Report - kybarcwap.com/

Report Overview

Submitted URL
kybarcwap.com/
IP
191.96.56.194
ASN
#61317 Ipxo Uk Limited
Submitted
2022-11-25 04:45:33
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
72

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
kybarcwap.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.9 kB	6.5 MB	191.96.56.194
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.35
kyberswap.com	343228	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	3.7 kB	172.66.40.104
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	116 kB	69.16.175.42
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	32 kB	142.250.74.138
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	476 B	49 kB	216.58.207.195
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.187.102.159
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	45 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.3 kB	93.184.220.29
raw.githubusercontent.com	35802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	453 B	1.6 kB	185.199.108.133
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	3.5 kB	104.16.123.175

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-25	medium	kybarcwap.com/	Phishing
2022-11-25	medium	kybarcwap.com/	Phishing
2022-11-25	medium	kybarcwap.com/source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	Phishing
2022-11-25	medium	kybarcwap.com/source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	Phishing
2022-11-25	medium	kybarcwap.com/source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	Phishing
2022-11-25	medium	kybarcwap.com/source/logo-dark.svg	Phishing
2022-11-25	medium	kybarcwap.com/source/mainnet-network.895301a4.svg	Phishing
2022-11-25	medium	kybarcwap.com/source/script.js	Phishing
2022-11-25	medium	kybarcwap.com/source/KNC.svg	Phishing
2022-11-25	medium	kybarcwap.com/source/chainsecurity.2dda438a.svg	Phishing
2022-11-25	medium	kybarcwap.com/source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	Phishing
2022-11-25	medium	kybarcwap.com/source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed
2022-11-25	medium	kybarcwap.com	Sinkholed

JavaScript (11)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-23
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-23 08:20:17 Times Seen37018030 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-04-23
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-23 07:58:04 Times Seen260522 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	kybarcwap.com/source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	5.6 kB	2023-03-07	2023-03-11
Pretty URL kybarcwap.com/source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:01:42 Last Seen2023-03-11 19:34:59 Times Seen1 Hash f369cd19db345457e964aa4e3e20a8af f83d66256b9a44de3fe27212c52fd03c14ad4cee dd8eae211a61c7ba4a756ff7e57b6384c6510df04da7446bd8c4350932ea2b88 Loading...

	kybarcwap.com/source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	4.8 MB	2023-03-11	2023-03-11
Pretty URL kybarcwap.com/source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:34:59 Last Seen2023-03-11 19:34:59 Times Seen1 Hash dc4c7d52f0833dc94709f7353fb0a021 d7d4fb870c133e0d28bb5d81b7fdcd2d2448562b ab4cc271eebb73f4ea05d31effdf8f087aed8680ede52b7a79f03a4adb8aa9c1 Loading...

	unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js	23 kB	2023-03-07	2024-04-18
Pretty URL unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:55 Last Seen2024-04-18 16:44:25 Times Seen352 Hash 103cf7a3766e010c9499d24721aaf984 ca4e27f04aa5be91c32e0942583f39bca5277a1f d93c05813c158faf533a332c1b49f2a9f0432e0454fdefd1a2c9f11428b7a4e9 Loading...

	unpkg.com/@walletconnect/web3-provider@1.2.1/dist/umd/index.min.js	1.1 MB	2023-03-07	2024-04-18
Pretty URL unpkg.com/@walletconnect/web3-provider@1.2.1/dist/umd/index.min.js IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:27 Last Seen2024-04-18 16:44:25 Times Seen164 Hash 35302294a9bfa1b9d75fa08835259a65 4909291f89dfd05b36d7773a79127ae53640d0ba 05e0ca3f38966965b3400dc05db506c462ebf67ed71a9e9d3e28f7672647e0a6 Loading...

	unpkg.com/fortmatic@2.0.6/dist/fortmatic.js	36 kB	2023-03-07	2024-04-18
Pretty URL unpkg.com/fortmatic@2.0.6/dist/fortmatic.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:37:40 Last Seen2024-04-18 16:44:26 Times Seen246 Hash 56496a1b18bfee511bccc196538443c1 f1a8881c0b7a0d35e2c981c1b42dfbe76e0d8ef2 0b8822c2c385fdd4f64b5a815e662439aaba14f79aef4a5813e12ba122dd317c Loading...

	kybarcwap.com/source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	43 kB	2023-03-11	2023-03-11
Pretty URL kybarcwap.com/source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:34:59 Last Seen2023-03-11 19:34:59 Times Seen1 Hash 8db89d46807747fd5759e20a557d3327 57c06dcc4d2f4ae06e17b63b089af34eef4d68e2 e51b6dd679b45f3019a064ac8f350617e17a0367073108375fcc229cbc30bcf1 Loading...

	kybarcwap.com/source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	123 kB	2023-03-11	2023-03-11
Pretty URL kybarcwap.com/source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:34:59 Last Seen2023-03-11 19:34:59 Times Seen1 Hash 4bd9e5d91abae9acb1099e4cc48bd97e dc94a4b83728193de2f8f9b0f77016e26dcd3dd1 56ea988869adcf690f143a98a3b96b0a6176beea2fb279c477342254337d4518 Loading...

	kybarcwap.com/source/script.js	5.5 kB	2023-03-11	2023-03-11
Pretty URL kybarcwap.com/source/script.js IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:34:59 Last Seen2023-03-11 19:34:59 Times Seen1 Hash 47dd770b9ebe99be8042de892f5be836 19346d7aa71d777b8abc5d5e3aa825ec59dd21b2 3e2ffee20419aa7e7e006f5dabf326db3ab60625abe947cf47dc683f6f037161 Loading...

	kybarcwap.com/source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F	1.3 MB	2023-03-11	2023-03-11
Pretty URL kybarcwap.com/source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F IP 191.96.56.194 ASN #61317 Ipxo Uk Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:34:59 Last Seen2023-03-11 19:34:59 Times Seen1 Hash a296dbf4780c68a99216c8be9e8b91f2 02eb571ef2564535e30f7dc98b63db61c6e2272d 147a904d088d4fa7540cf06cdaf4b3d750ff620be83144d7b3cab81095ffef0e Loading...

HTTP Transactions (67)

URL IP Response Size

kybarcwap.com/

191.96.56.194

301 Moved Permanently

707 B

URL HTTP/1.1
kybarcwap.com/
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
location: https://kybarcwap.com/
platform: hostinger
content-security-policy: upgrade-insecure-requests

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11234
Expires: Fri, 25 Nov 2022 07:52:35 GMT
Date: Fri, 25 Nov 2022 04:45:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13092
Expires: Fri, 25 Nov 2022 08:23:33 GMT
Date: Fri, 25 Nov 2022 04:45:21 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6220
Cache-Control: max-age=113370
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:21 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 12:14:51 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: IYc9Z0kMJZ8xJ8A9l5u0p22RJ/tOyUgYnYgkkYUsbtrWAwqM4dG2+NezjkVkNpSoclySMJ9M5h0=
x-amz-request-id: DCMARP1P4NXQVWWH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 04:43:42 GMT
age: 99
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 04:17:24 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1677
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 04:45:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 04:08:53 GMT
cache-control: public,max-age=3600
age: 2188
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

kybarcwap.com/

191.96.56.194

200 OK

25 kB

URL HTTP/2
kybarcwap.com/
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3772)
Size
25 kB (25219 bytes)
Hash
3719d613297d24788a1c1613a54668a2
020fa586fd9a5417b463a37862962b16103534ab
967a5f8b1f73f9fb3e43c8daab6d2a6eb799534e1c0eff57191fc4e2d4b9a41c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html
last-modified: Thu, 24 Nov 2022 16:02:19 GMT
etag: "1ead3-637f958b-1092370bc58aac2a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25219
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
37421d0455431f58cbdbbd9300326121
bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261
071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4130
Cache-Control: max-age=127113
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:21 GMT
Etag: "637f85c8-117"
Expires: Sat, 26 Nov 2022 16:03:54 GMT
Last-Modified: Thu, 24 Nov 2022 14:55:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
37421d0455431f58cbdbbd9300326121
bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261
071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4131
Cache-Control: max-age=127113
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:22 GMT
Etag: "637f85c8-117"
Expires: Sat, 26 Nov 2022 16:03:55 GMT
Last-Modified: Thu, 24 Nov 2022 14:55:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5094
Cache-Control: max-age=107181
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:22 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:31:43 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

kybarcwap.com/source/css2.css

191.96.56.194

200 OK

386 B

URL HTTP/2
kybarcwap.com/source/css2.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text
Size
386 B (386 bytes)
Hash
02bc75a62cdc4a7e5283c917339abad5
523a16add4da56e1cdcd5c0f979bc66177bbdb30
193bb445260ac39e7e7e5bb85d7d384da75cee3fdede173e4142f053c590c4d1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/css2.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "10ec-637f958e-90ef463b84d725ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 386
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.0.js

69.16.175.42

200 OK

85 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text
Size
85 kB (84714 bytes)
Hash
416559bad4fc1149eba631e644a23a6e
20f8f18f94c74dbc1bde934719cbfa87d51828cf
37508a443be057a2fab1c4eee8d03632f406eaed15d09a26ac8dabe7877616e2

HTTP Headers

GET /jquery-3.6.0.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kybarcwap.com
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-encoding: gzip
content-length: 84714
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-46744"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669351522.dop203.sk1.t,1669351522.cds261.sk1.hn,1669351522.cds214.sk1.c
X-Firefox-Spdy: h2

kybarcwap.com/source/main.58e4398d.chunk.css

191.96.56.194

200 OK

4.8 kB

URL HTTP/2
kybarcwap.com/source/main.58e4398d.chunk.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (21334), with no line terminators
Size
4.8 kB (4796 bytes)
Hash
b1c7235d95c3b37e5251753d347e45fa
a42fda777c6ee3bfa42a1f25324ff34effbdd50e
6ce9b2b71001beb118fb6fcc4dfbe409c56eeeb7dae21d2a15d0d2b505368bb5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/main.58e4398d.chunk.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "5356-637f958e-f00bb1bf04ddaeb4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4796
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.6.0.min.js

69.16.175.42

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kybarcwap.com
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669351522.dop203.sk1.t,1669351522.cds261.sk1.hn,1669351522.cds210.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

kybarcwap.com/source/rules1.css

191.96.56.194

200 OK

561 B

URL HTTP/2
kybarcwap.com/source/rules1.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (1663), with no line terminators
Size
561 B (561 bytes)
Hash
55276fb0c5fe15a6388019cfc258ed33
7ba2faaa487aca47a41f45a81daf2c0bbb58d5c7
7a6134b0ca3ff90b955c2f276b318489ede4eafe4941ea21819570b223e0d7ef

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/rules1.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "67f-637f958f-31d0b5434ae60d25;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 561
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/rules2.css

191.96.56.194

200 OK

345 B

URL HTTP/2
kybarcwap.com/source/rules2.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (1075), with no line terminators
Size
345 B (345 bytes)
Hash
8952669ae598d16fdef8525a43f2e5ed
da383b2e4f0474083f1a4839e72093c9c35fbf66
1e6940d5a07087950ed09f3480957afd7ad4feb8ac1fa5de733c151fd1bf2134

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/rules2.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "433-637f958f-b3f1ed659b62ff27;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 345
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/rules3.css

191.96.56.194

200 OK

130 B

URL HTTP/2
kybarcwap.com/source/rules3.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with no line terminators
Size
130 B (130 bytes)
Hash
4f133fb6e95f303c1cf965949bf1cd59
bb2df1ea3e33197fa8d78c34b858795ab3cca83e
507aa998838609cb28e83f1325303c36992307b8c7843240674bc044d05f971c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/rules3.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "82-637f958f-edf7bdeb59adb72f;;;"
accept-ranges: bytes
content-length: 130
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js

142.250.74.138

200 OK

31 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65447)
Size
31 kB (31017 bytes)
Hash
7808e0e4b7a714230373852158500533
4a79d18722a68a2f38d52e2d3a11b550bdd30b3c
8ba5796bee6a065b8b31895e7e8d59ba564cfd36d2ce056e327588e67736f054

HTTP Headers

GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 15:21:45 GMT
expires: Thu, 23 Nov 2023 15:21:45 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
age: 134617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

kybarcwap.com/source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F

191.96.56.194

200 OK

43 kB

URL HTTP/2
kybarcwap.com/source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (43105), with no line terminators
Size
43 kB (43105 bytes)
Hash
8db89d46807747fd5759e20a557d3327
57c06dcc4d2f4ae06e17b63b089af34eef4d68e2
e51b6dd679b45f3019a064ac8f350617e17a0367073108375fcc229cbc30bcf1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/30.c0f03486.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 24 Nov 2022 16:02:20 GMT
etag: "a861-637f958c-31c764fa3a1817a8;;;"
accept-ranges: bytes
content-length: 43105
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
3d8ef49d666a251414d0612f6d44e91f
aad6b2ae41762df67a5218a09cc24b38117dfd9d
bf6ffae251a5830d637e3ef3325c430f00e011888caeb6685b14b22f13561d0f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:22 GMT
Etag: "637f019a-116"
Server: ECS (amb/6BBE)
Content-Length: 278

raw.githubusercontent.com/dynamic-amm/dmm-interface/develop/src/assets/images/KNC.svg

185.199.108.133

200 OK

709 B

URL HTTP/2
raw.githubusercontent.com/dynamic-amm/dmm-interface/develop/src/assets/images/KNC.svg
IP
185.199.108.133:0
ASN
#54113 FASTLY

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (748)
Size
709 B (709 bytes)
Hash
cd71addd8ee73114d25488f41a28c684
7fe08718c318fe3a51e0511356f1dcd8900b18b6
241147b76628de0c33e3f8e39e45a0a4a8669f6e543d18f1cd8c3118b1d267e3

HTTP Headers

GET /dynamic-amm/dmm-interface/develop/src/assets/images/KNC.svg HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: image/svg+xml
etag: W/"2080e710099afd3895c6946b4743f3e57753e5d144a2a8d5bb0d4cf2dad876ef"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 947A:1946:4972E:86DAD:63804862
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 04:45:22 GMT
via: 1.1 varnish
x-served-by: cache-bma1662-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669351522.114756,VS0,VE165
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: df6ce2fc5696d61997e3f6e0ead9247832d81d69
expires: Fri, 25 Nov 2022 04:50:22 GMT
source-age: 0
content-length: 709
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.187.102.159

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.187.102.159:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IhLZYJMCq0mp+2nL8rUGDg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: OhgMzwuull8e3Yi4wL6c78NCAIc=

kybarcwap.com/source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F

191.96.56.194

200 OK

123 kB

URL HTTP/2
kybarcwap.com/source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (65461)
Size
123 kB (122929 bytes)
Hash
4bd9e5d91abae9acb1099e4cc48bd97e
dc94a4b83728193de2f8f9b0f77016e26dcd3dd1
56ea988869adcf690f143a98a3b96b0a6176beea2fb279c477342254337d4518

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/27.d86ca11c.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 24 Nov 2022 16:02:20 GMT
etag: "1e031-637f958c-c072b98c14a2e1a6;;;"
accept-ranges: bytes
content-length: 122929
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F

191.96.56.194

200 OK

5.6 kB

URL HTTP/2
kybarcwap.com/source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (5622), with no line terminators
Size
5.6 kB (5622 bytes)
Hash
f369cd19db345457e964aa4e3e20a8af
f83d66256b9a44de3fe27212c52fd03c14ad4cee
dd8eae211a61c7ba4a756ff7e57b6384c6510df04da7446bd8c4350932ea2b88

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/36.278851b9.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 24 Nov 2022 16:02:20 GMT
etag: "15f6-637f958c-24ecc58c77de6013;;;"
accept-ranges: bytes
content-length: 5622
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/logo-dark.svg

191.96.56.194

200 OK

5.0 kB

URL HTTP/2
kybarcwap.com/source/logo-dark.svg
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1994)
Size
5.0 kB (4960 bytes)
Hash
0d78e9cf18e54bbf5c27f80ca7b16958
3a865195c540fc948f2fa4b13dcf619f51290d27
d551b391d916cbd6371d8709ac3499c5e71d49318327d140025e3b4aed9e05e3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/logo-dark.svg HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "2d0a-637f958e-7afabb9534136583;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4960
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/mainnet-network.895301a4.svg

191.96.56.194

200 OK

403 B

URL HTTP/2
kybarcwap.com/source/mainnet-network.895301a4.svg
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
403 B (403 bytes)
Hash
8fc84ab4740297a8e0974287875dcf55
b003c8ccd37da3a03383856a9a9dd2df2f4c2f60
e27b4fc255ea11d1a582c029057389c8a646aa2b2148a3074f3caeae82d1a1a4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/mainnet-network.895301a4.svg HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "5a8-637f958f-cea53c6cd52bd7a8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 403
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/script.js

191.96.56.194

200 OK

1.2 kB

URL HTTP/2
kybarcwap.com/source/script.js
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1154 bytes)
Hash
d219a0676f75703aaaa128c449a2ac14
60a0325c248b8d1cce0d24377806904a2532b5e7
2f22c0365829651b03a2e78265cd6181db190bdafc5fc156153bbbb3269db8d5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/script.js HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: application/x-javascript
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "15a4-637f958f-5af7a9e5619449aa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1154
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/Golem_Submark_Positive_RGB.png

191.96.56.194

200 OK

9.5 kB

URL HTTP/2
kybarcwap.com/source/Golem_Submark_Positive_RGB.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
9.5 kB (9462 bytes)
Hash
8480edf7fcac3aa7b9d03975a6e496f0
692ebff8b920c1ce0024a6ce9c88c4d1b6e45137
20c0481c11d6c1843b9e8b610000f0a45567cefb5f22f79dcc17b2b0a10ee14b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/Golem_Submark_Positive_RGB.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "24f6-637f958e-7779e5f78a25e940;;;"
accept-ranges: bytes
content-length: 9462
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/D919x5-s_400x400.png

191.96.56.194

200 OK

16 kB

URL HTTP/2
kybarcwap.com/source/D919x5-s_400x400.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 250 x 250, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16325 bytes)
Hash
cea15d0e8b76f66f2c4636a5571b7d41
df80176ae4574a97c74ce6e0be2a2f8296b1b9f5
23a0c75f989642ae33b88966c9173cebb093d7922b817c21d3f189ad8ae16b50

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/D919x5-s_400x400.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "3fc5-637f958e-2636fb6a90c8056f;;;"
accept-ranges: bytes
content-length: 16325
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/7857.png

191.96.56.194

200 OK

1.9 kB

URL HTTP/2
kybarcwap.com/source/7857.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1930 bytes)
Hash
947b41109e304a72672be7183d5db7ab
97d3007881d367c51209ec41936139125211ebbb
fc1e89660dac92c6ba01cfa3470a68e76b0982497bb5761460161e2d27e7157a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/7857.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:21 GMT
etag: "78a-637f958d-785737ea55710bcd;;;"
accept-ranges: bytes
content-length: 1930
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/KNC.svg

191.96.56.194

200 OK

658 B

URL HTTP/2
kybarcwap.com/source/KNC.svg
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (748)
Size
658 B (658 bytes)
Hash
6badfbdaf2ea4b9f8c5fa033d68633aa
1dcfb9fb2c6df5ed11ffc86e79c2ea1f3c961da1
ecbc6961fb4e2336366bfa6a21610cccd0842d63290cad0073034450cc6d4d74

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/KNC.svg HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "529-637f958e-1765dfcafc748c0b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 658
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/chainsecurity.2dda438a.svg

191.96.56.194

200 OK

2.3 kB

URL HTTP/2
kybarcwap.com/source/chainsecurity.2dda438a.svg
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1030)
Size
2.3 kB (2271 bytes)
Hash
4f5814318851589c48a9a9acf82832b5
7fb027e15169dd5dc21780e340557ef2f865e27b
673a44ba1ed2168a7554569985c4b4f30cf5f1cb05cd96698c73564009b0bdee

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/chainsecurity.2dda438a.svg HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 16:02:21 GMT
etag: "1d79-637f958d-4dedab80f3b119e2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2271
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/status.png

191.96.56.194

200 OK

20 kB

URL HTTP/2
kybarcwap.com/source/status.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (19842 bytes)
Hash
d87d6bd5ee79634e4ed43a163f69647c
cc38ccf1e72335fdbfe489c66fe3a93037296bf9
574a79e7a06112f11846ee549daff872d3df3bd6f235f0c7f68c8be8e6d9a65c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/status.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "4d82-637f958f-665af7175d391edf;;;"
accept-ranges: bytes
content-length: 19842
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/cratos.png

191.96.56.194

200 OK

39 kB

URL HTTP/2
kybarcwap.com/source/cratos.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (38998 bytes)
Hash
3dce7bfa3e1b34f99ca13385e4cc7807
b27b826ad5a4d6d3be15128fbecfeb63357c32fa
5015434cf413394bea8f47e0be970222fd724b4089f9434f7a42bccb4260c2f7

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/cratos.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:21 GMT
etag: "9856-637f958d-c7ca8f719582f45;;;"
accept-ranges: bytes
content-length: 38998
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/graph.png

191.96.56.194

200 OK

42 kB

URL HTTP/2
kybarcwap.com/source/graph.png
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
PNG image data, 938 x 440, 8-bit/color RGBA, non-interlaced\012- data
Size
42 kB (41951 bytes)
Hash
72df623ff639aa4230c6f1ee82b75da9
1245341be9f8d4ea5fdc9b8d4dae95aac4642a4b
5ec580a598f652e8e283cb5ffbfcfabd9b391fec38d2f97e9f71c91b60dce7a4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/graph.png HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:22 GMT
content-type: image/png
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "a3df-637f958e-bb4833c2157a2902;;;"
accept-ranges: bytes
content-length: 41951
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F

191.96.56.194

200 OK

1.3 MB

URL HTTP/2
kybarcwap.com/source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (65457)
Size
1.3 MB (1332349 bytes)
Hash
a296dbf4780c68a99216c8be9e8b91f2
02eb571ef2564535e30f7dc98b63db61c6e2272d
147a904d088d4fa7540cf06cdaf4b3d750ff620be83144d7b3cab81095ffef0e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/ethers.5e519423.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 24 Nov 2022 16:02:22 GMT
etag: "14547d-637f958e-c5b830704a92e5ec;;;"
accept-ranges: bytes
content-length: 1332349
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kybarcwap.com/source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F

191.96.56.194

200 OK

4.8 MB

URL HTTP/2
kybarcwap.com/source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type
ASCII text, with very long lines (65459)
Size
4.8 MB (4837705 bytes)
Hash
dc4c7d52f0833dc94709f7353fb0a021
d7d4fb870c133e0d28bb5d81b7fdcd2d2448562b
ab4cc271eebb73f4ea05d31effdf8f087aed8680ede52b7a79f03a4adb8aa9c1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing
quad9	Sinkholed

HTTP Headers

GET /source/main.e755c78d.chunk.js.%D0%91%D0%B5%D0%B7%20%D0%BD%D0%B0%D0%B7%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Thu, 24 Nov 2022 16:02:24 GMT
etag: "49d149-637f9590-e95f55b81b746398;;;"
accept-ranges: bytes
content-length: 4837705
date: Fri, 25 Nov 2022 04:45:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3438
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:45:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3438
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:45:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3438
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:45:23 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3438
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:45:23 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ba10698-9bc6-45a1-b97d-7209a0a31f7c.jpeg

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ba10698-9bc6-45a1-b97d-7209a0a31f7c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5211 bytes)
Hash
7d0105e45becaf777227cac49e320321
d279a0b70061fe3d8268f1e69c515c0c4439dc80
ea9571213d9a57318cde036c108d4c973c627ce4cd225534ee246349ed4ba3a9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ba10698-9bc6-45a1-b97d-7209a0a31f7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5211
x-amzn-requestid: 706d0037-bbff-417a-9fa3-8ebbbf7b4df1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wFOToAMF12Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-01b6908212b2ab9c5caa34a0;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JbjUiHcVu2ytN848RqI8Ygkd0R9YCnq_OeFdc5Y5JTymA2k9HN4lZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "d279a0b70061fe3d8268f1e69c515c0c4439dc80"
content-type: image/jpeg
age: 25822
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:04:28 GMT
age: 85255
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8006 bytes)
Hash
8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NntLZ3wUdcX9kEo-afFLU0TPKgqAlSK3bToNh2mmoqoyLBJINNk7ow==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:39 GMT
age: 24644
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bd50a26-dc90-4a0f-9ac7-e2950f1e9d5f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8275 bytes)
Hash
4c67bf2eb6ca2d7e2b34df1dbe8e7b36
cdacea802c72450973140387aafacae9df78b0aa
52c1b293ec45c98077953699dcc48d77d4aee2bb12f38ef21c692af9171b6db2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1bd50a26-dc90-4a0f-9ac7-e2950f1e9d5f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8275
x-amzn-requestid: 350ffdb7-723f-4dfc-95e8-e76364d1313d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xGPAoAMFbWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-10d4c566779b9b9f4bb9112d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nJ7Ppbn5tLf-PIzvOMM-JK3paiWilTRRs5f93VzR0dZ5XDeIGwWonw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:55 GMT
age: 24568
etag: "cdacea802c72450973140387aafacae9df78b0aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4270 bytes)
Hash
648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rKROwsZ-X8yDd4iVaYBaNFe6bgHaThxafIt76PBgLoOTrPMqAVQ9iQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:22:43 GMT
age: 22960
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8277 bytes)
Hash
f59a591b222397ff0f01c22a0786e660
6a8504212141af411a18ce58960c8bb52e8116ac
624847cfdfcd770d2dee8a2b85f3c7c480cda58ba2aef1135184f3dffc30d1f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: e84a5668-cd91-42af-b6de-5eb694ea56e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-KFtmIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38d-64513fb257d83b9847c82929;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O4PtH20kVWgH-Jf_TivPqMqjnwrZB_8XvZAkDDzLLFPXVjqzkz1YJw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:59:22 GMT
age: 24361
etag: "6a8504212141af411a18ce58960c8bb52e8116ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/worksans/v17/QGYsz_wNahGAdqQ43Rh_fKDp.woff2

216.58.207.195

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/worksans/v17/QGYsz_wNahGAdqQ43Rh_fKDp.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 48480, version 1.0\012- data
Size
48 kB (48480 bytes)
Hash
3703db5bf09ab59143c655fccddec213
e3b718a81f608aec7a1edea7d30331c93822f48c
481b2fb6ea4f714f9b58e143ddb63f973e0fc1b14a4d8213517b4451644c9fae

HTTP Headers

GET /s/worksans/v17/QGYsz_wNahGAdqQ43Rh_fKDp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kybarcwap.com
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 20:29:40 GMT
expires: Fri, 24 Nov 2023 20:29:40 GMT
cache-control: public, max-age=31536000
age: 29744
last-modified: Wed, 27 Apr 2022 16:18:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:45:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfebd189d5326aa9ebc2cac80e7687bb
f6b6f00480a9b653639029af6c7669cbf98a486d
ee5686da083afc2dc611191bca3920791a055496dca4f17be5236d3837436933

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE5686DA083AFC2DC611191BCA3920791A055496DCA4F17BE5236D3837436933"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7580
Expires: Fri, 25 Nov 2022 06:51:44 GMT
Date: Fri, 25 Nov 2022 04:45:24 GMT
Connection: keep-alive

kyberswap.com/favicon.ico?version=v

172.66.40.104

200 OK

2.2 kB

URL HTTP/2
kyberswap.com/favicon.ico?version=v
IP
172.66.40.104:0
ASN
#13335 CLOUDFLARENET

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Size
2.2 kB (2243 bytes)
Hash
5a88904ae88325e27d507ac119bbc373
24a8321ec2823e7b94dc332d7126b22481ce7463
e20ac1cad9ba90477f4d9c337b6ed88ba95e4cbf4b5a9255ce22f5d20f4f8a39

HTTP Headers

GET /favicon.ico?version=v HTTP/1.1
Host: kyberswap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:24 GMT
content-type: image/x-icon
last-modified: Thu, 24 Nov 2022 05:25:16 GMT
etag: W/"637f003c-3aee"
expires: Sun, 25 Dec 2022 04:45:24 GMT
cache-control: public, max-age=2592000
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
age: 78510
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc123aa4b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/@metamask/legacy-web3@2.0.0/dist/metamask.web3.min.js

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/@metamask/legacy-web3@2.0.0/dist/metamask.web3.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@metamask/legacy-web3@2.0.0/dist/metamask.web3.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kybarcwap.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:23 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"3c8eb-87oFBezHk6Cjv6YCnpaGkC4twTc"
via: 1.1 fly.io
fly-request-id: 01GHMEYEHFYSBH70GC8AVFMRPB-ams
cf-cache-status: HIT
age: 1143701
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc0e68f81c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2

kybarcwap.com/source/main.css

191.96.56.194

200 OK

0 B

URL HTTP/2
kybarcwap.com/source/main.css
IP
191.96.56.194:0
ASN
#61317 Ipxo Uk Limited

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /source/main.css HTTP/1.1
Host: kybarcwap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Fri, 02 Dec 2022 04:45:21 GMT
content-type: text/css
last-modified: Thu, 24 Nov 2022 16:02:23 GMT
etag: "9620-637f958f-5152fa6738bf69ad;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5843
date: Fri, 25 Nov 2022 04:45:21 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

kyberswap.com/favicon.ico

172.66.40.104

200 OK

0 B

URL HTTP/2
kyberswap.com/favicon.ico
IP
172.66.40.104:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kyberswap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-type: image/x-icon
last-modified: Thu, 24 Nov 2022 05:25:16 GMT
etag: W/"637f003c-3aee"
expires: Sun, 25 Dec 2022 04:45:22 GMT
cache-control: public, max-age=2592000
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
age: 34800
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc061d8bb524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/@metamask/legacy-web3@latest/dist/metamask.web3.min.js

104.16.123.175

302 Found

0 B

URL HTTP/2
unpkg.com/@metamask/legacy-web3@latest/dist/metamask.web3.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@metamask/legacy-web3@latest/dist/metamask.web3.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Fri, 25 Nov 2022 04:45:23 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /@metamask/legacy-web3@2.0.0/dist/metamask.web3.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJPHNFQD561S6152JYE97GHT-ams
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc049dfc1c0e-OSL
X-Firefox-Spdy: h2

kyberswap.com/logo.svg?version=v

172.66.40.104

200 OK

0 B

URL HTTP/2
kyberswap.com/logo.svg?version=v
IP
172.66.40.104:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /logo.svg?version=v HTTP/1.1
Host: kyberswap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:24 GMT
content-type: image/svg+xml
last-modified: Thu, 24 Nov 2022 05:25:17 GMT
etag: W/"637f003d-2d23"
expires: Sun, 25 Dec 2022 04:45:24 GMT
cache-control: public, max-age=2592000
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc123aa2b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

unpkg.com/web3modal@1.9.0/dist/index.js

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/web3modal@1.9.0/dist/index.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web3modal@1.9.0/dist/index.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"68879-tm7vwPb2IqrA2oEDTYylltO0M54"
via: 1.1 fly.io
fly-request-id: 01F529VG37FHQWPQ19RZFE27TW
cf-cache-status: HIT
age: 17454308
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc04be051c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /evm-chains@0.2.0/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 02 Nov 2020 20:31:28 GMT
etag: W/"5881-yk4n8EqlvpHDLglCWD85vKUneh8"
via: 1.1 fly.io
fly-request-id: 01G3YDPBXRA18B04P0CD7HWFWJ-fra
cf-cache-status: HIT
age: 15841922
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc04be0a1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/web3@1.2.11/dist/web3.min.js

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/web3@1.2.11/dist/web3.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web3@1.2.11/dist/web3.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"11c1e2-CBKBj3aedzOyuXE1C535ub1XCzM"
via: 1.1 fly.io
fly-request-id: 01G4XHM42X0JVS1XGA34G5AG9K-fra
cf-cache-status: HIT
age: 14797652
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc04be071c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/@walletconnect/web3-provider@1.2.1/dist/umd/index.min.js

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/@walletconnect/web3-provider@1.2.1/dist/umd/index.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /@walletconnect/web3-provider@1.2.1/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kybarcwap.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:45:22 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"10354c-SQkpH4nf0Fs213c6eRJ65TZA0Lo"
via: 1.1 fly.io
fly-request-id: 01G4XHM24VE4HAJ63YXW3TXFEY-fra
cf-cache-status: HIT
age: 14797652
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76f7bc04be0b1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (11)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP