last-Modified: Wed, 12 Jan 2022 10:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61deaed4-16c65"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/css/metamask-staging-2.webflow.css

182.255.62.72

200 OK

24 kB

URL GET HTTP/1.1
metamask6.com/css/metamask-staging-2.webflow.css
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text
Size
24 kB (23565 bytes)
Hash
4df8064e81a111d2c4e0d2eb52c1e22f
6d4e94e1dfa660777f8e44a8b38bbaa4e0038dd6
c468942e1f197b7c686b2ba322b6ac4c5ce5a63528424839941a2526c9f405af

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /css/metamask-staging-2.webflow.css HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: text/css
Last-Modified: Mon, 13 Feb 2023 15:52:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ea5cb8-228d7"
Expires: Thu, 24 Aug 2023 23:02:34 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/js/jquery-3.5.1.min.dc5e7f18c8.js

182.255.62.72

200 OK

35 kB

URL GET HTTP/1.1
metamask6.com/js/jquery-3.5.1.min.dc5e7f18c8.js
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text, with very long lines (65451)
Size
35 kB (34800 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /js/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: application/javascript
Last-Modified: Wed, 12 Jan 2022 10:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61deaed4-15d84"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

fonts.googleapis.com/css?family=Changa+One:400,400italic

142.250.74.106

200 OK

311 B

URL GET HTTP/1.1
fonts.googleapis.com/css?family=Changa+One:400,400italic
IP
142.250.74.106:80
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/

File type
ASCII text
Size
311 B (311 bytes)
Hash
f386d4c278df191a5146f306a4c16473
fc87fb219cf47c82a310d8a97df52e431a26b699
42f286cadcdd2a78ff4c5554473d2f3b35fa50cdf897a6fd4261a7d371eeecb6

HTTP Headers

GET /css?family=Changa+One:400,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 24 Aug 2023 11:02:34 GMT
Date: Thu, 24 Aug 2023 11:02:34 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.gstatic.com/s/changaone/v18/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2

216.58.207.227

200 OK

7.9 kB

URL GET HTTP/1.1
fonts.gstatic.com/s/changaone/v18/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2
IP
216.58.207.227:80
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/

File type
Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Size
7.9 kB (7900 bytes)
Hash
61e86e7a20ecf3ba181ca4b9a9a1cdbd
482a65cffc69109af26669d64accbef71db3b836
fbd0536d5b92c0dbe6ad2637800ae8da10c20755b564a3575bd12bba57f73b18

HTTP Headers

GET /s/changaone/v18/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://metamask6.com
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7900
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Aug 2023 09:11:34 GMT
Expires: Tue, 20 Aug 2024 09:11:34 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 21 Apr 2022 17:15:19 GMT
Content-Type: font/woff2
Age: 265860

fonts.gstatic.com/s/changaone/v18/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2

216.58.207.227

200 OK

8.4 kB

URL GET HTTP/1.1
fonts.gstatic.com/s/changaone/v18/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2
IP
216.58.207.227:80
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/

File type
Web Open Font Format (Version 2), TrueType, length 8404, version 1.0\012- data
Size
8.4 kB (8404 bytes)
Hash
141119ae119bf7ca75e10ef82f66e442
adebf435aa078db3c116cb9faae15f2ad81d3ac5
c6afeb967afd466210e4061473c4855684e84b7e850b248c0533e6288acfbaff

HTTP Headers

GET /s/changaone/v18/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://metamask6.com
DNT: 1
Connection: keep-alive
Referer: http://fonts.googleapis.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8404
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Aug 2023 06:58:44 GMT
Expires: Fri, 23 Aug 2024 06:58:44 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 21 Apr 2022 17:15:41 GMT
Content-Type: font/woff2
Age: 14630

metamask.io/images/mm-shop-hoodie-p-500.png

185.199.111.153

404 Not Found

18 kB

URL GET HTTP/2
metamask.io/images/mm-shop-hoodie-p-500.png
IP
185.199.111.153:443
ASN
#54113 FASTLY

Requested by
http://metamask6.com/
Certificate
IssuerLet's Encrypt
Subjectmetamask.io
Fingerprint27:5C:85:87:68:B7:03:89:D6:D0:B1:2B:9B:5B:7E:45:6C:E4:62:4E
ValidityMon, 24 Jul 2023 10:11:34 GMT - Sun, 22 Oct 2023 10:11:33 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (36272)
Size
18 kB (17746 bytes)
Hash
fc1a5ec05ed47720724925b52220aed5
2f3d0774e20e0a76961cc9ba327201e1863d8f20
197eda9d709fb2995d4d02632f233c23ace458a34d341b57c22d5d80d069c9e4

HTTP Headers

GET /images/mm-shop-hoodie-p-500.png HTTP/1.1
Host: metamask.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
access-control-allow-origin: *
etag: W/"64e2c90d-12c02"
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 6090:1E63:1A27BCA:1ABA1D8:64E738CA
accept-ranges: bytes
date: Thu, 24 Aug 2023 11:02:34 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1692874954.339330,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 24580a78d165cc6d4aa9abd0b5cae0c9c32d8c99
content-length: 17746
X-Firefox-Spdy: h2

metamask6.com/images/dapp-gitcoin.png

182.255.62.72

200 OK

8.0 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-gitcoin.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
8.0 kB (7998 bytes)
Hash
c710e9a5c39e89136a73edf0a1c99abe
aca40362b7d87533d00250e102ba852d19e2231c
7077eb7da3a6f399014d67a1032ab6d67f099055a1a2594cb4753022b843dc43

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-gitcoin.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/png
Content-Length: 7998
Last-Modified: Wed, 12 Jan 2022 10:26:30 GMT
Connection: keep-alive
ETag: "61deacd6-1f3e"
Expires: Sat, 23 Sep 2023 11:02:34 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-maker.png

182.255.62.72

200 OK

6.9 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-maker.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
6.9 kB (6852 bytes)
Hash
720871ca002e89a10d26e5c516066311
8648fe12645cd5c3473a73faba1d42cef78de444
f0d7356ee903d26301b8960783f70c108efc0382f20c804e0d09872a5443ce96

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-maker.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/png
Content-Length: 6852
Last-Modified: Wed, 12 Jan 2022 10:26:30 GMT
Connection: keep-alive
ETag: "61deacd6-1ac4"
Expires: Sat, 23 Sep 2023 11:02:34 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-compound.png

182.255.62.72

200 OK

11 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-compound.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (11355 bytes)
Hash
3818f9cfccbd94fad91a10d3c5ee356c
7c6af849177aa8bf6ef9bcbf801dc375e1997900
20a34c84f82590d99a060210ea362878975f21cfd65c3a70c54e7fb99dce1f76

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-compound.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/png
Content-Length: 11355
Last-Modified: Wed, 12 Jan 2022 10:26:30 GMT
Connection: keep-alive
ETag: "61deacd6-2c5b"
Expires: Sat, 23 Sep 2023 11:02:34 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-opensea.png

182.255.62.72

200 OK

6.5 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-opensea.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
6.5 kB (6533 bytes)
Hash
f82776f839cec899c9c87a680226aabf
43f5dedb6216cb02ee568fcb66cb19fc296c3a85
c62a1f30cdb6aff5eafdfccb45383032e61bf70aa0573572a4428347a1b5b116

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-opensea.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/png
Content-Length: 6533
Last-Modified: Wed, 12 Jan 2022 10:26:32 GMT
Connection: keep-alive
ETag: "61deacd8-1985"
Expires: Sat, 23 Sep 2023 11:02:34 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/forms/v2.js

182.255.62.72

200 OK

170 kB

URL GET HTTP/1.1
metamask6.com/forms/v2.js
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
ASCII text, with very long lines (65536), with no line terminators
Size
170 kB (170211 bytes)
Hash
49987de4bcbe452bcfd1007cc2d781f9
dfc42e15103223d1c2f76a441fdbfc147d287e39
adfaf54621f479fda0fa70f3235cb7e8dc5c30a6b896e5e2c025ea0e8971d06d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /forms/v2.js HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: application/javascript
Last-Modified: Wed, 12 Jan 2022 10:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61deaed4-8d542"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/js/webflow.js

182.255.62.72

200 OK

170 kB

URL GET HTTP/1.1
metamask6.com/js/webflow.js
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
Unicode text, UTF-8 text, with very long lines (50020)
Size
170 kB (169522 bytes)
Hash
9758f7e3aa0c79ea7a3cadb16d10087b
07f3c4e552e28eba6172f53d6dcf981a55f42031
0bb0c326dfc33136ad88e7454f06d22398a75f57f5eef79a30b218c171136f0d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /js/webflow.js HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:33 GMT
Content-Type: application/javascript
Last-Modified: Wed, 12 Jan 2022 10:35:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61deaed4-92c10"
Expires: Thu, 24 Aug 2023 23:02:33 GMT
Cache-Control: max-age=43200
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/fonts/EuclidCircularB-Bold-WebXL.woff2

182.255.62.72

200 OK

44 kB

URL GET HTTP/1.1
metamask6.com/fonts/EuclidCircularB-Bold-WebXL.woff2
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data
Size
44 kB (44544 bytes)
Hash
9024d0bf73943172297c4628d0054e20
36c3795e7b297d06589e15ef59592683d9ed0974
88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/css/metamask-staging-2.webflow.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: font/woff2
Content-Length: 44544
Last-Modified: Wed, 12 Jan 2022 10:31:16 GMT
Connection: keep-alive
ETag: "61deadf4-ae00"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/mm-logo.svg

182.255.62.72

200 OK

12 kB

URL GET HTTP/1.1
metamask6.com/images/mm-logo.svg
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001)
Size
12 kB (12019 bytes)
Hash
51bcea2625eb2c6e9268a7377a792c86
5eeb306e6584eed1747c36c11724f193711d430e
5e722754f038988ba4b6d7f380d60191eba3b6e01d4a00749a28b79c53521f5b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/mm-logo.svg HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/svg+xml
Content-Length: 12019
Last-Modified: Wed, 12 Jan 2022 10:26:26 GMT
Connection: keep-alive
ETag: "61deacd2-2ef3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/social-35.svg

182.255.62.72

200 OK

602 B

URL GET HTTP/1.1
metamask6.com/images/social-35.svg
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
602 B (602 bytes)
Hash
d5e7fa6bfac5cb057e4974b17d5f0e53
fd3f64fd6b8fc6bb097bcd065337c70d8d2cef37
bcba47e61462fcaa7a59953d7af48a777438587b79faf7fcda5831cea8e9a7da

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/social-35.svg HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/svg+xml
Content-Length: 602
Last-Modified: Wed, 12 Jan 2022 10:26:26 GMT
Connection: keep-alive
ETag: "61deacd2-25a"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/fonts/EuclidCircularB-Regular-WebXL.woff2

182.255.62.72

200 OK

45 kB

URL GET HTTP/1.1
metamask6.com/fonts/EuclidCircularB-Regular-WebXL.woff2
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data
Size
45 kB (45196 bytes)
Hash
2d75957df3bb3aa6ed84f6591b0d5a1a
906424e75625f63b0188471067065794d0348536
8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/css/metamask-staging-2.webflow.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: font/woff2
Content-Length: 45196
Last-Modified: Wed, 12 Jan 2022 10:31:14 GMT
Connection: keep-alive
ETag: "61deadf2-b08c"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/widgets/media.html

182.255.62.72

200 OK

117 kB

URL GET HTTP/1.1
metamask6.com/widgets/media.html
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (56550), with CRLF, LF line terminators
Size
117 kB (116722 bytes)
Hash
6248ccabcd3676fb030d6aae65739d7c
007db31a647d1f710ec523ba9e20d5c9ce485aa0
75e9790133f8fe93bc1bb6b5404ef86072a0a4cd05e3ddbadc71ec168f95d0a8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /widgets/media.html HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: text/html
Last-Modified: Mon, 13 Feb 2023 15:52:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63ea5cbc-62900"
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip

metamask6.com/images/wallet-illo.svg

182.255.62.72

200 OK

36 kB

URL GET HTTP/1.1
metamask6.com/images/wallet-illo.svg
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1199)
Size
36 kB (36437 bytes)
Hash
63ad7f01f67accd6aafb47999640abe5
5ed10575a1a39d5b02840416a281fb1e655bd423
596228062de19a21cfda4d3129b3a5d397c5a71509e096b8f67fb8c4f22aa56d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/wallet-illo.svg HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/svg+xml
Content-Length: 36437
Last-Modified: Wed, 12 Jan 2022 10:26:26 GMT
Connection: keep-alive
ETag: "61deacd2-8e55"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=

104.16.212.191

200 OK

2.1 kB

URL GET HTTP/1.1
forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=
IP
104.16.212.191:443
ASN
#13335 CLOUDFLARENET

Requested by
http://metamask6.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (5788), with no line terminators
Size
2.1 kB (2111 bytes)
Hash
91f6471db7386ece833e3a0d431c2db7
5aa625333ffb472ad12efea65172b85898f31bb1
654e504c78b18a5b3f8b6c3485870a2b506e9d26d1be64cd120840476ddbafe5

HTTP Headers

GET /embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk= HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace: 2B9CE497F44BF9368D6C57A09B3311FE378473938E000000000000000000
X-Origin-Hublet: na1
Vary: origin
Content-Disposition: attachment; filename=no-rfd.txt
X-Content-Type-Options: nosniff
Access-Control-Allow-Credentials: false
Access-Control-Expose-Headers: X-Origin-Hublet
Cache-Control: max-age=0, no-cache, no-store
X-Robots-Tag: none
x-envoy-upstream-service-time: 11
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-7f89ffc67f-lvqkb
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: 68281690-580c-4f2f-8ff3-46cf8f0e8c30
x-request-id: 68281690-580c-4f2f-8ff3-46cf8f0e8c30
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 7fbb1a93ef3e0b65-OSL
Content-Encoding: br
alt-svc: h3=":443"; ma=86400

metamask6.com/images/Explore-illo.svg

182.255.62.72

200 OK

37 kB

URL GET HTTP/1.1
metamask6.com/images/Explore-illo.svg
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1527)
Size
37 kB (36835 bytes)
Hash
46fb450c5ecf6da758bca0975551f056
629157e884b450ecf5a94d38d736db3c7428245f
8ba2b37fd4f2f3c19c10109bc6111d3d71692c78f9351f1eb2a8cab5231b77b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/Explore-illo.svg HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/svg+xml
Content-Length: 36835
Last-Modified: Wed, 12 Jan 2022 10:26:28 GMT
Connection: keep-alive
ETag: "61deacd4-8fe3"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/Browse-illo.svg

182.255.62.72

200 OK

28 kB

URL GET HTTP/1.1
metamask6.com/images/Browse-illo.svg
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2226)
Size
28 kB (28164 bytes)
Hash
afeafb6a9f14bd7771c63015be5a05c9
78683c75d81cf80440f083e9fb4bb2987748e290
517c0c6b44ede59070fb138aab7e875b9c230a227295f9612c32dabb9b0bdb13

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/Browse-illo.svg HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:35 GMT
Content-Type: image/svg+xml
Content-Length: 28164
Last-Modified: Wed, 12 Jan 2022 10:26:28 GMT
Connection: keep-alive
ETag: "61deacd4-6e04"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-aave.png

182.255.62.72

200 OK

14 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-aave.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (14347 bytes)
Hash
521a00d54b7fe1cb1d7712b655ca54a6
8c5aa52335bf25183781e62843ede770bf6877ba
506d6d9d5ad22253976f2906bbf141c94d19eb15466ed62b8c6cfb887bf07b55

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-aave.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:35 GMT
Content-Type: image/png
Content-Length: 14347
Last-Modified: Wed, 12 Jan 2022 10:26:28 GMT
Connection: keep-alive
ETag: "61deacd4-380b"
Expires: Sat, 23 Sep 2023 11:02:35 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-axieinfinity.png

182.255.62.72

200 OK

43 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-axieinfinity.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
43 kB (42713 bytes)
Hash
5f662391fe3ddc927134ba8e15263eaf
ab5ea7aacdc8c97238247f59761abc02033b2a67
7faefc7f99e94d6251527c95794a5fdfb3e644baf25ae56f4e13afd125246421

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-axieinfinity.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:35 GMT
Content-Type: image/png
Content-Length: 42713
Last-Modified: Wed, 12 Jan 2022 10:26:30 GMT
Connection: keep-alive
ETag: "61deacd6-a6d9"
Expires: Sat, 23 Sep 2023 11:02:35 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

metamask6.com/images/dapp-rarible.png

182.255.62.72

200 OK

6.8 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-rarible.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6840 bytes)
Hash
b9f7c0fd11c34c044799e673947103f8
491baab057af39b2b24bf0c671d0eb05454b8c48
29db12a282df5639db8fa232831bbe9a7220884eecf79f1776f1b27237a4597c

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-rarible.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:35 GMT
Content-Type: image/png
Content-Length: 6840
Last-Modified: Wed, 12 Jan 2022 10:26:32 GMT
Connection: keep-alive
ETag: "61deacd8-1ab8"
Expires: Sat, 23 Sep 2023 11:02:35 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ea916d8ec91a21fbd87468f980cf2d39
58b1a8ec5e48c8fa4381766dc43a958d4930a1b1
c1af4d54daecad28d42ccdf29edda472766761032c4df35bd38f8413392f5322

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

metamask6.com/images/dapp-uniswap.png

182.255.62.72

200 OK

10 kB

URL GET HTTP/1.1
metamask6.com/images/dapp-uniswap.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Size
10 kB (10268 bytes)
Hash
1948962ad395727d902bd6b5fcd01807
f7e85e096b084ef6d9f550afbcd702fd889031a5
ad0237265584181a6797c454ca123aa5d3df08001ae39b27bddfc66856b6751b

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/dapp-uniswap.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:35 GMT
Content-Type: image/png
Content-Length: 10268
Last-Modified: Wed, 12 Jan 2022 10:26:32 GMT
Connection: keep-alive
ETag: "61deacd8-281c"
Expires: Sat, 23 Sep 2023 11:02:35 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true

142.250.74.164

200 OK

614 B

URL GET HTTP/2
www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint04:E5:DA:A8:FA:1A:A4:D3:8D:82:3E:8B:A5:7B:9F:FF:06:6B:6E:95
ValidityMon, 31 Jul 2023 08:22:58 GMT - Mon, 23 Oct 2023 08:22:57 GMT

File type
ASCII text, with very long lines (1008), with no line terminators
Size
614 B (614 bytes)
Hash
aac3288b87f93219ccd838f40e3985d7
4f1e30acf86e034db135c6d666702fc72f86c155
8eace2ac1082d16eaa54c0851cf077baf7d925e1791e24df78d4d1d72fe02958

HTTP Headers

GET /recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Thu, 24 Aug 2023 11:02:35 GMT
date: Thu, 24 Aug 2023 11:02:35 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 614
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

metamask6.com/images/hero2.2.png

182.255.62.72

200 OK

590 kB

URL GET HTTP/1.1
metamask6.com/images/hero2.2.png
IP
182.255.62.72:80
ASN
#136933 Gigabitbank Global

Requested by
http://metamask6.com/

File type
PNG image data, 1752 x 1452, 8-bit/color RGBA, non-interlaced\012- data
Size
590 kB (589568 bytes)
Hash
d0ec70f4c666fbf6ad0d30a52d08c5c9
e48f0688bc4f592824840478d12c05df0dd12002
3f4bfc7c6cc471e9d95936dc109852c4f6a4bf1163b63eeabfe840565d5ad8d1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/hero2.2.png HTTP/1.1
Host: metamask6.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/css/metamask-staging-2.webflow.css
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 24 Aug 2023 11:02:34 GMT
Content-Type: image/png
Content-Length: 589568
Last-Modified: Wed, 12 Jan 2022 10:31:00 GMT
Connection: keep-alive
ETag: "61deade4-8ff00"
Expires: Sat, 23 Sep 2023 11:02:34 GMT
Cache-Control: max-age=2592000
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
abb11d0670595e1380b5b296296b8222
5e7d8ea59f08cc949b6339c149f416be1be7694c
6e3d4be63fc66feb932a17d3ed2c5ee1507a3ea477d7327ee3289bea97700b3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

metamask.io/images/favicon.png

185.199.111.153

404 Not Found

18 kB

URL GET HTTP/2
metamask.io/images/favicon.png
IP
185.199.111.153:443
ASN
#54113 FASTLY

Requested by
http://metamask6.com/
Certificate
IssuerLet's Encrypt
Subjectmetamask.io
Fingerprint27:5C:85:87:68:B7:03:89:D6:D0:B1:2B:9B:5B:7E:45:6C:E4:62:4E
ValidityMon, 24 Jul 2023 10:11:34 GMT - Sun, 22 Oct 2023 10:11:33 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (36272)
Size
18 kB (17746 bytes)
Hash
fc1a5ec05ed47720724925b52220aed5
2f3d0774e20e0a76961cc9ba327201e1863d8f20
197eda9d709fb2995d4d02632f233c23ace458a34d341b57c22d5d80d069c9e4

HTTP Headers

GET /images/favicon.png HTTP/1.1
Host: metamask.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64e2c90d-12c02"
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 7FA0:12B5E:D58567:DA574F:64E73525
accept-ranges: bytes
date: Thu, 24 Aug 2023 11:02:35 GMT
via: 1.1 varnish
age: 934
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1692874955.479681,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 6c084d1e9b3af5597d1be07b86a2fd05dfece66a
content-length: 17746
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d9b624cc08ed83319f5b4e930dd6f73e
b6a20c446be2795a049d7aa3769c4d8152cee2ea
24dbc611d7a1a7ab4c2d77849c82033650fa308b427d79fa2e75df9f3de9d330

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js

142.250.74.35

200 OK

186 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (679)
Size
186 kB (185519 bytes)
Hash
e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://metamask6.com
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 63332
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d9b624cc08ed83319f5b4e930dd6f73e
b6a20c446be2795a049d7aa3769c4d8152cee2ea
24dbc611d7a1a7ab4c2d77849c82033650fa308b427d79fa2e75df9f3de9d330

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Aug 2023 11:02:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

metamask.io/images/webclip.png

185.199.111.153

404 Not Found

18 kB

URL GET HTTP/2
metamask.io/images/webclip.png
IP
185.199.111.153:443
ASN
#54113 FASTLY

Requested by
http://metamask6.com/
Certificate
IssuerLet's Encrypt
Subjectmetamask.io
Fingerprint27:5C:85:87:68:B7:03:89:D6:D0:B1:2B:9B:5B:7E:45:6C:E4:62:4E
ValidityMon, 24 Jul 2023 10:11:34 GMT - Sun, 22 Oct 2023 10:11:33 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (36272)
Size
18 kB (17746 bytes)
Hash
fc1a5ec05ed47720724925b52220aed5
2f3d0774e20e0a76961cc9ba327201e1863d8f20
197eda9d709fb2995d4d02632f233c23ace458a34d341b57c22d5d80d069c9e4

HTTP Headers

GET /images/webclip.png HTTP/1.1
Host: metamask.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
server: GitHub.com
content-type: text/html; charset=utf-8
x-origin-cache: HIT
access-control-allow-origin: *
etag: W/"64e2c90d-12c02"
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: D4E8:B33A:19457ED:19D871F:64E738CA
accept-ranges: bytes
date: Thu, 24 Aug 2023 11:02:35 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1669-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1692874955.478904,VS0,VE125
vary: Accept-Encoding
x-fastly-request-id: 6779f46d0fa2689005f6b99af2860c577f1d15c0
content-length: 17746
X-Firefox-Spdy: h2

ia.51.la/go1?id=21744701&rt=1692874946690&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=A%2520crypto%2520wallet%2520~_~%2520gateway%2520to%2520b&ing=1&ekc=&sid=1692874946690&tt=MetaMask%2520-%2520%25E4%25B8%2580%25E4%25B8%25AA%25E5%258A%25A0%25E5%25AF%2586%25E9%2592%25B1%25E5%258C%2585%25E5%2592%258C%25E9%2580%259A%25E5%25BE%2580%25E5%258C%25BA%25E5%259D%2597%25E9%2593%25BE%25E5%25BA%2594%25E7%2594%25A8%25E7%25A8%258B%25E5%25BA%258F%25E7%259A%2584%25E7%25BD%2591%25E5%2585%25B3&kw=&cu=http%253A%252F%252Fmetamask6.com%252F&pu=

42.236.73.38

200

0 B

URL GET HTTP/1.1
ia.51.la/go1?id=21744701&rt=1692874946690&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=A%2520crypto%2520wallet%2520~_~%2520gateway%2520to%2520b&ing=1&ekc=&sid=1692874946690&tt=MetaMask%2520-%2520%25E4%25B8%2580%25E4%25B8%25AA%25E5%258A%25A0%25E5%25AF%2586%25E9%2592%25B1%25E5%258C%2585%25E5%2592%258C%25E9%2580%259A%25E5%25BE%2580%25E5%258C%25BA%25E5%259D%2597%25E9%2593%25BE%25E5%25BA%2594%25E7%2594%25A8%25E7%25A8%258B%25E5%25BA%258F%25E7%259A%2584%25E7%25BD%2591%25E5%2585%25B3&kw=&cu=http%253A%252F%252Fmetamask6.com%252F&pu=
IP
42.236.73.38:80
ASN
#4837 CHINA UNICOM China169 Backbone

Requested by
http://metamask6.com/

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /go1?id=21744701&rt=1692874946690&rl=1280*1024&lang=en-US&ct=unknow&pf=1&ins=1&vd=1&ce=1&cd=24&ds=A%2520crypto%2520wallet%2520~_~%2520gateway%2520to%2520b&ing=1&ekc=&sid=1692874946690&tt=MetaMask%2520-%2520%25E4%25B8%2580%25E4%25B8%25AA%25E5%258A%25A0%25E5%25AF%2586%25E9%2592%25B1%25E5%258C%2585%25E5%2592%258C%25E9%2580%259A%25E5%25BE%2580%25E5%258C%25BA%25E5%259D%2597%25E9%2593%25BE%25E5%25BA%2594%25E7%2594%25A8%25E7%25A8%258B%25E5%25BA%258F%25E7%259A%2584%25E7%25BD%2591%25E5%2585%25B3&kw=&cu=http%253A%252F%252Fmetamask6.com%252F&pu= HTTP/1.1
Host: ia.51.la
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
Content-Length: 0
Date: Thu, 24 Aug 2023 11:02:06 GMT

www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr

142.250.74.164

200 OK

31 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint6B:BC:50:D6:D8:AB:DE:2F:10:C5:BE:7D:98:41:FA:8E:F2:D8:34:C4
ValidityMon, 31 Jul 2023 08:16:44 GMT - Mon, 23 Oct 2023 08:16:43 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (47395)
Size
31 kB (31115 bytes)
Hash
2901eccc7f0f71b5f5baa4572faa147b
b94efab6450eaa016406dd18650d7c9937150c95
cebb5b10b46dd433feea65868715be213686ba6bba15fa2bf7872612b90d1f32

HTTP Headers

GET /recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Aug 2023 11:02:35 GMT
content-security-policy: script-src 'nonce-BIMfoySDmyviohGWk4FtFw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 31115
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067

104.16.212.191

200 OK

35 B

URL GET HTTP/3
perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067
IP
104.16.212.191:443
ASN
#13335 CLOUDFLARENET

Requested by
http://metamask6.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992

HTTP Headers

GET /embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067 HTTP/1.1
Host: perf.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 24 Aug 2023 11:02:35 GMT
content-type: image/gif
content-length: 35
x-trace: 2BFB7B2DEB1CAFE25C3F6E76CB55DB6A9FD0E3F875000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin, Accept-Encoding
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 2
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-7f89ffc67f-p9jdw
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: a8ccd252-0a02-46ab-933f-d75469f7ed65
x-request-id: a8ccd252-0a02-46ab-933f-d75469f7ed65
last-modified: Thu, 24 Aug 2023 11:02:35 GMT
cf-cache-status: MISS
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7fbb1a99384bb523-OSL
alt-svc: h3=":443"; ma=86400

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 06:19:57 GMT
expires: Fri, 23 Aug 2024 06:19:57 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/css
vary: Accept-Encoding
age: 16958
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js

142.250.74.35

200 OK

186 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (679)
Size
186 kB (185519 bytes)
Hash
e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 63332
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq

142.250.74.164

200 OK

112 B

URL GET HTTP/3
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint6B:BC:50:D6:D8:AB:DE:2F:10:C5:BE:7D:98:41:FA:8E:F2:D8:34:C4
ValidityMon, 31 Jul 2023 08:16:44 GMT - Mon, 23 Oct 2023 08:16:43 GMT

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
9850c72f212186063d38d2b8ff0c678b
9cf08c9995213b8252aaed87931c91e456b8b6b2
13f425cbab48a8199950e3873a94b5f8faa294a66f751cfe15423d34dfc98ff8

HTTP Headers

GET /recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Thu, 24 Aug 2023 11:02:36 GMT
date: Thu, 24 Aug 2023 11:02:36 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js

142.250.74.35

200 OK

186 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (679)
Size
186 kB (185519 bytes)
Hash
e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 63333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:24:26 GMT
expires: Fri, 16 Aug 2024 15:24:26 GMT
cache-control: public, max-age=31536000
age: 589090
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Aug 2023 05:45:56 GMT
expires: Wed, 21 Aug 2024 05:45:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 191800
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.35

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cDovL21ldGFtYXNrNi5jb206ODA.&hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&size=invisible&badge=inline&cb=qssxs2pchhcr
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Aug 2023 14:42:45 GMT
expires: Fri, 25 Aug 2023 14:42:45 GMT
cache-control: public, max-age=604800
age: 505191
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

1.2 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
http://metamask6.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint6B:BC:50:D6:D8:AB:DE:2F:10:C5:BE:7D:98:41:FA:8E:F2:D8:34:C4
ValidityMon, 31 Jul 2023 08:16:44 GMT - Mon, 23 Oct 2023 08:16:43 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.2 kB (1160 bytes)
Hash
775bf51e5c0fa18936dd1efb64b38526
e143085ea91a256d3d2a8aa07ee859b1c98e323d
c87b79db5f69d8693465343d1d516ac5b22c5c5e0baba7d98e07962f79ae1b48

HTTP Headers

GET /recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://metamask6.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Aug 2023 11:02:36 GMT
content-security-policy: script-src 'nonce-3vx1U3pq4qulAdfu2T06ag' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1160
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css

142.250.74.35

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 06:19:57 GMT
expires: Fri, 23 Aug 2024 06:19:57 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/css
vary: Accept-Encoding
age: 16959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js

142.250.74.35

200 OK

186 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
ASCII text, with very long lines (679)
Size
186 kB (185519 bytes)
Hash
e346196cabbe1100839406d8f02a31c3
24f54bd82fdab0dc9bc5c6a71e33eefc02286aad
9dab174b3b1ef754d71d613162c1e1f5b88f9f317da8d1f14c146be9c6d9fd35

HTTP Headers

GET /recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 185519
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Aug 2023 17:27:03 GMT
expires: Thu, 22 Aug 2024 17:27:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Aug 2023 18:11:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 63333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

25 kB

URL POST HTTP/3
www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint6B:BC:50:D6:D8:AB:DE:2F:10:C5:BE:7D:98:41:FA:8E:F2:D8:34:C4
ValidityMon, 31 Jul 2023 08:16:44 GMT - Mon, 23 Oct 2023 08:16:43 GMT

File type
ASCII text, with very long lines (41019)
Size
25 kB (24850 bytes)
Hash
462c83d62dcedf91ac3e8a3470fbe593
2d951e880c048c936e1eb9d4b03436943ded73cf
dc81ba44f13ee6b98efe869535bd5c45b3e7907493dd84f695a7cb8a2a1ae796

HTTP Headers

POST /recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 7059
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Thu, 24 Aug 2023 11:02:36 GMT
expires: Thu, 24 Aug 2023 11:02:36 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 24850
server: GSE
set-cookie: _GRECAPTCHA=09AG8ZzsuUQsCprSj5xR7u89i9QEaE-I8_6mGnDFjeWOQpwUfoAe72lQVWw3gn9zjB3cM-NeuAJlvb0GPcfs_KA9A;Path=/recaptcha;Expires=Tue, 20-Feb-2024 11:02:36 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:24:26 GMT
expires: Fri, 16 Aug 2024 15:24:26 GMT
cache-control: public, max-age=31536000
age: 589090
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Size
15 kB (15340 bytes)
Hash
19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:15:27 GMT
expires: Fri, 16 Aug 2024 15:15:27 GMT
cache-control: public, max-age=31536000
age: 589629
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Aug 2023 05:45:56 GMT
expires: Wed, 21 Aug 2024 05:45:56 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 191800
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/api2/info_2x.png

142.250.74.35

200 OK

665 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/info_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
665 B (665 bytes)
Hash
07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee

HTTP Headers

GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Aug 2023 11:00:47 GMT
expires: Sat, 26 Aug 2023 11:00:47 GMT
cache-control: public, max-age=604800
age: 432110
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/audio_2x.png

142.250.74.35

200 OK

530 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/audio_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
530 B (530 bytes)
Hash
88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992

HTTP Headers

GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Aug 2023 04:54:45 GMT
expires: Thu, 31 Aug 2023 04:54:45 GMT
cache-control: public, max-age=604800
age: 22072
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/refresh_2x.png

142.250.74.35

200 OK

600 B

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/refresh_2x.png
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintB4:FE:48:07:8D:40:C5:C8:CB:74:41:13:3F:8E:10:8B:6F:1C:F4:CB
ValidityMon, 31 Jul 2023 08:22:18 GMT - Mon, 23 Oct 2023 08:22:17 GMT

File type
PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Size
600 B (600 bytes)
Hash
0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98

HTTP Headers

GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/x19joXI_IeQnFJ7YnfDapSZq/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Aug 2023 15:12:23 GMT
expires: Thu, 24 Aug 2023 15:12:23 GMT
cache-control: public, max-age=604800
age: 589814
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/enterprise/payload?p=06ADUVZwD4DlKqD6gq2EndnuE1-gDfFggxuKwPr9AqS5YCYikaIOH-u-HSUS13qDJLtRIAHLnq1pMQK6hKdr8hRv5YJ6UC5N7zpVPHPYeDukcJMP2X-eOV2KrZFhJuhDkmz3H7GqbU_Kh4H5brqpHuUgrvUXDc-9I44CwcKUxnJjDIQ3H7-52N5art96qBnWIZnPrQ-GtrEZLN6WejFO4a-n048m1gA-vC-Q&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm

142.250.74.164

200 OK

32 kB

URL GET HTTP/3
www.google.com/recaptcha/enterprise/payload?p=06ADUVZwD4DlKqD6gq2EndnuE1-gDfFggxuKwPr9AqS5YCYikaIOH-u-HSUS13qDJLtRIAHLnq1pMQK6hKdr8hRv5YJ6UC5N7zpVPHPYeDukcJMP2X-eOV2KrZFhJuhDkmz3H7GqbU_Kh4H5brqpHuUgrvUXDc-9I44CwcKUxnJjDIQ3H7-52N5art96qBnWIZnPrQ-GtrEZLN6WejFO4a-n048m1gA-vC-Q&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint6B:BC:50:D6:D8:AB:DE:2F:10:C5:BE:7D:98:41:FA:8E:F2:D8:34:C4
ValidityMon, 31 Jul 2023 08:16:44 GMT - Mon, 23 Oct 2023 08:16:43 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Size
32 kB (32199 bytes)
Hash
4d61d07a0067a809bad1e8f774828c73
17f540867b45bec1279beb0e20f372516f3eb340
864c3d45a0073bf88e0ee7d802e48b1a4a070af9c2be7e28937b0100b1f4923a

HTTP Headers

GET /recaptcha/enterprise/payload?p=06ADUVZwD4DlKqD6gq2EndnuE1-gDfFggxuKwPr9AqS5YCYikaIOH-u-HSUS13qDJLtRIAHLnq1pMQK6hKdr8hRv5YJ6UC5N7zpVPHPYeDukcJMP2X-eOV2KrZFhJuhDkmz3H7GqbU_Kh4H5brqpHuUgrvUXDc-9I44CwcKUxnJjDIQ3H7-52N5art96qBnWIZnPrQ-GtrEZLN6WejFO4a-n048m1gA-vC-Q&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=x19joXI_IeQnFJ7YnfDapSZq&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Cookie: _GRECAPTCHA=09AG8ZzsuUQsCprSj5xR7u89i9QEaE-I8_6mGnDFjeWOQpwUfoAe72lQVWw3gn9zjB3cM-NeuAJlvb0GPcfs_KA9A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Thu, 24 Aug 2023 11:02:37 GMT
date: Thu, 24 Aug 2023 11:02:37 GMT
cache-control: private, max-age=30
content-type: image/jpeg
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 32199
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (28)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash