www.maskmeta.cyou/images/mm-logo.svg
194.124.216.72200 OK 12 kB URL GET HTTP/2 www.maskmeta.cyou/images/mm-logo.svg
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1001)
Hash 51bcea2625eb2c6e9268a7377a792c86
5eeb306e6584eed1747c36c11724f193711d430e
5e722754f038988ba4b6d7f380d60191eba3b6e01d4a00749a28b79c53521f5b
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/mm-logo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 12019
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-2ef3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/social-35.svg
194.124.216.72200 OK 602 B URL GET HTTP/2 www.maskmeta.cyou/images/social-35.svg
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d5e7fa6bfac5cb057e4974b17d5f0e53
fd3f64fd6b8fc6bb097bcd065337c70d8d2cef37
bcba47e61462fcaa7a59953d7af48a777438587b79faf7fcda5831cea8e9a7da
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/social-35.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 602
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-25a"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/wallet-illo.svg
194.124.216.72200 OK 36 kB URL GET HTTP/2 www.maskmeta.cyou/images/wallet-illo.svg
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1199)
Hash 63ad7f01f67accd6aafb47999640abe5
5ed10575a1a39d5b02840416a281fb1e655bd423
596228062de19a21cfda4d3129b3a5d397c5a71509e096b8f67fb8c4f22aa56d
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/wallet-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 36437
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-8e55"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/Explore-illo.svg
194.124.216.72200 OK 37 kB URL GET HTTP/2 www.maskmeta.cyou/images/Explore-illo.svg
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1527)
Hash 46fb450c5ecf6da758bca0975551f056
629157e884b450ecf5a94d38d736db3c7428245f
8ba2b37fd4f2f3c19c10109bc6111d3d71692c78f9351f1eb2a8cab5231b77b5
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/Explore-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 36835
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-8fe3"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/YVgfHZMFFFQ/sddefault.webp
142.250.74.182200 OK 18 kB URL GET HTTP/2 i.ytimg.com/vi_webp/YVgfHZMFFFQ/sddefault.webp
IP 142.250.74.182:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint30:FC:ED:56:9F:85:39:F1:1B:87:3B:5E:09:20:49:BB:39:CC:EA:8D
ValidityMon, 16 Oct 2023 08:02:25 GMT - Mon, 08 Jan 2024 08:02:24 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d288755975f12c1b804cce683a56b56b
af27df3ca58c18ccfa231b3ad5089e11b29fb4e1
f27731898ea8846c9a9f428fb8cbe2da7c832a4bb6032af7b4b7f0c64f81de55
GET /vi_webp/YVgfHZMFFFQ/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18434
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 09:50:28 GMT
expires: Fri, 03 Nov 2023 11:50:28 GMT
cache-control: public, max-age=7200
age: 6446
etag: "1582837014"
content-type: image/webp
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/Browse-illo.svg
194.124.216.72200 OK 28 kB URL GET HTTP/2 www.maskmeta.cyou/images/Browse-illo.svg
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2226)
Hash afeafb6a9f14bd7771c63015be5a05c9
78683c75d81cf80440f083e9fb4bb2987748e290
517c0c6b44ede59070fb138aab7e875b9c230a227295f9612c32dabb9b0bdb13
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/Browse-illo.svg HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/svg+xml
content-length: 28164
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-6e04"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-aave.png
194.124.216.72200 OK 14 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-aave.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash 521a00d54b7fe1cb1d7712b655ca54a6
8c5aa52335bf25183781e62843ede770bf6877ba
506d6d9d5ad22253976f2906bbf141c94d19eb15466ed62b8c6cfb887bf07b55
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-aave.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 14347
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-380b"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-axieinfinity.png
194.124.216.72200 OK 43 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-axieinfinity.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f662391fe3ddc927134ba8e15263eaf
ab5ea7aacdc8c97238247f59761abc02033b2a67
7faefc7f99e94d6251527c95794a5fdfb3e644baf25ae56f4e13afd125246421
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-axieinfinity.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 42713
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-a6d9"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-compound.png
194.124.216.72200 OK 11 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-compound.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 3818f9cfccbd94fad91a10d3c5ee356c
7c6af849177aa8bf6ef9bcbf801dc375e1997900
20a34c84f82590d99a060210ea362878975f21cfd65c3a70c54e7fb99dce1f76
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-compound.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 11355
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-2c5b"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-gitcoin.png
194.124.216.72200 OK 8.0 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-gitcoin.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash c710e9a5c39e89136a73edf0a1c99abe
aca40362b7d87533d00250e102ba852d19e2231c
7077eb7da3a6f399014d67a1032ab6d67f099055a1a2594cb4753022b843dc43
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-gitcoin.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 7998
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1f3e"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-maker.png
194.124.216.72200 OK 6.9 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-maker.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 720871ca002e89a10d26e5c516066311
8648fe12645cd5c3473a73faba1d42cef78de444
f0d7356ee903d26301b8960783f70c108efc0382f20c804e0d09872a5443ce96
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-maker.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6852
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1ac4"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-opensea.png
194.124.216.72200 OK 6.5 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-opensea.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash f82776f839cec899c9c87a680226aabf
43f5dedb6216cb02ee568fcb66cb19fc296c3a85
c62a1f30cdb6aff5eafdfccb45383032e61bf70aa0573572a4428347a1b5b116
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-opensea.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6533
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1985"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-rarible.png
194.124.216.72200 OK 6.8 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-rarible.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 560 x 560, 8-bit/color RGBA, non-interlaced\012- data
Hash b9f7c0fd11c34c044799e673947103f8
491baab057af39b2b24bf0c671d0eb05454b8c48
29db12a282df5639db8fa232831bbe9a7220884eecf79f1776f1b27237a4597c
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-rarible.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 6840
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-1ab8"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/dapp-uniswap.png
194.124.216.72200 OK 10 kB URL GET HTTP/2 www.maskmeta.cyou/images/dapp-uniswap.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 1948962ad395727d902bd6b5fcd01807
f7e85e096b084ef6d9f550afbcd702fd889031a5
ad0237265584181a6797c454ca123aa5d3df08001ae39b27bddfc66856b6751b
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/dapp-uniswap.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 10268
last-modified: Fri, 10 Sep 2021 16:15:20 GMT
etag: "613b8498-281c"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/mm-shop-hoodie.webp
194.124.216.72200 OK 40 kB URL GET HTTP/2 www.maskmeta.cyou/images/mm-shop-hoodie.webp
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash e3357edaca1414398f4718c0c0816513
e909e243cd3891d283e4567d39d18c7108d5b693
12101946345b34460572862174ba2b964eed74d428181cd26686a95f6e2456c3
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/mm-shop-hoodie.webp HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/webp
content-length: 40434
last-modified: Tue, 19 Sep 2023 04:04:48 GMT
etag: "65091de0-9df2"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/images/hero2.2.png
194.124.216.72200 OK 590 kB URL GET HTTP/2 www.maskmeta.cyou/images/hero2.2.png
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type PNG image data, 1752 x 1452, 8-bit/color RGBA, non-interlaced\012- data
Size 590 kB (589568 bytes)
Hash d0ec70f4c666fbf6ad0d30a52d08c5c9
e48f0688bc4f592824840478d12c05df0dd12002
3f4bfc7c6cc471e9d95936dc109852c4f6a4bf1163b63eeabfe840565d5ad8d1
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /images/hero2.2.png HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: image/png
content-length: 589568
last-modified: Fri, 10 Sep 2021 16:16:30 GMT
etag: "613b84de-8ff00"
expires: Sun, 03 Dec 2023 11:37:54 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/fonts/EuclidCircularB-Regular-WebXL.woff2
194.124.216.72200 OK 45 kB URL GET HTTP/2 www.maskmeta.cyou/fonts/EuclidCircularB-Regular-WebXL.woff2
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 45196, version 3.66\012- data
Hash 2d75957df3bb3aa6ed84f6591b0d5a1a
906424e75625f63b0188471067065794d0348536
8ff3b303322168b49a14878f195dbaf76d9da16e35094d1f83fa23245450155b
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /fonts/EuclidCircularB-Regular-WebXL.woff2 HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: font/woff2
content-length: 45196
last-modified: Fri, 10 Sep 2021 16:16:34 GMT
etag: "613b84e2-b08c"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.maskmeta.cyou/fonts/EuclidCircularB-Bold-WebXL.woff2
194.124.216.72200 OK 44 kB URL GET HTTP/2 www.maskmeta.cyou/fonts/EuclidCircularB-Bold-WebXL.woff2
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 44544, version 3.66\012- data
Hash 9024d0bf73943172297c4628d0054e20
36c3795e7b297d06589e15ef59592683d9ed0974
88fad87880ae6bb0d733c967419d5f0d68da547a88ad67e7af41f18dae2e20df
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /fonts/EuclidCircularB-Bold-WebXL.woff2 HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/css/metamask-staging-2.webflow.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: font/woff2
content-length: 44544
last-modified: Fri, 10 Sep 2021 16:16:34 GMT
etag: "613b84e2-ae00"
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=
104.18.160.125200 OK 2.1 kB URL GET HTTP/1.1 forms.hsforms.com/embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk=
IP 104.18.160.125:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (5788), with no line terminators
Hash 1700f58db34cb53b413c353cf49d370c
47958f3c7f75d75c2724e41395ebf83e2931298f
cf8936a468aa91216c20913df910d73d233e90c2bc32ef0fc761d364049df3d6
GET /embed/v3/form/4795067/2b64112b-f442-4840-9ace-b11dccd5f744?callback=hs_reqwest_0&hutk= HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Nov 2023 11:37:55 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace: 2BB9D1BBBA5320F8D91CB9C68E908AC0E9D2D655A6000000000000000000
X-Origin-Hublet: na1
Vary: origin
Content-Disposition: attachment; filename=no-rfd.txt
X-Content-Type-Options: nosniff
Access-Control-Allow-Credentials: false
Access-Control-Expose-Headers: X-Origin-Hublet
Cache-Control: max-age=0, no-cache, no-store
X-Robots-Tag: none
x-envoy-upstream-service-time: 12
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-79986f96f-jt4pd
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: b83e70ba-23d8-4caa-851b-a9a896349b17
x-request-id: b83e70ba-23d8-4caa-851b-a9a896349b17
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 820453f6de1d569a-OSL
Content-Encoding: br
alt-svc: h3=":443"; ma=86400
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js
172.217.21.174200 OK 18 kB URL GET HTTP/3 www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/embed.js
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (3391)
Hash 00fcd8f19f33cdd43dfbd93f93b1cacf
22652f87a2dbe4da673b3b8957c76f122e803559
84903214c4c40def6908be4fb42fd9f2b01ef82af69eee3ec6c8dbcbdaa6a7e7
GET /s/player/9d15588c/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:55 GMT
expires: Thu, 31 Oct 2024 07:37:55 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187200
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/9d15588c/www-player.css
172.217.21.174200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/9d15588c/www-player.css
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8dc2aaffee01544d7c0dfdc2d7600ce0
1499c1b257ee75da64ef5046d3ac9002ab302cb4
59640f904cf8abdc7a1d4189f3bb6ab83bfd60a8dd251a0abb5d5d3ab8a11b24
GET /s/player/9d15588c/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48897
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:28:21 GMT
expires: Thu, 31 Oct 2024 07:28:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 187774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.maskmeta.cyou/forms/v2.js
194.124.216.72200 OK 172 kB URL GET HTTP/2 www.maskmeta.cyou/forms/v2.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type gzip compressed data, from Unix\012- data
Size 172 kB (171594 bytes)
Hash cb15f230be11783ec3adfbb28e5d27a6
eeb5c44541cfb5bba5db3b155424b32123d76c92
794c71eac53b361625cff532e75f273b6a0987a85b39b36db7986f09b71a6e47
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /forms/v2.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-8e7e2"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js
172.217.21.174200 OK 98 kB URL GET HTTP/3 www.youtube.com/s/player/9d15588c/www-embed-player.vflset/www-embed-player.js
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (682)
Hash a7c1c62310f68f1a1c6a0b75b5039eec
f0907153b862018c2938c3ce5c7d1faf060903ed
781ca116ffbdbcc5677786946676f2fa8bd27fbb34137972524a4a11cc885a28
GET /s/player/9d15588c/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 98339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:28:21 GMT
expires: Thu, 31 Oct 2024 07:28:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566274
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2
IP 216.58.207.227:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 61e86e7a20ecf3ba181ca4b9a9a1cdbd
482a65cffc69109af26669d64accbef71db3b836
fbd0536d5b92c0dbe6ad2637800ae8da10c20755b564a3575bd12bba57f73b18
GET /s/changaone/v20/xfu00W3wXn3QLUJXhzq42AHiuQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.maskmeta.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 18:15:30 GMT
expires: Sat, 26 Oct 2024 18:15:30 GMT
cache-control: public, max-age=31536000
age: 580945
last-modified: Thu, 24 Aug 2023 21:10:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.maskmeta.cyou/css/normalize.css
194.124.216.72200 OK 18 kB URL GET HTTP/2 www.maskmeta.cyou/css/normalize.css
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type gzip compressed data, from Unix\012- data
Hash 093e57ec70621b48b203728a5f17f1fb
de68672ba458edf528d9c9313c78282ca773f79e
72356db52dce44ca38e6f2f3e40812697938bce0047d56045dca7e5398b182b7
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /css/normalize.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-1e5c"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2
216.58.207.227200 OK 8.4 kB URL GET HTTP/2 fonts.gstatic.com/s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2
IP 216.58.207.227:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 8404, version 1.0\012- data
Hash 141119ae119bf7ca75e10ef82f66e442
adebf435aa078db3c116cb9faae15f2ad81d3ac5
c6afeb967afd466210e4061473c4855684e84b7e850b248c0533e6288acfbaff
GET /s/changaone/v20/xfu20W3wXn3QLUJXhzq42ATSu5_f.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.maskmeta.cyou
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 18:24:00 GMT
expires: Sat, 26 Oct 2024 18:24:00 GMT
cache-control: public, max-age=31536000
age: 580435
last-modified: Thu, 24 Aug 2023 20:56:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js
172.217.21.174200 OK 775 kB URL GET HTTP/3 www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/base.js
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (555)
Size 775 kB (774756 bytes)
Hash fc1b6b72d00a8f12c728d41730980d5a
6e2c1a91c7802aed7603a0f2bac758d29a9ef30f
ff66acf8eba8a719216c7d21bed3c0e6daef74c80ade61a784a21db4913ad8f4
GET /s/player/9d15588c/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 774756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:23 GMT
expires: Thu, 31 Oct 2024 07:37:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187232
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.maskmeta.cyou/logo.js
194.124.216.72200 OK 13 kB URL GET HTTP/2 www.maskmeta.cyou/logo.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type gzip compressed data, from Unix\012- data
Hash a720ccd03054421a31d48f1148c94d4b
5c039007f70ffd1292b515a28824e6ea4f42750e
4f8ebfae984b035cc3f0e7a882d487689084c84739397377a84685c3bdb3cd13
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /logo.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-b430"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.maskmeta.cyou/metamask.io/images/favicon.html
194.124.216.72404 Not Found 146 B URL GET HTTP/2 www.maskmeta.cyou/metamask.io/images/favicon.html
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /metamask.io/images/favicon.html HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 03 Nov 2023 11:37:55 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2
www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true
142.250.74.164200 OK 192 kB URL GET HTTP/2 www.google.com/recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true
IP 142.250.74.164:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintF5:CC:DA:B5:BA:1E:14:14:44:CC:27:90:92:CC:60:1F:5F:08:AF:77
ValidityMon, 16 Oct 2023 08:10:46 GMT - Mon, 08 Jan 2024 08:10:45 GMT
File type ASCII text, with very long lines (1022)
Size 192 kB (191990 bytes)
Hash 6e982746dd21d96b621902a398c8a218
8a6d139e1ce24f4e149998d8fbbb0cfbfadd249a
d429bb46cf31712fda8b3a7f0212ec70b036f7f2b9b235b5fcc84658591f3633
GET /recaptcha/enterprise.js?onload=hsRecaptchaLoadCallback&render=explicit&isolated=true HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
expires: Fri, 03 Nov 2023 11:37:55 GMT
date: Fri, 03 Nov 2023 11:37:55 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.maskmeta.cyou/css/webflow.css
194.124.216.72200 OK 34 kB URL GET HTTP/2 www.maskmeta.cyou/css/webflow.css
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type gzip compressed data, from Unix\012- data
Hash b9de0c7001e21e90dc91815fd1a6f58d
a6b804f595726dff793589c8ffa46b21e72d7c61
d624cbbdf573522698236095cb8c6a259dc6cfa8e96786a4c068be215ba9bf05
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /css/webflow.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-98c5"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 10:47:27 GMT
expires: Sat, 02 Nov 2024 10:47:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/css
vary: Accept-Encoding
age: 3029
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067
104.18.160.125200 OK 35 B URL GET HTTP/3 perf.hsforms.com/embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067
IP 104.18.160.125:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-next-recaptcha-viewed&count=1&portalId=4795067 HTTP/1.1
Host: perf.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 03 Nov 2023 11:37:56 GMT
content-type: image/gif
content-length: 35
x-trace: 2B495745272CA0CEDCF6ED6627397722C6A66FB843000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin, Accept-Encoding
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 17
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-79986f96f-rwf2n
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: f36fb4da-3132-4abf-b579-3505466720e6
x-request-id: f36fb4da-3132-4abf-b579-3505466720e6
last-modified: Fri, 03 Nov 2023 11:37:56 GMT
cf-cache-status: MISS
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 820453ff2f680b55-OSL
alt-svc: h3=":443"; ma=86400
www.maskmeta.cyou/gtag/js.js
194.124.216.72200 OK 236 kB URL GET HTTP/2 www.maskmeta.cyou/gtag/js.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type ASCII text, with very long lines (2077)
Size 236 kB (235577 bytes)
Hash e20b46e9decc09d9e9444d4ef971fb52
f0afc49fa2328b8349f6eb33d61e75fa8787790a
6f6a8f2fefaf4093dc609663a60daee63c0b28a0ac4064dd2a9a4f026962a622
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /gtag/js.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-1949c"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js
194.124.216.72200 OK 21 kB URL GET HTTP/2 www.maskmeta.cyou/ajax/libs/webfont/1.6.26/webfont.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type gzip compressed data, from Unix\012- data
Hash 073013d01319de3ac70107e6f0b8875e
bac2b35f378cb6ff072d9cf9b497cade0e3f153f
372e122845d5619169d89df424932c4bdf475fa373f9ddcebf067b5b777153ce
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-3384"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566275
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr
142.250.74.164200 OK 2.3 kB URL GET HTTP/3 www.google.com/recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type gzip compressed data\012- data
Hash 74706ed3628f57f62a9a167ceee0ed91
7a31f43d5d7b468472d9db96a492d4631ac416b6
718a7b82f67a521aefbb3fe6957b3c59ec42b9617331577271b8af293a905272
GET /recaptcha/enterprise/webworker.js?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
expires: Fri, 03 Nov 2023 11:37:56 GMT
date: Fri, 03 Nov 2023 11:37:56 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
142.250.74.35200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (537)
Size 191 kB (191376 bytes)
Hash 0de5995e9ac19853eeffb8bbe74e6a7d
719e6fbcd0b38df859a6f7a8c51a820d7bf5970d
c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37
GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 191376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:07:32 GMT
expires: Thu, 31 Oct 2024 15:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 160224
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.ytimg.com/vi/YVgfHZMFFFQ/default.jpg
142.250.74.182200 OK 2.5 kB URL GET HTTP/3 i.ytimg.com/vi/YVgfHZMFFFQ/default.jpg
IP 142.250.74.182:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint30:FC:ED:56:9F:85:39:F1:1B:87:3B:5E:09:20:49:BB:39:CC:EA:8D
ValidityMon, 16 Oct 2023 08:02:25 GMT - Mon, 08 Jan 2024 08:02:24 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 45fee137d2228a1f262812895de57314
7bc9d830a8bac5d4cfdc56ff1224225a9bf1f982
dd603175ee9073585d706f1d8c6f328e6b06bc9e28faae47a5b92f09cd837c75
GET /vi/YVgfHZMFFFQ/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 2528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 11:19:36 GMT
expires: Fri, 03 Nov 2023 13:19:36 GMT
cache-control: public, max-age=7200
etag: "1582837014"
content-type: image/jpeg
vary: Origin
age: 1100
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Nov 2023 11:37:56 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js
142.250.74.164200 OK 15 kB URL GET HTTP/3 www.google.com/js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js
IP 142.250.74.164:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (37481)
Hash 5285669a995362a19b937a27edde79d6
636a0e93e467c3428775c05e64d6aed60f0db24b
3c2a82baa45695e26f0050791ecb1a513794d413b9113cc2ff3ae967ee43c517
GET /js/th/PCqCuqRWleJvAFB5HssaUTeU1BO5ETzC_zrpZ-5DxRc.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 11:15:58 GMT
expires: Wed, 30 Oct 2024 11:15:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 10 Oct 2023 07:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 260518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js
172.217.21.174200 OK 34 kB URL GET HTTP/3 www.youtube.com/s/player/9d15588c/player_ias.vflset/en_US/remote.js
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (537)
Hash f402c83698e962790e687760233c98ac
7b4ea70005245292f4e1c36e896c3320a662e6c6
6840401b7255512c5b9900409a9644d4e9b3cec94134f2154c1b93f80dc7bbc0
GET /s/player/9d15588c/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 07:37:23 GMT
expires: Thu, 31 Oct 2024 07:37:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Nov 2023 01:51:00 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 187233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.74200 OK 32 kB URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 4f6c36b01fcb42911857f26ab7a10f8b
6dd96237ed6bb77edca21d8dc7de013c2fff8012
b83b2c23991dab86c14ffe35e4a3252a61a2d9c00dd5e1b5f9c3fef22be5e7dd
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:56 GMT
server: ESF
cache-control: private
content-length: 32249
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 0 B URL POST HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Nov 2023 11:37:57 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.74200 OK 110 B URL POST HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.74:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 1bdc7d1e46c89347f352cafc59481b3b
67af4809dc7352ecd96823dfcd7e45020f279b08
b698f330fd241bbefce564a648543e27a073a157a82a011f048a6cc1c8ce3d96
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1222
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:57 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (56398), with no line terminators
Hash eb4bc511f79f7a1573b45f5775b3a99b
d910fb51ad7316aa54f055079374574698e74b35
7859a62e04b0acb06516eb12454de6673883ecfaeaed6c254659bca7cd59c050
GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24606
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Nov 2023 10:47:27 GMT
expires: Sat, 02 Nov 2024 10:47:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/css
vary: Accept-Encoding
age: 3030
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
142.250.74.35200 OK 191 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type ASCII text, with very long lines (537)
Size 191 kB (191376 bytes)
Hash 0de5995e9ac19853eeffb8bbe74e6a7d
719e6fbcd0b38df859a6f7a8c51a820d7bf5970d
c7f150e7d0ed3cf657e531221f2640209e6daebed0fbaa6ab7e430ce8eb56a37
GET /recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 191376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Nov 2023 15:07:32 GMT
expires: Thu, 31 Oct 2024 15:07:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 30 Oct 2023 02:02:02 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 160225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/generate_204?8R3mIg
172.217.21.174204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?8R3mIg
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?8R3mIg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 03 Nov 2023 11:37:57 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 2.7 kB URL GET HTTP/2 yt3.ggpht.com/ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintCB:BB:D8:FC:60:AA:94:8F:47:5C:88:BB:C3:30:22:92:26:D3:85:2F
ValidityMon, 16 Oct 2023 08:09:46 GMT - Mon, 08 Jan 2024 08:09:45 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 6b9680c9e0e4b8f66f2eb05e767c68eb
1bac27e970d3f77973c4e877f56acc1b844885bd
73360daef1e2781c6fe96e9150f10f2e4bbfe239940e15aa93cad4a901e10ce7
GET /ytc/APkrFKauCeUBZZUfQdBcWGLfqZ9nV8P6uKcVDO4VmtCx=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 2716
x-xss-protection: 0
date: Fri, 03 Nov 2023 08:07:43 GMT
expires: Sat, 04 Nov 2023 08:07:43 GMT
cache-control: public, max-age=86400, no-transform
age: 12614
etag: "v1c"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 23:51:35 GMT
expires: Fri, 01 Nov 2024 23:51:35 GMT
cache-control: public, max-age=31536000
age: 42382
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 15:15:32 GMT
expires: Fri, 01 Nov 2024 15:15:32 GMT
cache-control: public, max-age=31536000
age: 73345
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Oct 2023 22:20:01 GMT
expires: Sat, 26 Oct 2024 22:20:01 GMT
cache-control: public, max-age=31536000
age: 566276
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/refresh_2x.png
142.250.74.35200 OK 600 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/refresh_2x.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f2a4639b8a4cb30c76e8333c00d30a6
57e273a270bb864970d747c74b3f0a7c8e515b13
44b988703019cd6bfa86c91840fecf2a42b611b364e3eea2f4eb63bf62714e98
GET /recaptcha/api2/refresh_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Nov 2023 15:12:23 GMT
expires: Thu, 09 Nov 2023 15:12:23 GMT
cache-control: public, max-age=604800
age: 73535
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
142.250.74.164200 OK 35 kB URL GET HTTP/3 www.google.com/recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 450x450, components 3\012- data
Hash 39bd08abc37f54e52669654c754225e0
103ed98b7545816863e6baffa79f6860c89e964a
ab8f4c0268818e3557b102e95426c2376e95135a8cdce15f38f68ae66e9cc45d
GET /recaptcha/enterprise/payload?p=06AFcWeA7VzZbnOvTc8jrTii3-sQtgcwiOJk1sQskPR-EAy_xdOnpBqvj2HPwXLLQuB9Uu0a2ftyuv4UbMerzvTT21lBVrztzLZGCtf1iFavnPkVELS5b5PUqYWZ1z3ta-Pi0tpfBDHF05V1lxy5ABsFA_v8Ujr4lj56xW_nlAZjjI_vvt53NUJZXMa5WebvxiTPXKdLJIzBFb&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Cookie: _GRECAPTCHA=09ABQWEJpF4ZwO_HSH6KwIH2r_R3S-iHUxGK9myFx4v9NNdrcz1ewFXUtQE6FQ_Re9XdNapkcBCQA6XxDiwdaJGcM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
expires: Fri, 03 Nov 2023 11:37:58 GMT
date: Fri, 03 Nov 2023 11:37:58 GMT
cache-control: private, max-age=30
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/audio_2x.png
142.250.74.35200 OK 530 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/audio_2x.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e0f42c9fa4f94aa8bcd54d1685c180
5ad9d47a49b82718baa3be88550a0b3350270c42
89c62095126fca89ea1511cf35b49b8306162946b0c26d6f60c5506c51d85992
GET /recaptcha/api2/audio_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 530
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:32:22 GMT
expires: Tue, 07 Nov 2023 05:32:22 GMT
cache-control: public, max-age=604800
age: 281136
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
172.217.21.174200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1699011479703
Content-Type: application/json
X-Goog-Visitor-Id: CgtZQkI2WTU3UUZEUSiSt5OqBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231031.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1699011475850&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 16085
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Nov 2023 11:37:59 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+112; expires=Sun, 02-Nov-2025 11:37:59 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 03 Nov 2023 11:37:59 GMT
cache-control: private
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
172.217.21.174200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP 172.217.21.174:443
Requested by https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1699011492766
Content-Type: application/json
X-Goog-Visitor-Id: CgtZQkI2WTU3UUZEUSiSt5OqBjIICgJOTxICEgA%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20231031.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1699011475850&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C0%2C0%2C0%2C0&vis=1&wgl=true&ca_type=image
Content-Length: 803
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Nov 2023 11:38:12 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+712; expires=Sun, 02-Nov-2025 11:38:12 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Fri, 03 Nov 2023 11:38:12 GMT
cache-control: private
www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
142.250.74.164200 OK 7.3 kB URL GET HTTP/3 www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP 142.250.74.164:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7486), with no line terminators
Hash 0c79af5d003281121db8953e8c95fb68
bc0e071a716e90d92f029bb3f9ceda7562ec0c5b
2e531bec2ed23b49f079c8f783c83c92166dd3596c30b9261d2adb46af55098a
GET /recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:57 GMT
content-security-policy: script-src 'nonce-C0UuYAJ7XPWEor9D962KTg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js
194.124.216.72200 OK 90 kB URL GET HTTP/2 www.maskmeta.cyou/js/jquery-3.5.1.min.dc5e7f18c8.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type ASCII text, with very long lines (65451)
Hash dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /js/jquery-3.5.1.min.dc5e7f18c8.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-15d84"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
142.250.74.164200 OK 41 kB URL POST HTTP/3 www.google.com/recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type ASCII text, with very long lines (40960)
Hash c4331ae26fab902ec9e2247868fa75ef
529769a2c014874cf96640753f6235df06b429af
cf028a4d9484a65499b9e8577a611028bdee17a821be842b08792de9d89bbddb
POST /recaptcha/enterprise/reload?k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 8330
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
date: Fri, 03 Nov 2023 11:37:57 GMT
expires: Fri, 03 Nov 2023 11:37:57 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: _GRECAPTCHA=09ABQWEJpF4ZwO_HSH6KwIH2r_R3S-iHUxGK9myFx4v9NNdrcz1ewFXUtQE6FQ_Re9XdNapkcBCQA6XxDiwdaJGcM;Path=/recaptcha;Expires=Wed, 01-May-2024 11:37:57 GMT;Secure;HttpOnly;Priority=HIGH;SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Oct 2023 05:14:09 GMT
expires: Tue, 07 Nov 2023 05:14:09 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 282227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/info_2x.png
142.250.74.35200 OK 665 B URL GET HTTP/3 www.gstatic.com/recaptcha/api2/info_2x.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/enterprise/bframe?hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintEB:59:E9:F3:0F:CE:D8:1A:8C:BB:EE:7D:2E:B7:B8:39:73:7A:CE:28
ValidityMon, 16 Oct 2023 08:10:00 GMT - Mon, 08 Jan 2024 08:09:59 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 07bf314aab04047b9e9a959ee6f63da3
17bef6602672e2fd9956381e01356245144003e5
55eaf62cb05da20088dc12b39d7d254d046cb1fd61ddf3ae641f1439efd0a5ee
GET /recaptcha/api2/info_2x.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/3sU2vDRVDmUU2E0Ro4VadvPr/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 665
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Oct 2023 11:00:47 GMT
expires: Sat, 04 Nov 2023 11:00:47 GMT
cache-control: public, max-age=604800
age: 520631
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.maskmeta.cyou/js/webflow.js
194.124.216.72200 OK 568 kB URL GET HTTP/2 www.maskmeta.cyou/js/webflow.js
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
Size 568 kB (568434 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /js/webflow.js HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: application/javascript
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-8ac72"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
142.250.74.164200 OK 60 kB URL GET HTTP/3 www.google.com/recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z
IP 142.250.74.164:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (51770)
Hash a1d21e62b20f71f9d46053c26e3fe906
fef9ae4a1bbc61bd480922b5f3db0b10850c430e
5f0b22075194af4138a56f6c8b0652af0ca1c1ebcefc78d04ce11548a590edf5
GET /recaptcha/enterprise/anchor?ar=1&k=6Ld_ad8ZAAAAAAqr0ePo1dUfAi0m4KPkCMQYwPPm&co=aHR0cHM6Ly93d3cubWFza21ldGEuY3lvdTo0NDM.&hl=en&v=3sU2vDRVDmUU2E0Ro4VadvPr&size=invisible&badge=inline&cb=9pap6faml05z HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:56 GMT
content-security-policy: script-src 'nonce-xf2KXe95_OVYK80sejtojQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Changa+One:400,400italic
142.250.74.106200 OK 800 B URL GET HTTP/2 fonts.googleapis.com/css?family=Changa+One:400,400italic
IP 142.250.74.106:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintFA:D7:68:E4:12:7D:FE:22:87:DE:95:F1:1E:49:5A:49:FA:12:1E:B9
ValidityMon, 16 Oct 2023 08:10:01 GMT - Mon, 08 Jan 2024 08:10:00 GMT
File type ASCII text, with very long lines (816), with no line terminators
Hash d649df21660305e95bf70d4282367324
4a3aeaf4830f03b873105998d8ceaa017bc0b65c
338d6967247111e7857d08db563973e8782b09601225fece0af3420e5cd2fa56
GET /css?family=Changa+One:400,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Nov 2023 11:37:54 GMT
date: Fri, 03 Nov 2023 11:37:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
172.217.21.174200 OK 93 kB URL GET HTTP/2 www.youtube.com/embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io
IP 172.217.21.174:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintFD:EE:45:21:A2:3C:95:82:9B:BA:3F:7A:59:3C:F6:C2:7B:C7:84:8F
ValidityMon, 16 Oct 2023 08:02:35 GMT - Mon, 08 Jan 2024 08:02:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/YVgfHZMFFFQ?enablejsapi=1&origin=https%3A%2F%2Fmetamask.io HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Nov 2023 11:37:55 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Vdv3kWZct60; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=YBB6Y57QFDQ; Domain=.youtube.com; Expires=Wed, 01-May-2024 11:37:55 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxICEgA%3D; Domain=.youtube.com; Expires=Wed, 01-May-2024 11:37:55 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+514; expires=Sun, 02-Nov-2025 11:37:54 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
194.124.216.72200 OK 19 kB URL User Request GET HTTP/2 IP 194.124.216.72:443
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET / HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:53 GMT
content-type: text/html
last-modified: Tue, 19 Sep 2023 04:26:42 GMT
vary: Accept-Encoding
etag: W/"65092302-4889"
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.maskmeta.cyou/css/metamask-staging-2.webflow.css
194.124.216.72200 OK 136 kB URL GET HTTP/2 www.maskmeta.cyou/css/metamask-staging-2.webflow.css
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
Size 136 kB (136243 bytes)
Hash dadc10770c97fe8d4774255bf653d705
fa9d847244c99978cd9a0c793a2202c8892dce74
11139400a1789a74b931014f8543c82c0fd793d9de7473f420c82dc8eb9d703d
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /css/metamask-staging-2.webflow.css HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 03 Nov 2023 11:37:54 GMT
content-type: text/css
last-modified: Fri, 10 Sep 2021 16:18:28 GMT
vary: Accept-Encoding
etag: W/"613b8554-21433"
expires: Fri, 03 Nov 2023 23:37:54 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.maskmeta.cyou/metamask.io/images/webclip.html
194.124.216.72404 Not Found 146 B URL GET HTTP/2 www.maskmeta.cyou/metamask.io/images/webclip.html
IP 194.124.216.72:443
Requested by https://www.maskmeta.cyou/
Certificate IssuerLet's Encrypt
Subjectmaskmeta.cyou
FingerprintE7:E2:E7:63:F9:FE:1F:17:39:8E:BF:47:A8:8A:01:56:89:2F:77:3F
ValidityThu, 02 Nov 2023 15:43:25 GMT - Wed, 31 Jan 2024 15:43:24 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca
Analyzer Verdict Alert OpenPhish phishing Crypto/Wallet
GET /metamask.io/images/webclip.html HTTP/1.1
Host: www.maskmeta.cyou
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.maskmeta.cyou/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Fri, 03 Nov 2023 11:37:55 GMT
content-type: text/html
content-length: 146
X-Firefox-Spdy: h2