kanyepromo-opensea.com/
79.137.192.1301 Moved Permanently 17 B IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type ASCII text, with no line terminators
Hash 58ace0ea86287f4a3c3258b0af3e6993
e04c5335922c5e457f0a7cd62c93c4a7f699f829
d18ed36671b8618520016c81125aa889a5b800872038c5e009ef49cd305088cd
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://kanyepromo-opensea.com/
Date: Mon, 26 Sep 2022 02:42:16 GMT
Content-Length: 17
Content-Type: text/plain; charset=utf-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13311
Expires: Mon, 26 Sep 2022 06:24:07 GMT
Date: Mon, 26 Sep 2022 02:42:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 02:15:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lJo1d52v_8wVzHxKrf1KsSB0phKcB3G3Clyb-VJzzz6CViiOBGKoig==
Age: 1620
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3e81b5bd7bd8e12288a8159e44ceb3f
977945964ffcbf49ac78f840db9da822c50c82f0
4721814da286852318f7ebf9857bd4bf01f0beea2c9eb7ddb9f290e3fa472232
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4721814DA286852318F7EBF9857BD4BF01F0BEEA2C9EB7DDB9F290E3FA472232"
Last-Modified: Fri, 23 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10020
Expires: Mon, 26 Sep 2022 05:29:16 GMT
Date: Mon, 26 Sep 2022 02:42:16 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MOaetysYJcTqk1BXCwHWMwXt5FiacEaiW9zLeLaCFdPMQLhkb6jN8F022oHxhOQiwSFHcsm+Ai8=
x-amz-request-id: AJ64DQXXTM6AD0TK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Sep 2022 01:48:27 GMT
age: 3229
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 02:42:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ca436cfe713758a3098ca86b56f60a4e
0078648bd61f52ebba76c047ba736cfe3bf557a6
098065df4fa75bfbcfa0838fd19ad8bec56f6e0edd753f3c7fb001bdb65bbb09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "098065DF4FA75BFBCFA0838FD19AD8BEC56F6E0EDD753F3C7FB001BDB65BBB09"
Last-Modified: Sun, 25 Sep 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21549
Expires: Mon, 26 Sep 2022 08:41:25 GMT
Date: Mon, 26 Sep 2022 02:42:16 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 02:04:17 GMT
Expires: Mon, 26 Sep 2022 02:22:10 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KUlph06Ph33JGQErEGCbdjkB4iKmYCVcoPY3IDtDFJvIKB2-tbmpcA==
Age: 2279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2248
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Last-Modified: Mon, 26 Sep 2022 02:04:49 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c94386bfc4d18318a319c8951c1e82b
0047026ef61cfdf2dd3d21b4ac92ff6b3ca47359
3da2f0ec2ad1e2f37bc1102c7a3153d6d3a868b34bb97cbf734453a68c4d821a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3DA2F0EC2AD1E2F37BC1102C7A3153D6D3A868B34BB97CBF734453A68C4D821A"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5211
Expires: Mon, 26 Sep 2022 04:09:08 GMT
Date: Mon, 26 Sep 2022 02:42:17 GMT
Connection: keep-alive
kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_middlewareManifest.js
79.137.192.1200 OK 92 B URL HTTP/2 kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_middlewareManifest.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type ASCII text, with no line terminators
Hash 7c3f7e060745668041278118c0bb3d6d
e639f56695b3cc30d78dce7a0084aa8299a1311a
de5341313a4dc5d982ca50ae4a491e84bc5e80b0f439d87f05fc3973c1b7e59a
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/FvtxVPjpBIAew9YITODYw/_middlewareManifest.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"5c-183608f1b98"
last-modified: Wed, 21 Sep 2022 14:58:55 GMT
vary: Accept-Encoding
content-length: 92
X-Firefox-Spdy: h2
img.icons8.com/color/48/000000/verified-badge.png
185.76.9.19200 OK 1.3 kB URL HTTP/2 img.icons8.com/color/48/000000/verified-badge.png
IP 185.76.9.19:0
ASN #60068 Datacamp Limited
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e4d500560c29521861ef0892f9a677e
b045486225154040f818c9870b38fdc38689d865
930deee4bca14e492d0e4cc3e9878bcb903f982410e91710e3513f29d7eaa8bb
GET /color/48/000000/verified-badge.png HTTP/1.1
Host: img.icons8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/png
content-length: 1331
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-expose-headers: Content-Disposition
from-cache: false
memory-cache: true
from-svg-cache: true
memory-svg-cache: true
icon-id: 98A4yZTt9abw
icon-format: png
icon-size: 48
last-modified: Sat, 24 Sep 2022 06:48:46 GMT
cache-control: public, max-age=302400
not-found-platform: false
version: 0.1.0-SNAPSHOT.20220801211335139
x-accel-expires: @1664346174
server: CDN77-Turbo
x-77-nzt: AblMCQ37fzzvi8YBAA
x-77-nzt-ray: s4+XhqufGEY
x-cache: HIT
x-age: 116363
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/20bc9fcbdb077f0a89951f9621477a11.png?auto=format&dpr=1&w=50
143.204.55.76200 OK 3.6 kB URL HTTP/2 i.seadn.io/gcs/files/20bc9fcbdb077f0a89951f9621477a11.png?auto=format&dpr=1&w=50
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Hash 51ea1d4a4c3f3760ad9d2d8b98a1da03
ec9f79d10f8171c69b4d512fb8c0405b24cd7544
6d54651fef7f785077e1f75fa8e882ba7526c5d7e090d002ba0271ac1c13feaa
GET /gcs/files/20bc9fcbdb077f0a89951f9621477a11.png?auto=format&dpr=1&w=50 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
content-length: 3641
x-amz-id-2: W7MSwHkIT0dMd09JfjTCeJkEByKurj4EkgpbNDtIYSHxKEKG7L+ZysWAM0DbE8cSSA79OAn18m4=
x-amz-request-id: GBYPW01422KTHZSA
date: Sun, 25 Sep 2022 10:37:48 GMT
last-modified: Thu, 25 Aug 2022 23:02:08 GMT
etag: "51ea1d4a4c3f3760ad9d2d8b98a1da03"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d29DAZ5MniBwAKRBUl6vyZFWM0UsSBT8m1ZmeohTPVt3YAf7xqu5Ng==
age: 57870
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/875e1261e16c4c3e2eee313cc1ab7439.png?auto=format&dpr=0.8&w=500
143.204.55.76200 OK 135 kB URL HTTP/2 i.seadn.io/gcs/files/875e1261e16c4c3e2eee313cc1ab7439.png?auto=format&dpr=0.8&w=500
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Size 135 kB (135294 bytes)
Hash bb0bd2fb729f360a1c4660309bd1b840
011296cc2f610ca2779b9d2b843a964178897b1d
cf8ee3f10ca06ea8c4c7c81e30912182f54a201f07bd614d382aa9a55e658127
GET /gcs/files/875e1261e16c4c3e2eee313cc1ab7439.png?auto=format&dpr=0.8&w=500 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
content-length: 135294
x-amz-id-2: Z1Ky6Yi719EKGXKuaW06F8ozBNAJaq0gTZ4VisDl2BqDbH8/jjVqQ0GMQSNe6rHZq7/NIwlZIcg=
x-amz-request-id: 0BZAT37ZATJ9RYTE
date: Sun, 25 Sep 2022 10:37:49 GMT
last-modified: Thu, 08 Sep 2022 20:28:25 GMT
etag: "bb0bd2fb729f360a1c4660309bd1b840"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lWKwxTb6p3qZ-ye1OsT-VxgQF0tIwhqMq_362rrfXjGLpmJOBizV3w==
age: 57869
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=1&w=50
143.204.55.76200 OK 13 kB URL HTTP/2 i.seadn.io/gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=1&w=50
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Hash 70f50486e53078358d629d2c100f88d6
cf80455039cde0e7362eec8d45527c4ef73707d4
112097ae35769edde941981fc1e943f21f2f8db3807c5736ddcec0eaee9230fd
GET /gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=1&w=50 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/avif
content-length: 12848
x-amz-id-2: so5CYSGsBvksgEdFi+fv24QXRXEzUs82dT5lN2m5eN1n6DsALGImG9xtP01XoWLTMvn7eA85RYw=
x-amz-request-id: GBYPBR0P4VHC2A1V
date: Sun, 25 Sep 2022 10:37:48 GMT
last-modified: Thu, 08 Sep 2022 20:28:24 GMT
etag: "70f50486e53078358d629d2c100f88d6"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GA7LVFKQBkchexezIGjEKilwoXMk5w325GfrpwGKjkmBVfg-1HX-Jg==
age: 57870
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bdd7a04ae781e1aee161f5cbec596e68
0d4e656403be2b356a7eb93fdddb3dde8149f4e1
e71dce965e77ba79e3ab7a9dd926381a0d949e933ce4a76cd8d4c407aada310c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E71DCE965E77BA79E3AB7A9DD926381A0D949E933CE4A76CD8D4C407AADA310C"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13551
Expires: Mon, 26 Sep 2022 06:28:08 GMT
Date: Mon, 26 Sep 2022 02:42:17 GMT
Connection: keep-alive
i.seadn.io/gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg?auto=format&dpr=1&w=50
143.204.55.76200 OK 10 kB URL HTTP/2 i.seadn.io/gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg?auto=format&dpr=1&w=50
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Hash 27399475016d900ae45acd68b1baeee9
4e733ee8bd02ba194c29847a905df41c8718b00e
d86dcb6c4e830c33ebc87d243c40447e510a326e69dc6ce8aec291f282cfe6c6
GET /gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg?auto=format&dpr=1&w=50 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/avif
content-length: 9962
x-amz-id-2: 1xQ7B/vgW9WbJXbEAYW7z7iGqeox39OW/CxHFuAmodf+dVam4BKW0QYVk5Z7wz/xCM5D+d7L5oA=
x-amz-request-id: 0BZFSGDZME8XBQMS
date: Sun, 25 Sep 2022 10:37:49 GMT
last-modified: Fri, 26 Aug 2022 21:33:02 GMT
etag: "27399475016d900ae45acd68b1baeee9"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pFk5cHNBKF601iEEGLE25UqwVzvxpxOgGjkkyIaY-iN7q-BfCQ2ciA==
age: 57869
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/ebe5be514606f31e2404c96bf09afef2.webp?auto=format&dpr=1&w=50
143.204.55.76200 OK 3.9 kB URL HTTP/2 i.seadn.io/gcs/files/ebe5be514606f31e2404c96bf09afef2.webp?auto=format&dpr=1&w=50
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Hash 8910f238dfd682f32bf40190c07f3a8a
86ecc9f40061ea14049ac393cf24804ee5e8f39f
70686c7a867257ac17a477bedcd5dcd69a38b116e0f39bbf2794c6a2f8b3ca49
GET /gcs/files/ebe5be514606f31e2404c96bf09afef2.webp?auto=format&dpr=1&w=50 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/avif
content-length: 3857
x-amz-id-2: 3TM0Tj+hKkYu3OmnfIZs//z9dKKVdksbcC/APv2yl89tucMp1bv9LFzWaJOEoud+P0Oas4sFJ0U=
x-amz-request-id: 0BZFDQWAW268AK8Y
date: Sun, 25 Sep 2022 10:37:49 GMT
last-modified: Fri, 26 Aug 2022 02:43:05 GMT
etag: "8910f238dfd682f32bf40190c07f3a8a"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9twnAL9obK_Jm0GSs9S7gY6v2AEZ3bZ9w8LwzEKVLaaR9JoeeFo69w==
age: 57869
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 346 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bdd7a04ae781e1aee161f5cbec596e68
0d4e656403be2b356a7eb93fdddb3dde8149f4e1
e71dce965e77ba79e3ab7a9dd926381a0d949e933ce4a76cd8d4c407aada310c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E71DCE965E77BA79E3AB7A9DD926381A0D949E933CE4A76CD8D4C407AADA310C"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13551
Expires: Mon, 26 Sep 2022 06:28:08 GMT
Date: Mon, 26 Sep 2022 02:42:17 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_buildManifest.js
79.137.192.1200 OK 435 B URL HTTP/2 kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_buildManifest.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (435), with no line terminators
Hash 4265f944e0e262e5a406c75e2b56233d
782243194afc4b6ac90cbfef880829d62677daaf
56451a710c762f0d3ee7775d3039860d8e1195f641ba4c32f7467270c6e5bc39
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/FvtxVPjpBIAew9YITODYw/_buildManifest.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"1b3-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
content-length: 435
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=0.8&w=70
143.204.55.76200 OK 13 kB URL HTTP/2 i.seadn.io/gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=0.8&w=70
IP 143.204.55.76:0
File type ISO Media, AVIF Image\012- data
Hash 70f50486e53078358d629d2c100f88d6
cf80455039cde0e7362eec8d45527c4ef73707d4
112097ae35769edde941981fc1e943f21f2f8db3807c5736ddcec0eaee9230fd
GET /gcs/files/5498d13847bc597f4422fe822474ddde.png?auto=format&dpr=0.8&w=70 HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
content-length: 12848
x-amz-id-2: so5CYSGsBvksgEdFi+fv24QXRXEzUs82dT5lN2m5eN1n6DsALGImG9xtP01XoWLTMvn7eA85RYw=
x-amz-request-id: GBYPBR0P4VHC2A1V
date: Sun, 25 Sep 2022 10:37:48 GMT
last-modified: Thu, 08 Sep 2022 20:28:24 GMT
etag: "70f50486e53078358d629d2c100f88d6"
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S84OyIEVxo0HZu_7-4gEBVBhytjqxQt53At1F23P2Xf5MhPLz_lg8A==
age: 57870
X-Firefox-Spdy: h2
kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_ssgManifest.js
79.137.192.1200 OK 77 B URL HTTP/2 kanyepromo-opensea.com/_next/static/FvtxVPjpBIAew9YITODYw/_ssgManifest.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type ASCII text, with no line terminators
Hash b6652df95db52feb4daf4eca35380933
65451d110137761b318c82d9071c042db80c4036
6f5b4aa00d2f8d6aed9935b471806bf7acef464d0c1d390260e5fe27f800c67e
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/FvtxVPjpBIAew9YITODYw/_ssgManifest.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"4d-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
content-length: 77
X-Firefox-Spdy: h2
openseauserdata.com/files/2a612d58a37abecd1458330b47e678e6.gif
104.18.3.144200 OK 345 kB URL HTTP/2 openseauserdata.com/files/2a612d58a37abecd1458330b47e678e6.gif
IP 104.18.3.144:0
File type GIF image data, version 89a, 400 x 400\012- data
Size 345 kB (344731 bytes)
Hash 2a612d58a37abecd1458330b47e678e6
3b8fe209e58217bbcaff3ba073dae7baa93e37b5
c5b0ac928e73266b19839610c8466a82fc3993d2e998f2ec3214d643b60eee27
GET /files/2a612d58a37abecd1458330b47e678e6.gif HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/gif
content-length: 344731
x-guploader-uploadid: ADPycdvYqV7a12TQb8v-7HooeSXjoDlyjjklwmVQk31kRQn2qEoEqStI5OdlcqRqvS1isHWWL-oMtGTBf5Mb8cFMnVfcog
cache-control: public, max-age=31536000
expires: Tue, 26 Sep 2023 02:42:17 GMT
last-modified: Tue, 02 Aug 2022 05:49:35 GMT
etag: "2a612d58a37abecd1458330b47e678e6"
x-goog-generation: 1659419375762217
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 344731
x-goog-hash: crc32c=XTBbPw==, md5=KmEtWKN6vs0UWDMLR+Z45g==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: HIT
age: 4740283
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53a5b3a0b41-OSL
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob2.jpg
79.137.192.1200 OK 906 B URL HTTP/2 kanyepromo-opensea.com/assets/jeykob2.jpg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 38x36, components 3\012- data
Hash 0f7f3fc034c094bbb2a75c16341457db
b4ba79a3e9ec344b08a6ae4eda38aaf56dbdfd17
34b38e28058556a1cf789f2478779118fbda25dd1fbf6839c7547205144bece3
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/jeykob2.jpg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/jpeg
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"38a-18360756d60"
last-modified: Wed, 21 Sep 2022 14:30:52 GMT
content-length: 906
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash bd98f50a177f51c94d34fe84cceac9e3
7b49ba79946ce0a9e5035aeb13f4a52000fed424
a94612a19d6166ec649bdaef87dc6848bc53cf740eb984cfb33dd23533f49400
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 02:42:17 GMT
Last-Modified: Mon, 26 Sep 2022 02:06:35 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2FxuX24-7-w95T9heUnb3mq5pE8oJymmAiEArpVmp8Cx_KJmY37oeA==
Age: 2142
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
142.250.74.163200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 128360, version 1.0\012- data
Size 128 kB (128360 bytes)
Hash 393b5d8b3fd798486652801f3ee8c6ea
979383e09be691921a211f5fc4ef97fc4406e4dd
83be7b2f504af2c948c5106fa907dc4224380a7b75a993a7bff52cd71ec8c7d3
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 20:30:37 GMT
expires: Fri, 22 Sep 2023 20:30:37 GMT
cache-control: public, max-age=31536000
age: 281500
last-modified: Thu, 25 Aug 2022 00:09:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialiconsoutlined/v108/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
142.250.74.163200 OK 155 kB URL HTTP/2 fonts.gstatic.com/s/materialiconsoutlined/v108/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 155276, version 1.0\012- data
Size 155 kB (155276 bytes)
Hash 0ba49c096a77b67734434cebcaf2e14d
2f9e28ab559782402f27332633c843c40209d95a
35dca8a7145a17c8d1306f25a3ca091578e15396f0b22d61eb8e73262ac75577
GET /s/materialiconsoutlined/v108/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 155276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 04:42:18 GMT
expires: Fri, 22 Sep 2023 04:42:18 GMT
cache-control: public, max-age=31536000
age: 338399
last-modified: Thu, 11 Aug 2022 01:53:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.seadn.io/gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg
143.204.55.76200 OK 52 kB URL HTTP/2 i.seadn.io/gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg
IP 143.204.55.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3\012- data
Hash 998b7cb32192509c7db87f74f8043d5f
099db0f6983819ba68bc1b9df3d92180cd0862f5
fb0947127bfed788564f97c1d0f84a9839968094e2e652a36d8ec4c23fa924b4
GET /gcs/files/998b7cb32192509c7db87f74f8043d5f.jpg HTTP/1.1
Host: i.seadn.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: png
content-length: 52237
x-amz-id-2: cDHUJ6k1hQcTCkpp5+FSoqfnKY8azpHC7COcqtFE+LUQJQqCxYQ8s+RozYPD79CFnryGJhRwCXI=
x-amz-request-id: XX349N4D4XX04PWW
date: Sun, 25 Sep 2022 07:46:51 GMT
last-modified: Tue, 20 Sep 2022 20:55:57 GMT
etag: "998b7cb32192509c7db87f74f8043d5f"
x-amz-meta-original: true
cache-control: max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HqNJdT-EXeidVEVu_ZOFTygUCVPrZ5cboWx8ixq0EG0M3I-iPijfAg==
age: 68127
X-Firefox-Spdy: h2
openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
104.18.3.144200 OK 785 B URL HTTP/2 openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
IP 104.18.3.144:0
Hash 27ef5496889f23aafa60e29dcd180e90
a4465a2210e12d5a30340f5e1c742ca14f8aa2dc
16f1e6b72481fe5b5ff9d7b84192620d272a6ec90da99eab49ab595d8c93c382
GET /files/6f8e2979d428180222796ff4a33ab929.svg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdtOpKtXKGpfRIOA8OC928xal7CXFHWjzPm2UNaNe2wAyuI8pPxy_BS-esldU5UeDyreO6g4vEOUEPwdWDAkFXXxnA
x-goog-generation: 1621565487252748
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 684
x-goog-hash: crc32c=VbTFmw==, md5=b44pedQoGAIieW/0ozq5KQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
expires: Tue, 26 Sep 2023 02:42:17 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 21 May 2021 02:51:27 GMT
etag: W/"6f8e2979d428180222796ff4a33ab929"
age: 9603744
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53a7b420b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ++IFUPTDciIS+/oawMMBHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qgJNqyTSdsAjmqCTGssVNqYOnrg=
kanyepromo-opensea.com/assets/collectibles.png
79.137.192.1200 OK 74 kB URL HTTP/2 kanyepromo-opensea.com/assets/collectibles.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type PNG image data, 662 x 360, 8-bit/color RGB, non-interlaced\012- data
Hash d9335716cfd745478eee89f625b71825
42efb219e4e1a5a21a498ed5d08b2408da0a9a4c
b2d8353cc85de0a846b39f18d2a671614f3e37a84c47343a95d30a33bd8366cb
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/collectibles.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"12225-18360757148"
last-modified: Wed, 21 Sep 2022 14:30:53 GMT
content-length: 74277
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob5.svg
79.137.192.1200 OK 966 B URL HTTP/2 kanyepromo-opensea.com/assets/jeykob5.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 2d0a07dc21e172de5e86a7528a57c697
49fc96114ee20c1dad2f496413a284cf3ccfae9b
70af639883560c3e224a542b07775556966feedc29ee188ba0e2e97574f5f075
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/jeykob5.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"3c6-183608cfca0"
last-modified: Wed, 21 Sep 2022 14:56:36 GMT
vary: Accept-Encoding
content-length: 966
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/domain-names.png
79.137.192.1200 OK 52 kB URL HTTP/2 kanyepromo-opensea.com/assets/domain-names.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13f3061ad278717cf185a4e3be105d35
037ecd16b1646de7690a1a2b8c15c4260a5b0f19
84092dbeee0c446ec5a3fb0aa65b244c1d92ced4d0ed39f4e4e65f548e8f0fca
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/domain-names.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"cad2-18360757148"
last-modified: Wed, 21 Sep 2022 14:30:53 GMT
content-length: 51922
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob.jpg
79.137.192.1200 OK 215 kB URL HTTP/2 kanyepromo-opensea.com/assets/jeykob.jpg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x1201, components 3\012- data
Size 215 kB (214790 bytes)
Hash 9842daca7f9953813d38863100543ef2
5eb93e735cb10212a2fb23b9c72fd614db64517c
4994c2ce75fd34bddadad8e0b3c2d2fc8a0eba6715ec3923ba01e0de122c3bc0
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/jeykob.jpg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/jpeg
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"34706-18360757148"
last-modified: Wed, 21 Sep 2022 14:30:53 GMT
content-length: 214790
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/sports.png
79.137.192.1200 OK 129 kB URL HTTP/2 kanyepromo-opensea.com/assets/sports.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129352 bytes)
Hash 9a0077fded7f3fb9b2618594ebc859e4
d8149685f5d0c6fe66311dee6e606f2e2c13d8b9
ebac54aa2f93a252975e3ca96d62dec0caa9a01e1f33668620aac442a0036ce7
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/sports.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"1f948-18360756590"
last-modified: Wed, 21 Sep 2022 14:30:50 GMT
content-length: 129352
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/virtual-worlds.png
79.137.192.1200 OK 122 kB URL HTTP/2 kanyepromo-opensea.com/assets/virtual-worlds.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type PNG image data, 662 x 360, 8-bit/color RGB, non-interlaced\012- data
Size 122 kB (121709 bytes)
Hash 77944ce411e933c0ffd2cb8719c4d2fd
b7d34bed71745b22975cc229524cf96581176c1c
6b5eaf379c0ceeb6f467b52de5175d9f99596759b5cc573a8626b319e145da65
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/virtual-worlds.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"1db6d-183607561a8"
last-modified: Wed, 21 Sep 2022 14:30:49 GMT
content-length: 121709
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/music.png
79.137.192.1200 OK 131 kB URL HTTP/2 kanyepromo-opensea.com/assets/music.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type RIFF (little-endian) data, Web/P image\012- data
Size 131 kB (130734 bytes)
Hash b74b0a9e12d5194fabe6686e6cd36fbe
483164561faed595318dddbabf17678eeaa7a78a
a336a33e8d6a3b74fee191121a0c950229bc6097f9018983181b730b875c741d
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/music.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"1feae-18360756d60"
last-modified: Wed, 21 Sep 2022 14:30:52 GMT
content-length: 130734
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/trading-cards.png
79.137.192.1200 OK 180 kB URL HTTP/2 kanyepromo-opensea.com/assets/trading-cards.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type RIFF (little-endian) data, Web/P image\012- data
Size 180 kB (179596 bytes)
Hash a995601de89992960cb18f1ba89479d2
110346a4d12b8e47c3ad44385f85a916d15ee206
ecf70633eab5862ce8d0097d47f1c075be220c716a2a2e44930d2acca6c19811
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/trading-cards.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"2bd8c-18360756590"
last-modified: Wed, 21 Sep 2022 14:30:50 GMT
content-length: 179596
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/art.png
79.137.192.1200 OK 257 kB URL HTTP/2 kanyepromo-opensea.com/assets/art.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type RIFF (little-endian) data, Web/P image\012- data
Size 257 kB (257268 bytes)
Hash 5306867e611ccf4ae4870f2a397ac666
05ddd42571a601d60d4fdef8539bc6e827d4d724
9a1d2967a227349ee6e2a778ff87f336b77cd406bac35dea39a05345d9a2fa04
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/art.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"3ecf4-183607584d0"
last-modified: Wed, 21 Sep 2022 14:30:58 GMT
content-length: 257268
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5252e82c142d9e121b7c5d30385c7e08
e1f86851d0648abc61097737ddb62329ccc4a4c5
29cde475a748047c3bf9180f4a13c5db9f6a960552fa0dd04344970739dab3a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Server: ECS (amb/6B85)
Content-Length: 279
kanyepromo-opensea.com/_next/static/chunks/webpack-434fefa8f39d8fbc.js
79.137.192.1200 OK 51 kB URL HTTP/2 kanyepromo-opensea.com/_next/static/chunks/webpack-434fefa8f39d8fbc.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Hash f030d66ba5933f53b993e4a4cfaa975f
d750bc558343d0c4afb0abdfd3a482e0dc34f4c9
e019b258a84dd9dde9775bde0080ae7a3d0bd7025fd9f31f9fed9ff6077e140d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/chunks/webpack-434fefa8f39d8fbc.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"6db-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 12:31:58 GMT
expires: Sun, 24 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 137419
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube-nocookie.com/s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js
216.58.207.206200 OK 98 kB URL HTTP/2 www.youtube-nocookie.com/s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (570)
Hash faf7cb6fdef7f573ad65139bd560afed
e01ff9c1ab3e3a94d92db4c8580b18558256c5ba
e0912caa0cba25c0e92c231d528c723f7bf7d7479c53a8505858c79284013e9e
GET /s/player/abfb84fe/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97978
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 12:30:13 GMT
expires: Mon, 25 Sep 2023 12:30:13 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/javascript
age: 51124
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube-nocookie.com/s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js
216.58.207.206200 OK 2.8 kB URL HTTP/2 www.youtube-nocookie.com/s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js
IP 216.58.207.206:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/abfb84fe/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 08:46:09 GMT
expires: Mon, 25 Sep 2023 08:46:09 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Sep 2022 00:22:49 GMT
content-type: text/javascript
age: 64568
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/other.css
79.137.192.1200 OK 669 kB URL HTTP/2 kanyepromo-opensea.com/assets/other.css
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Size 669 kB (668598 bytes)
Hash b87083f68a4fc4281d4116c861d61acf
5f5d768e180cf180827aa6dd3b19f8f901ba1d35
7695b24450fd8e78f6243e307c11a72ba9e546d76f40d07a295208196bae4506
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/other.css HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"94533-18360756978"
last-modified: Wed, 21 Sep 2022 14:30:51 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
blogmigration.kinsta.cloud/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0-300x200.jpg
162.159.135.42200 OK 12 kB URL HTTP/2 blogmigration.kinsta.cloud/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0-300x200.jpg
IP 162.159.135.42:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash 3070e05b204b6e56b08a2a95eac7431c
29b1f9c373ece75f2ea1c05e5aed29dfd26b2a56
25887eca1c1bf1a3eff9c4e69052a8afef84e57984c0831baad7f901e6ad501d
GET /wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0-300x200.jpg HTTP/1.1
Host: blogmigration.kinsta.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/jpeg
content-length: 11902
cf-ray: 7508a53bfebbb51e-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 23085
cache-control: public, max-age=31536000
etag: "62bf763d-2e7e"
expires: Tue, 26 Sep 2023 02:42:17 GMT
last-modified: Fri, 01 Jul 2022 22:33:33 GMT
cf-cache-status: HIT
ki-cache-tag: 0cdddff3-8a96-4237-bef1-1b78ac484d71,4dea15656014530ff144ef694b6de394bc62517d9a8b0ebfa98b5c2daf7c3292
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
x-content-type-options: nosniff
x-edge-location-klb: 1
x-robots-tag: noindex, nofollow, nosnippet, noarchive
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EhM80L16qYnDwudO7oQe2s9ngKsI8JdMg6US5A2m246o3FXvSaDY3U3zzR%2BZ8nNBKPIbd3LZoCkY6jasnY3LixqPd0vixylzWO7mDfG%2FRlDzv5IGO6Biua2NBX%2Bj89h9z4xHoL%2BjAfyFQmhS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:27:49 GMT
expires: Thu, 21 Sep 2023 19:27:49 GMT
cache-control: public, max-age=31536000
age: 371668
last-modified: Wed, 27 Apr 2022 16:07:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:28:10 GMT
expires: Thu, 21 Sep 2023 19:28:10 GMT
cache-control: public, max-age=31536000
age: 371647
last-modified: Wed, 27 Apr 2022 16:59:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2
142.250.74.163200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:29:40 GMT
expires: Thu, 21 Sep 2023 19:29:40 GMT
cache-control: public, max-age=31536000
age: 371557
last-modified: Wed, 27 Apr 2022 16:10:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrFJM.woff
142.250.74.163200 OK 67 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrFJM.woff
IP 142.250.74.163:0
File type Web Open Font Format, TrueType, length 66572, version 1.1\012- data
Hash bbae93786a029de7b9458f5ca63e01fd
5c782878205fe06f0e6210c1a44dcdcb4a3e7b3e
c68e1edb2e2414da9f1a46a81131ceeb09e082363d20c8605d5edb929a1bf648
GET /s/poppins/v20/pxiEyp8kv8JHgFVrFJM.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 66572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:43:13 GMT
expires: Tue, 19 Sep 2023 22:43:13 GMT
cache-control: public, max-age=31536000
age: 532744
last-modified: Wed, 27 Apr 2022 17:03:58 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5252e82c142d9e121b7c5d30385c7e08
e1f86851d0648abc61097737ddb62329ccc4a4c5
29cde475a748047c3bf9180f4a13c5db9f6a960552fa0dd04344970739dab3a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Last-Modified: Mon, 26 Sep 2022 02:42:17 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5252e82c142d9e121b7c5d30385c7e08
e1f86851d0648abc61097737ddb62329ccc4a4c5
29cde475a748047c3bf9180f4a13c5db9f6a960552fa0dd04344970739dab3a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Server: ECS (amb/6B7E)
Content-Length: 279
openseauserdata.com/static/promocards/clonex_promocard3_squooshed.jpg
104.18.3.144200 OK 505 kB URL HTTP/2 openseauserdata.com/static/promocards/clonex_promocard3_squooshed.jpg
IP 104.18.3.144:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 505 kB (504842 bytes)
Hash da319850325a92e441fd11b98a19fd69
9ee10f53eaba02310b994ddb55be64c572f69a5e
589c5cab5abc294528eb3a75dd5bc67cb1f32d0c14f14a3860599f7a681ba5ed
GET /static/promocards/clonex_promocard3_squooshed.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/jpeg
content-length: 504842
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "da319850325a92e441fd11b98a19fd69"
expires: Mon, 26 Sep 2022 06:42:17 GMT
last-modified: Thu, 08 Sep 2022 13:16:41 GMT
x-guploader-uploadid: ADPycduZGbHddn5CqQfB-WkFFYqFrxH5fqQ2R_-Z0gJt1ZOT0H1f_Zmwju5iNy56-mlQiwi16t2OO-ycLuoV9qC0XH5ULgzerElV
x-goog-generation: 1662643001245577
x-goog-hash: crc32c=LQYFkA==, md5=2jGYUDJakuRB/RG5ihn9aQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 504842
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53c8bcd0b41-OSL
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/CloudWalker.png
104.18.3.144200 OK 1.6 MB URL HTTP/2 openseauserdata.com/static/promocards/CloudWalker.png
IP 104.18.3.144:0
File type PNG image data, 1125 x 1740, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1591357 bytes)
Hash ac458622cde71a574b3496e5db69bb93
58d5832eb07edebd47978e64805cc7ff3a746cfa
20afcfe19d24f26c318d6585b848c53b7146ee253978e19d376c743910be3642
GET /static/promocards/CloudWalker.png HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/png
content-length: 1591357
x-guploader-uploadid: ADPycdsGOkri-UwVZ8DOJ6-9J-0z2pVDCsozEcoAFoIRe_u46VY79N3iTCn-fgqHr_vObM96yRBzjA4MrLki1sr8__KPeg
expires: Mon, 26 Sep 2022 06:42:17 GMT
cache-control: public, max-age=14400
last-modified: Thu, 08 Sep 2022 00:00:17 GMT
etag: "ac458622cde71a574b3496e5db69bb93"
x-goog-generation: 1662595217557384
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1591357
x-goog-hash: crc32c=WCdFAQ==, md5=rEWGIs3nGldLNJbl22m7kw==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53c7bc70b41-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5252e82c142d9e121b7c5d30385c7e08
e1f86851d0648abc61097737ddb62329ccc4a4c5
29cde475a748047c3bf9180f4a13c5db9f6a960552fa0dd04344970739dab3a4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:17 GMT
Server: ECS (amb/6BC0)
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 79a17832aa3f1155324e8f05bfef1ddf
d41b72d5e6634c08e872ad363fb3197894a12a7d
23d0a708522fd925728ea1be28c6417338ffb609ee45fed56c98f7f54dad1854
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23D0A708522FD925728EA1BE28C6417338FFB609EE45FED56C98F7F54DAD1854"
Last-Modified: Sat, 24 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7701
Expires: Mon, 26 Sep 2022 04:50:39 GMT
Date: Mon, 26 Sep 2022 02:42:18 GMT
Connection: keep-alive
3.bridge.walletconnect.org/?env=browser&host=kanyepromo-opensea.com&protocol=wc&version=1
18.194.143.11200 OK 0 B URL HTTP/2 3.bridge.walletconnect.org/?env=browser&host=kanyepromo-opensea.com&protocol=wc&version=1
IP 18.194.143.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?env=browser&host=kanyepromo-opensea.com&protocol=wc&version=1 HTTP/1.1
Host: 3.bridge.walletconnect.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://kanyepromo-opensea.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aJG+WTP4qnC0vpZWSgnKJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/2 200 OK
sec-websocket-accept: HMeZBJFYaxEgMwwP8TU48MMj0xU=
date: Mon, 26 Sep 2022 02:42:17 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kanyepromo-opensea.com/assets/16x16.png
79.137.192.1200 OK 567 B URL HTTP/2 kanyepromo-opensea.com/assets/16x16.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5374cea6aba95ea9c9e06d47579b75b1
b03d87e7ae57e1bb8fd71479f945c815176f4365
172140b451123d46b93c313060ed5521c625da8b8a4cd7fdb911230cc32be130
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/16x16.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:18 GMT
etag: W/"237-183607588b8"
last-modified: Wed, 21 Sep 2022 14:30:59 GMT
content-length: 567
X-Firefox-Spdy: h2
kanyepromo-opensea.com/_next/static/chunks/pages/_app-55bca64c759726ea.js
79.137.192.1200 OK 158 kB URL HTTP/2 kanyepromo-opensea.com/_next/static/chunks/pages/_app-55bca64c759726ea.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Size 158 kB (157910 bytes)
Hash 7bb6d37378421f0bcac8886745bf414f
a106efe5834f1ba8cb82810cb06bc360d080a995
0db28a551077edc0e6cc47babdef3045185b3f48e443677ae755c0ee04cbe966
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/chunks/pages/_app-55bca64c759726ea.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"86035-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
lh3.googleusercontent.com/-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s128
142.250.74.33200 OK 11 kB URL HTTP/2 lh3.googleusercontent.com/-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s128
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3\012- data
Hash 72e7718e187f745643d179673dbc0f54
7d7262d6b27a4820c9cfe31debbd94943574b841
d42eb8d436d730d28fdd3ce7fb6b24174134de6e7ce607b9dcd43bb239a74f57
GET /-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s128 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 11157
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/H-eyNE1MwL5ohL-tCfn_Xa1Sl9M9B4612tLYeUlQubzt4ewhr4huJIR5OLuyO3Z5PpJFSwdm7rq-TikAh7f5eUw338A2cy6HRH75=s100-k
142.250.74.33200 OK 2.8 kB URL HTTP/2 lh3.googleusercontent.com/H-eyNE1MwL5ohL-tCfn_Xa1Sl9M9B4612tLYeUlQubzt4ewhr4huJIR5OLuyO3Z5PpJFSwdm7rq-TikAh7f5eUw338A2cy6HRH75=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 9c82101e1e461a0d23c50449bb2f590d
5ddde5422a4055aefcd7440c617dd265035fc936
3a307dc14edcd51e75cce23fbc5bd5e796e5ca23250e658059ee099da1a5fecf
GET /H-eyNE1MwL5ohL-tCfn_Xa1Sl9M9B4612tLYeUlQubzt4ewhr4huJIR5OLuyO3Z5PpJFSwdm7rq-TikAh7f5eUw338A2cy6HRH75=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2762
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s128
142.250.74.33200 OK 2.5 kB URL HTTP/2 lh3.googleusercontent.com/Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s128
IP 142.250.74.33:0
File type PNG image data, 128 x 128, 8-bit/color RGB, non-interlaced\012- data
Hash cd522cd42bc70cbe68a2fb875e530f28
b092778b31db7ec953374a7715e1fa5e757e09f4
ed243057c250ea18cb3da8af4deea0921e8f21e9ec73137481e6e32e60c53ed8
GET /Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s128 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2521
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kanyepromo-opensea.com/assets/utility.png
79.137.192.1200 OK 11 kB URL HTTP/2 kanyepromo-opensea.com/assets/utility.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 8f163da3d4cb470322b4934427ece909
eee9a374f8953b6a2d37ccf7ef0d4a4d543f34fd
b87d375e52be80a9e609c3054764e17cef8114fc2f07013e5a5102bed7c0e1e6
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/utility.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"22636-18360756590"
last-modified: Wed, 21 Sep 2022 14:30:50 GMT
content-length: 140854
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s100-k
142.250.74.33200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 1cfbc61f9adc0f0e41c30c337886f7be
629d9e163776fb1ea36f542fe70b74dabb31db5d
3eec5fb0d8af6ebe74db9da54fc5b804fe01a6aab32854a780d9d4ce6a74f920
GET /Nnp8Pdo6EidK7eBduGnAn_JBvFsYGhNGMJ_fHJ_mzGMN_2Khu5snL5zmiUMcSsIqtANh19KqxXDs0iNq_aYbKC5smO3hiCSw9PlL=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1930
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kanyepromo-opensea.com/_next/static/chunks/main-d8d2818263aa51dc.js
79.137.192.1200 OK 72 kB URL HTTP/2 kanyepromo-opensea.com/_next/static/chunks/main-d8d2818263aa51dc.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Hash 20110931f62149a44603fabb012f8d58
50b39e1fe26ff08a0990c7ee99d8802b8e32eecc
3be4efba671cffdb6a8c74215ad8c0205c48ea321c5bc1445c2d46f7105de026
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/chunks/main-d8d2818263aa51dc.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"19b41-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
lh3.googleusercontent.com/0cOqWoYA7xL9CkUjGlxsjreSYBdrUBE0c6EO1COG4XE8UeP-Z30ckqUNiL872zHQHQU5MUNMNhfDpyXIP17hRSC5HQ=s100-k
142.250.74.33200 OK 6.3 kB URL HTTP/2 lh3.googleusercontent.com/0cOqWoYA7xL9CkUjGlxsjreSYBdrUBE0c6EO1COG4XE8UeP-Z30ckqUNiL872zHQHQU5MUNMNhfDpyXIP17hRSC5HQ=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c1d9a12703fd6c7e2c8d820f821dc6b
fbf9b4308a01c170f7d19b8857d07234f11ffac7
798a772cc5da8848af04890a1147c5007e063fa568699ca7f728be45b5000982
GET /0cOqWoYA7xL9CkUjGlxsjreSYBdrUBE0c6EO1COG4XE8UeP-Z30ckqUNiL872zHQHQU5MUNMNhfDpyXIP17hRSC5HQ=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6340
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100-k
142.250.74.33200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 98a561436ae37cf62368739c2b2d0ab3
cb633d6ef0c36f4963df9c34725174ffaf1b7f65
51f8e39428b85eb68838441f98ae3dc70a5afb7d07a9efa3518e5cfca40d5ad2
GET /lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4130
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100-k
142.250.74.33200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e1a49a417f8b9d62a662f9114f85aa10
6743f2cbfcc78f6f4d5850054d131daa874e5854
896d3d489f353b7b4f3995e0ec155ac30e0a76f5d02e2a2d4cfdc728d2db982f
GET /Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4149
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/MUPGu0O56o8-QMkKscE3CPifsjgt6ANAQg0hFmBC_2IZHcoRELyOcjAUCx2Mh1TDR99hxg6J36DpZfPFZVVCx2Jv5ySfrdP0Vl19=h400
142.250.74.33200 OK 249 kB URL HTTP/2 lh3.googleusercontent.com/MUPGu0O56o8-QMkKscE3CPifsjgt6ANAQg0hFmBC_2IZHcoRELyOcjAUCx2Mh1TDR99hxg6J36DpZfPFZVVCx2Jv5ySfrdP0Vl19=h400
IP 142.250.74.33:0
File type PNG image data, 600 x 400, 8-bit/color RGB, non-interlaced\012- data
Size 249 kB (248984 bytes)
Hash c47dc1932ce0949089a03aecf8c3a393
91c7783ac3b54ba352c2ee21ce9b9fdef413d921
627a87aff7fdd2f2ca9f18a750a4d17b52d85d84bb5efa29dda93f2984a85fff
GET /MUPGu0O56o8-QMkKscE3CPifsjgt6ANAQg0hFmBC_2IZHcoRELyOcjAUCx2Mh1TDR99hxg6J36DpZfPFZVVCx2Jv5ySfrdP0Vl19=h400 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 248984
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/FIVTOXvq6laXQrp0B60K6iEW3cNRD-q9FRmpI0bMe7EZ7_spGs6ZlA0gqEnTRkc7xbJhP6lzZQ6l0B0u_QD_GOp4DBF-oQdwPr7P3g=s100-k
142.250.74.33200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/FIVTOXvq6laXQrp0B60K6iEW3cNRD-q9FRmpI0bMe7EZ7_spGs6ZlA0gqEnTRkc7xbJhP6lzZQ6l0B0u_QD_GOp4DBF-oQdwPr7P3g=s100-k
IP 142.250.74.33:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 3e8c5eeb5098558b47ad4ac487acb1da
8210b22c6f9261852d3aac4d046d4d6e7bc3bd4a
b247a5170be58f469f193e510e3b341ba5c36f8a83d8cdd523f54f1a50b9fc4d
GET /FIVTOXvq6laXQrp0B60K6iEW3cNRD-q9FRmpI0bMe7EZ7_spGs6ZlA0gqEnTRkc7xbJhP6lzZQ6l0B0u_QD_GOp4DBF-oQdwPr7P3g=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4354
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/opensea-white.svg
79.137.192.1200 OK 5.3 kB URL HTTP/2 kanyepromo-opensea.com/assets/opensea-white.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Hash b43056562b56acb96bcfa4aeaa677cfc
31e939f06073f2305b2a5aa01efb843cc88e6070
3878856e4b34a3aaa87e0d4683ca4308e3901e0e53dd72c0f6cb252f05abc0dd
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/opensea-white.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"231d-18360756978"
last-modified: Wed, 21 Sep 2022 14:30:51 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
lh3.googleusercontent.com/-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s100-k
142.250.74.33200 OK 7.4 kB URL HTTP/2 lh3.googleusercontent.com/-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s100-k
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 8f4ddd4f44a9b17b75b66081f6782036
ca31bfbe591045dd03a3e05b0961e8fee3bb36cc
0100b633d2e854dfa33ab3fbe4c811e6f56ea778d166b08ac32cd1c52c005855
GET /-KPJ50NlXWoewaVEmtUVkCa6cg0XBeW42WyYWx2HlV5gKKS_Ka1eKOFB5ok3kKu96_Ty3WWgBYm8V8uUy1C22K_edus8NiPU3Vrc=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 7406
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/68rX2PncOkLJXWkA7RovyUsjfRmxratOJyI-obEOqxmIthfNO6rbL94CB52htTXYeuceVAA2zYRlLmaCMbcV6DQF5QONU7ox03r7Hg=s100-k
142.250.74.33200 OK 2.8 kB URL HTTP/2 lh3.googleusercontent.com/68rX2PncOkLJXWkA7RovyUsjfRmxratOJyI-obEOqxmIthfNO6rbL94CB52htTXYeuceVAA2zYRlLmaCMbcV6DQF5QONU7ox03r7Hg=s100-k
IP 142.250.74.33:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 9cd6956c1ab412b3dfc4299cbc41769d
db522d4dc2fce4f02a09bcb45acbbbff706dc49b
e48822c2737f4dee163e4938156408fccb9cfafb09e67aa8f32f4104a1017075
GET /68rX2PncOkLJXWkA7RovyUsjfRmxratOJyI-obEOqxmIthfNO6rbL94CB52htTXYeuceVAA2zYRlLmaCMbcV6DQF5QONU7ox03r7Hg=s100-k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2784
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:42:18 GMT
expires: Sun, 25 Sep 2022 07:36:41 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/gif
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ffb1ee0c677f670f393bc590d5c6bd11
494d666d08ace557a8b22aff6045d24bd68c1844
8d9e49545b65e314e949a0d012c664fbe8d2dae912906d1506c2e1243f154258
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 26 Sep 2022 02:42:18 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f864de16e2c738477abbf4addaae65f8
30fff82640e6e005aa148ef47d7de74a741c2467
0882106567d5f02552bcaf89d607f9c2d945191dad38332843dfe355f7d5d6c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
216.58.207.234200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash bdc93e91dd009cc4eff18835b00d26f2
307f8e772a11bdc38326bb436d16a9e5cd811c3e
e4653eddbed6a37c9c011a80426a776c5592dc63fd1d1e3a0fb2d874c301d005
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 26 Sep 2022 02:42:18 GMT
server: ESF
cache-control: private
content-length: 30644
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
142.250.74.182200 OK 24 kB URL HTTP/2 i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
IP 142.250.74.182:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 94d015ce62cec9dc2c61420a977da42b
c657a723c06ab007f5dd99b12bcbc500f534bded
cc374be9c2cde17b898c0a88a66162c972adf073e335828e60555b699c76b58e
GET /vi_webp/gfGuPd1CELo/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24130
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 01:08:52 GMT
expires: Mon, 26 Sep 2022 03:08:52 GMT
cache-control: public, max-age=7200
age: 5606
etag: "1633564202"
content-type: image/webp
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f864de16e2c738477abbf4addaae65f8
30fff82640e6e005aa148ef47d7de74a741c2467
0882106567d5f02552bcaf89d607f9c2d945191dad38332843dfe355f7d5d6c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.2 kB URL HTTP/2 yt3.ggpht.com/uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 184161ae4a7d95a66d334b8e86b5c138
177f1960c06ecd54e8b15728d5e8491b9e049abf
f4cd6bdb68a11d75123376a8d84333fd2e97059aa3185ca07ae443378bb2d47d
GET /uPCDZ2LTlORkwQ8e_cj5B-ax9KBoVZA0xxp6wWiUH2deSV8uoaV6gjvr7pL1-0sGrPr_5yK7_ww=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2154
x-xss-protection: 0
date: Mon, 26 Sep 2022 02:28:53 GMT
expires: Wed, 15 Jun 2022 06:31:56 GMT
cache-control: public, max-age=86400, no-transform
age: 805
etag: "v2"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 02:42:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35828)
Hash 1ed889cab64ed21b731024b197a7a51c
ac82dc07537c66a13443af1b52503291de1ade7e
253b4a86a0907fa19514319f0238b813391fde9211a048823cae7220a432442e
GET /js/th/nrTPYF1MeWhW5u-1uricHJVJdskICRuFTkjv60UEiAs.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 14:55:01 GMT
expires: Mon, 25 Sep 2023 14:55:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 15:00:00 GMT
content-type: text/javascript
age: 42437
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Mon, 26 Sep 2022 02:42:18 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
216.58.207.234200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 216.58.207.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 64be77f4a344e7752678599aa1d3b5c1
4b414a5034fb364ddcf0a0f9579c20c5f72325c9
ce90dfff2b03d08084e9e54b6a8a0136b153868bb17529d55bdfda13a2f47043
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1290
Origin: https://www.youtube-nocookie.com
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 26 Sep 2022 02:42:18 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16490
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 02:42:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16490
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 02:42:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16490
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 02:42:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482bbbab-8d4a-43bf-97c2-03195a0c4728.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482bbbab-8d4a-43bf-97c2-03195a0c4728.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df232ef0ea9d0b4a9b09ac2dd4b7400e
edc368bb92286a5d05e1b293bfd746abafab73f3
acf969d64c6e5d5cb2a241c1667723dba99cf036045216d4a657e3825139a329
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F482bbbab-8d4a-43bf-97c2-03195a0c4728.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8472
x-amzn-requestid: f3ae857d-7aa9-4152-9704-3548d2eba00c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCS0yHs5oAMFuyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb51-0289bafe2314016d2adbd04a;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hqXssdQpIqUINmk6_C4_Lim1mS8DotKprYObl0UFYUFqMCBbxAKbzA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:09:02 GMT
age: 16396
etag: "edc368bb92286a5d05e1b293bfd746abafab73f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:19 GMT
age: 18299
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: mToVKJcSAtJB1AOuQ-Y9o_EZzyhUuZJivVa3DLql5FwzK4NC82kh5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:06:17 GMT
age: 16561
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 988b0c94c41a21c736b330c3256d0a3c
c16a6f018bd80c6390b7a07f4e6698db7bfd28b0
3034912f83810b3999ffa90f5eeaf0f45773c592cfd3cf2bfb794ea1b150158c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f164d87-257d-468b-9a99-3559bced005c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9070
x-amzn-requestid: 2aceb075-d4bc-45b8-8330-5e719c565f77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKEEdPoAMFsNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca40-3f120e0774b1d58a08898c39;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:08 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: feNiTFDhUx-BfoiybnKj83hCq6CCoiMeOSEHyFs8b7cLIgKvnO1Cdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
age: 16606
etag: "c16a6f018bd80c6390b7a07f4e6698db7bfd28b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d79a3a5bd7dc7aa6cab306176fafd11
0d5cb1f3e3ea510308034a5e569c0e65fae30835
57979dfcf6fdc76f04e4790c2b94b876e188ac780aa49d9bfc8a58c498dc4203
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f39b5b4-f60c-42d8-9916-f71d7998f158.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: e7b997d7-f9ce-40c6-b9bb-372ee10d8ad0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTAfEX5oAMFcHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb9c-31e295e33ead940f381121a1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:43:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p7rimTrmOgUnwPuESSKSrsWlzhiSBJYx9h8XIacxP8DUyyvXye2iyg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:49:56 GMT
age: 17542
etag: "0d5cb1f3e3ea510308034a5e569c0e65fae30835"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGRBCfCtZkeYhbTpaE18IpIgUtOHyttE-0hRk8fWVB9sJS2rSbP22g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:05:32 GMT
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
age: 16606
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/photography-category.png
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/photography-category.png
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/photography-category.png HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: image/png
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"34944-18360756590"
last-modified: Wed, 21 Sep 2022 14:30:50 GMT
content-length: 215364
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/opensea.svg
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/opensea.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/opensea.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"26eb-18360756978"
last-modified: Wed, 21 Sep 2022 14:30:51 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob4.svg
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/jeykob4.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/jeykob4.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"442-183608cfca0"
last-modified: Wed, 21 Sep 2022 14:56:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob6.svg
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/jeykob6.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/jeykob6.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"426-183608cfca0"
last-modified: Wed, 21 Sep 2022 14:56:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/9e0b79f72d163b3c.css
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/9e0b79f72d163b3c.css
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/9e0b79f72d163b3c.css HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"4d4b-183607584d0"
last-modified: Wed, 21 Sep 2022 14:30:58 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
embed.tawk.to/
172.67.38.66404 Not Found 0 B IP 172.67.38.66:0
GET / HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kanyepromo-opensea.com
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Mon, 26 Sep 2022 02:42:18 GMT
content-type: application/x-javascript
strict-transport-security: max-age=0; includeSubDomains; preload
cache-control: max-age=7200
cf-cache-status: EXPIRED
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53ecea20b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.opensea.io/solana-just-s-symbol-colored.svg
104.18.17.184200 OK 0 B URL HTTP/2 static.opensea.io/solana-just-s-symbol-colored.svg
IP 104.18.17.184:0
GET /solana-just-s-symbol-colored.svg HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdtx77gMfBaQfpNBxKmlrpK6STSHCf8N082y91u9AyKDj2advTmxBZ78EL2JlzirIup9YwDLmqXG3DUfK_GQ6O3J
x-goog-generation: 1649434880780382
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2516
x-goog-hash: crc32c=dIm3wQ==, md5=H8Qgo0mSQ3x1drRQ74VbDA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
last-modified: Fri, 08 Apr 2022 16:21:20 GMT
etag: W/"1fc420a34992437c7576b450ef855b0c"
cache-control: public,max-age=3600
cf-cache-status: HIT
set-cookie: __cf_bm=2JUAZWL9GUx6M7R9jVIoCCQqL.OmiRINvY5aB7CZ4O0-1664160137-0-ATtz7WvafxgEzjeAUqUmV9v/oTlZAlxseGsG+nq/nGGXz/0DxYyW+r6kOL6kinYMudPNxOfSpvOdOpR9jgL+3BY=; path=/; expires=Mon, 26-Sep-22 03:12:17 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a539ba6db4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/d5bba8aa69ee4494.css
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/d5bba8aa69ee4494.css
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/d5bba8aa69ee4494.css HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"93a-18360757148"
last-modified: Wed, 21 Sep 2022 14:30:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/assets/jeykob3.svg
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/assets/jeykob3.svg
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/jeykob3.svg HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/svg+xml
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"495-183608cfca0"
last-modified: Wed, 21 Sep 2022 14:56:36 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/
79.137.192.1200 OK 0 B IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
date: Mon, 26 Sep 2022 02:42:16 GMT
etag: "21d3b-+z2v2UCY4ZBBo0eOXFYbT0oeGMQ"
vary: Accept-Encoding
x-powered-by: Next.js
X-Firefox-Spdy: h2
www.youtube-nocookie.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube-nocookie.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
IP 216.58.207.206:0
GET /embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 26 Sep 2022 02:42:17 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="YOUTUBE_NOCOOKIE_DOMAIN"
report-to: {"group":"YOUTUBE_NOCOOKIE_DOMAIN","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/YOUTUBE_NOCOOKIE_DOMAIN"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: CONSENT=PENDING+894; expires=Wed, 25-Sep-2024 02:42:17 GMT; path=/; domain=.youtube-nocookie.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kanyepromo-opensea.com/_next/static/chunks/pages/index-7df6380b1fa4a9a9.js
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/_next/static/chunks/pages/index-7df6380b1fa4a9a9.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/chunks/pages/index-7df6380b1fa4a9a9.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"26f30-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
kanyepromo-opensea.com/_next/static/chunks/framework-75db3117d1377048.js
79.137.192.1200 OK 0 B URL HTTP/2 kanyepromo-opensea.com/_next/static/chunks/framework-75db3117d1377048.js
IP 79.137.192.1:0
ASN #12695 LLC Digital Network
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /_next/static/chunks/framework-75db3117d1377048.js HTTP/1.1
Host: kanyepromo-opensea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=31536000, immutable
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Mon, 26 Sep 2022 02:42:17 GMT
etag: W/"225e2-183608eb9f0"
last-modified: Wed, 21 Sep 2022 14:58:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.opensea.io/gas-free/video-background.svg
104.18.17.184200 OK 0 B URL HTTP/2 static.opensea.io/gas-free/video-background.svg
IP 104.18.17.184:0
GET /gas-free/video-background.svg HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Cookie: __cf_bm=2JUAZWL9GUx6M7R9jVIoCCQqL.OmiRINvY5aB7CZ4O0-1664160137-0-ATtz7WvafxgEzjeAUqUmV9v/oTlZAlxseGsG+nq/nGGXz/0DxYyW+r6kOL6kinYMudPNxOfSpvOdOpR9jgL+3BY=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdsxojcnulZqGzebcGxwyZ6tAwbLU7RFOMKii4jfzZyDtLkwZUttA3UhaDDzUr_tR6S-zt5Ua4jWjidLrjR59tZ8i8DpPu0o
x-goog-generation: 1630524348914119
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20064
x-goog-hash: crc32c=8vorDw==, md5=9AtoCsBIAExuRya7g4YFUA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Wed, 01 Sep 2021 19:25:48 GMT
etag: W/"f40b680ac048004c6e4726bb83860550"
cache-control: public,max-age=3600
cf-cache-status: REVALIDATED
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53c7bf5b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/LAConfidential.png
104.18.3.144200 OK 0 B URL HTTP/2 openseauserdata.com/static/promocards/LAConfidential.png
IP 104.18.3.144:0
GET /static/promocards/LAConfidential.png HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kanyepromo-opensea.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 02:42:17 GMT
content-type: image/png
content-length: 1035651
x-guploader-uploadid: ADPycduJ1jrBhC0xfaz6tV8gdOCDUHFU3vXIX5kNwaD1ddl0zahIvlBCy4xgfbR4-ucmB8XCvbXccDXM_xfPeRlHBV6r7Q
expires: Mon, 26 Sep 2022 06:42:17 GMT
cache-control: public, max-age=14400
last-modified: Wed, 07 Sep 2022 23:52:55 GMT
etag: "20316030e9232b41612cbe7f43ae452b"
x-goog-generation: 1662594775296667
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1035651
x-goog-hash: crc32c=yyBX8A==, md5=IDFgMOkjK0FhLL5/Q65FKw==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7508a53c7bc90b41-OSL
X-Firefox-Spdy: h2