ocsp.digicert.com/
200 OK 471 B IP
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2227
Cache-Control: max-age=149358
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:01 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:08:19 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8220
Expires: Thu, 01 Dec 2022 19:56:01 GMT
Date: Thu, 01 Dec 2022 17:39:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 17:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1253
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4349
Expires: Thu, 01 Dec 2022 18:51:30 GMT
Date: Thu, 01 Dec 2022 17:39:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sWFCHFuLFEA0+H853UpY5/MFf+ldGTIm7v1v2EHPIr6z9zu35Pb29tX8ZENTEQbWYOPdiADqpIA=
x-amz-request-id: C7NGJ02V66HTY6GH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 16:46:20 GMT
age: 3161
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 17:11:15 GMT
cache-control: public,max-age=3600
age: 1666
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2219
Cache-Control: max-age=144287
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:01 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:43:48 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP
File type ASCII text, with very long lines (32030)
Hash 92a5ff32a622bce0ca55d5644bdd4076
ad3c2861d6216aaf07b6ba1a0eb3b1a4eaa1ae91
1811f05ec81d0f3d900617e8760efb623e1a0f5ca0e8e424124181581653dbf5
GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27192
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-152b5"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2506376
expires: Tue, 21 Nov 2023 17:39:01 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JfTiHTPa0uX%2FvVwP%2BecWgglme9V53sh2dFjO79lTlQE2towEbX7ixCWKFCL%2FKNhNa33Q891HpFarChmDJwspzw11%2FhPlA7MgeQoVU%2FM4EzEMIKmY0TdwbtVIG0ITHRhJTwn51%2Biw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772d99911bbdb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash d296c212fdea11c6836ebcb174edef92
1bd1d91d2c76f43ed0df3d34e8e45f3ce41c3e84
6d44e74e38f2902dd709f264f4fc1864dce0e82c09c7df1bca92551b7df8f63f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D44E74E38F2902DD709F264F4FC1864DCE0E82C09C7DF1BCA92551B7DF8F63F"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6999
Expires: Thu, 01 Dec 2022 19:35:41 GMT
Date: Thu, 01 Dec 2022 17:39:02 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 2e229bda908b2010dcc19d4b0101a447
ebbd694d5fa2ef474ca5bb31c2d65b4f4ba3e03d
755e96dcc7faa003fb83b822e6941e5bd0abe870889a91db0ffd09cb7a8cffdd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "755E96DCC7FAA003FB83B822E6941E5BD0ABE870889A91DB0FFD09CB7A8CFFDD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7983
Expires: Thu, 01 Dec 2022 19:52:05 GMT
Date: Thu, 01 Dec 2022 17:39:02 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 2e229bda908b2010dcc19d4b0101a447
ebbd694d5fa2ef474ca5bb31c2d65b4f4ba3e03d
755e96dcc7faa003fb83b822e6941e5bd0abe870889a91db0ffd09cb7a8cffdd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "755E96DCC7FAA003FB83B822E6941E5BD0ABE870889A91DB0FFD09CB7A8CFFDD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7983
Expires: Thu, 01 Dec 2022 19:52:05 GMT
Date: Thu, 01 Dec 2022 17:39:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
opensea.io.offer.brainsonit.co.za/
200 OK 37 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/
IP
ASN #328364 Host-Africa-AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2327), with CRLF line terminators
Hash 697633a7b5b04dd402b65f1898497839
82cc041d0a466de48d5d6efb92cc734d20bc2b54
33d1d04c1212406959368ea05fbf77abbeff0399a0e2e396aab4012dff4d2c56
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET / HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=0, public
expires: Thu, 01 Dec 2022 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: WP Rocket/3.10.4
content-length: 36852
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style.css
200 OK 1.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style.css
IP
ASN #328364 Host-Africa-AS
Hash 2eafdf4bdca92051c43eb69d5a9d3d6c
43e7c62b5a390f6f734892c348dc479113c909f4
31399ab8d1531f9f17baee3674acbb86495f14fd525f2e3f4172905c21798c53
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1547
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style3.css
200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style3.css
IP
ASN #328364 Host-Africa-AS
File type assembler source, ASCII text
Hash 0c1984dce15360939d6d3bd15e90ea8b
6be8050dc86416615edf99af9c2534b32f90ce3e
6d21d503e5a691e7567d5a880cf67585c8ee10a2852a2042f2e05b1cf680dd1d
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style3.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1364
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/main.css
200 OK 8.7 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/main.css
IP
ASN #328364 Host-Africa-AS
File type Unicode text, UTF-8 text, with very long lines (499)
Hash c4a0997c2615433afc5089f4e2e66b86
e4dc0f78ecb5fdbc13324e32d20c8e572ed84efc
c81dddc5e7d592ef4e833c5797e6affcfbe9d2ec878dd614ed462cab78cc9b2a
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/main.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:32 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8651
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/style1.css
200 OK 452 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/style1.css
IP
ASN #328364 Host-Africa-AS
Hash 110f441ca83a85a95e23efda79b6537b
365d54ae745fe48b965e8a823ac84d0ecee4932a
d1d00c2e703dce94ad62db7bf884b70e83dc30d2d2d67f976cda0c77a39cb4ea
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/style1.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:04 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 452
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/opensea.svg
200 OK 1.9 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/opensea.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash e13fb61d5dd04aa9d205f000081b2902
5ac5e31ce14a4485df24c698292605a6de7ea67b
2b817c1fea3ecd3198251bd916ab3573a50575751c01b8a67b73f8020df6f8b2
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/opensea.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1922
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/810eee84d49a36e81867.css
200 OK 568 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/810eee84d49a36e81867.css
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (1390)
Hash 090c22ffa2ea098190ea4e0c9916cdeb
c7838cd2dba9f047b2c4cd3849b53ffa8951262b
f1281515c424d96f66781c3e3d6cc271ad97c9c5948c39e58fad55499468baf1
Analyzer Verdict Alert openphish Crypto/Wallet
GET /assets/style/810eee84d49a36e81867.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:00 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 568
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /WoGr5YtEb0eYAY7clVmCA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: L1csW1JHMiMAu7M+sfCcsDBoVHQ=
ocsp.digicert.com/
200 OK 280 B IP
Hash 06fc2114946e9805db925bf54fbb908b
2214214619ca63b6cdfad39a231a4aaba6c682c4
884ffbd3c4b70a88cd6b7fb2602b6693e8c1657c8a52a424d46db9e0c671251a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2171
Cache-Control: max-age=165135
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Etag: "6388c04a-118"
Expires: Sat, 03 Dec 2022 15:31:17 GMT
Last-Modified: Thu, 01 Dec 2022 14:55:06 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280
opensea.io.offer.brainsonit.co.za/assets/style/img.jpeg
200 OK 36 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/img.jpeg
IP
ASN #328364 Host-Africa-AS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash cc0be347e76a88bae60f377b403aad73
28125cb2444b4d76f11c24cd8bdd2ab9d01d591d
310e5e38ecd829ab28a0236f20bae00f6eed96168fe98489357824f032ecb056
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/img.jpeg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:54 GMT
accept-ranges: bytes
content-length: 35953
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 17:39:00 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Thu, 01 Dec 2022 17:39:00 GMT
server: Apache
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/sandbox-promocard.jpg
200 OK 128 kB URL HTTP/2 openseauserdata.com/static/promocards/sandbox-promocard.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 128 kB (127667 bytes)
Hash fba591f0f17f640919d1ea47d1afdae6
57c79f6ba254d668eb455e418a0e0dd611857c4e
0b32a829efd726cacc736971a310c2ab427591597bccbdce2da206cf06219566
GET /static/promocards/sandbox-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/jpeg
content-length: 127667
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "fba591f0f17f640919d1ea47d1afdae6"
expires: Thu, 01 Dec 2022 21:39:02 GMT
last-modified: Wed, 06 Apr 2022 16:48:32 GMT
x-guploader-uploadid: ADPycdtnXrAO2_IE3fnBeNahRma5h0FKtWT6hiXCe6neNFX0Gy78SBF-GNp0ZQqOy_z7Fa6inJceCqwaF3KeVX14yQ6w3qnG6EF6
x-goog-generation: 1649263711972899
x-goog-hash: crc32c=77Qc2Q==, md5=+6WR8PF/ZAkZ0epH0a/a5g==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 127667
cf-cache-status: HIT
age: 2556
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d9992fc5eb511-OSL
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/stretchoftime-promocard.jpg
200 OK 139 kB URL HTTP/2 openseauserdata.com/static/promocards/stretchoftime-promocard.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 139 kB (139020 bytes)
Hash 908c76cdc513bad1a352191b4ef3152d
81e281cad758365c5327aaf9ffb8fe62a182f27e
6cefc398b0f8f4c2901f659ff7d6fc9a23ced2c6e7a7561272139ca33699bb63
GET /static/promocards/stretchoftime-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/jpeg
content-length: 139020
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "908c76cdc513bad1a352191b4ef3152d"
expires: Thu, 01 Dec 2022 21:39:02 GMT
last-modified: Fri, 08 Apr 2022 16:42:38 GMT
x-guploader-uploadid: ADPycdv6B7uaQ0yQ9D2bV2sRdDZI0UZeroVDH-akWJ9IBgHQhYZs5gPLG7TjwvqiKTLdrPj_sBqcg7XHNiYDJaOJJJztZR1TmLeM
x-goog-generation: 1649436158203430
x-goog-hash: crc32c=gUITFw==, md5=kIx2zcUTutGjUhkbTvMVLQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 139020
cf-cache-status: HIT
age: 2556
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d9992fc60b511-OSL
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.min.js
200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js
IP
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669916342.dop066.sk1.t,1669916342.cds264.sk1.hn,1669916342.cds210.sk1.c
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/collection.svg
200 OK 476 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/collection.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1090), with no line terminators
Hash 42068232dbaddd4b956d479b8dc65f70
4a30f53fa6669bd2c41ea8eec7f4a23fd34510c7
1c1e0ebc1c3cd646cdf85b5e625a5129036d51d2dbd13dbfdba12e69cddc042d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/collection.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 476
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
openseauserdata.com/static/promocards/tales-promocard.jpg
200 OK 200 kB URL HTTP/2 openseauserdata.com/static/promocards/tales-promocard.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1125x1740, components 3\012- data
Size 200 kB (200055 bytes)
Hash f84fe59c1980b3e940d1e800e7b0e46d
1588c4c406ac37324f0ff63e28d4957b109f42dd
a306f54e4803b1138fe36f82079a4151dda215d21b05fb20389b8dfeebc6d901
GET /static/promocards/tales-promocard.jpg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/jpeg
content-length: 200055
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cache-control: public, max-age=14400
cf-bgj: h2pri
etag: "f84fe59c1980b3e940d1e800e7b0e46d"
expires: Thu, 01 Dec 2022 21:39:02 GMT
last-modified: Mon, 04 Apr 2022 15:13:50 GMT
x-guploader-uploadid: ADPycdt4db65tHhVJ2fKm4srSCNhhZVwmOc0IUx3aCnYEmu5eyHlasAalH9hjHbOv8D-KEif8Z528xFmu2TjBfHs7_iyZA
x-goog-generation: 1649085230932984
x-goog-hash: crc32c=KU1PFQ==, md5=+E/lnBmAs+lA0egA57DkbQ==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 200055
cf-cache-status: HIT
age: 2556
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d9992fc63b511-OSL
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/nft.svg
200 OK 467 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/nft.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 1dfbad7134e55aceb9eb40baa64f66da
6c5228ac5eac1cf1433de0ee4c3dfce477d7f6ad
c0b405e883a5fb061f302461412aeb67096702ab578865f967e54a079459b0ec
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/nft.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
static.opensea.io/solana/home-banner.png
200 OK 100 kB URL HTTP/2 static.opensea.io/solana/home-banner.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Size 100 kB (100274 bytes)
Hash 33f331b6507939aaf696e1a96d86f1ff
75e1ccac392d1f49acb433155ae2e9c07a8ee348
7e7e3ed14195df0f997098eecbc398379e6b49e347a40020007b4bbbde3358fb
GET /solana/home-banner.png HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/webp
content-length: 100274
access-control-allow-origin: *
cache-control: public,max-age=3600
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=133431
content-disposition: inline; filename="home-banner.webp"
etag: "e120318ca8f3642dac87a7c96e0cee86"
last-modified: Tue, 05 Apr 2022 16:01:13 GMT
vary: Accept
x-guploader-uploadid: ADPycdtcL75sgaMnGXeUc7RWZiv_XM6SjHz3srJsChPA-w5MzQGXt20Ep9Ce8D2W5eSp_mmAXA8vWfsAeZdWYCsTBz8xby_JJ0fg
x-goog-generation: 1649174473639146
x-goog-hash: crc32c=XR+cXg==, md5=4SAxjKjzZC2sh6fJbgzuhg==
x-goog-metageneration: 1
x-goog-storage-class: MULTI_REGIONAL
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 133431
cf-cache-status: HIT
age: 2556
accept-ranges: bytes
set-cookie: __cf_bm=vjL_wVr_mahiGOVhBsNdzeEZx7JoQaKwgY.HomOF1P0-1669916342-0-AWONbB9Pm5eBZ9h2ofvocdFQ0nMDOtlfjPTIbboFVsiIcgu81oAGmfuz0Qv8l02yEyIl6WNRT679B7sPe14qHsc=; path=/; expires=Thu, 01-Dec-22 18:09:02 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d99934ce50b55-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
opensea.io.offer.brainsonit.co.za/assets/style/sale.svg
200 OK 611 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/sale.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1062), with no line terminators
Hash fa7dd16849c4ba31beace7f42d68523a
54c336aea462d6c4e613be98dd4dc1d0c93e080e
ae4989d29260e6886cda48c21e04b9384982d889a85a81810beefe484ae12910
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/sale.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 611
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block
200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block
IP
File type ASCII text, with very long lines (1173)
Hash 712464872ef31419e10355fbe5c08fb3
0d4e69ca09064c76516e655efeac03bd745ad3c0
6d9a226ea0f1af2adc10635e798593d044c7126abd386a64ed692960cfd3f29e
GET /css?family=Material+Icons|Material+Icons+Outlined|Material+Icons+Two+Tone|Material+Icons+Round|Material+Icons+Sharp&display=block HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 17:39:02 GMT
date: Thu, 01 Dec 2022 17:39:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/ismobilejs@1.1.1/dist/isMobile.min.js
200 OK 862 B URL HTTP/2 cdn.jsdelivr.net/npm/ismobilejs@1.1.1/dist/isMobile.min.js
IP
File type ASCII text, with very long lines (1882), with no line terminators
Hash 069d9bfcaee604f8f1d8b7c126a2cfe5
ce00de60bcf55e66702fb13768240e4db5e8b99e
78885d3b504939e50df1d231830a3fc683a01635d319fd6036da85216fdb40aa
GET /npm/ismobilejs@1.1.1/dist/isMobile.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.1.1
x-jsd-version-type: version
etag: W/"75a-FO4CH/twosD6GHbI49EEMaxGxg4"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 17:39:02 GMT
age: 5074384
x-served-by: cache-fra19180-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 862
X-Firefox-Spdy: h2
cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
200 OK 98 kB URL HTTP/2 cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js
IP
File type ASCII text, with very long lines (43040)
Hash bc7f9f4b180da64e75549763afd31827
e8ce0cc0620291281ac93fcb790efadb459ed58d
0d84d9bbaa6afffeec141eda5a989c4874342265c707e51074c2dc271acdc811
GET /gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"4edeb-1sQW5dFT9QD3rGbSWitz20WGetQ"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 17:39:02 GMT
age: 29384
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 97784
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash e9de790004307d6718c7c9873fd99b6c
69240e7c0a380e440308c8f5cdb2eaa0b8fdc1e2
8bb93b2c1800331b47a551836f8fda4a8fc11bd05fefc00bcdd1ef148f3bf265
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 17:39:02 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "4FDBC1C29E8B92BD85857EF44ACA530A18504858"
Expires: Fri, 02 Dec 2022 05:00:00 GMT
Last-Modified: Thu, 01 Dec 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1546
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772d99944a7c0b61-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js
200 OK 472 B URL HTTP/2 cdn.jsdelivr.net/npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js
IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
GET /npm/@walletconnect/web3-provider@1.7.7/dist/umd/index.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.7.7
x-jsd-version-type: version
etag: W/"b660c-MTEbN9OFqURIn0SqyJJBl4qWSNk"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 01 Dec 2022 17:39:02 GMT
age: 3151297
x-served-by: cache-fra-eddf8230090-FRA, cache-bma1636-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 224550
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
200 OK 124 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 124404, version 1.0\012- data
Size 124 kB (124404 bytes)
Hash 94cef4c50fdde3db87d08031a829d1a8
88f7b5ba379df8bac8ea74bdb62c374dce17e994
273150c47a3c72fac516c64dbc2609311a03456037a0ff70ee1f1c85307eaa1a
GET /s/materialicons/v126/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 124404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:07:37 GMT
expires: Thu, 30 Nov 2023 19:07:37 GMT
cache-control: public, max-age=31536000
age: 81085
last-modified: Wed, 09 Mar 2022 18:26:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
200 OK 151 kB URL HTTP/2 fonts.gstatic.com/s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
IP
File type Web Open Font Format (Version 2), CFF, length 151244, version 1.0\012- data
Size 151 kB (151244 bytes)
Hash e1a7398bccc3cac6f91a6feafad048a5
0f1bb2cac93fae4fe053f3ec87a7a6eae2046577
09278f5e4175344bf9f92b8e2e7be3940da6ae4c067c21e66ea676fa8be58bee
GET /s/materialiconsoutlined/v101/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://opensea.io.offer.brainsonit.co.za
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 151244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:48:40 GMT
expires: Wed, 29 Nov 2023 18:48:40 GMT
cache-control: public, max-age=31536000
age: 168622
last-modified: Wed, 09 Mar 2022 18:26:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/d75422b4/www-player.css
200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/www-player.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3e4178f2a6616105992b334a69698e47
2b137808b51c5c513321992cf3abeed31047e512
d6f34a1edfc56a13003d4c7ef64ac1b12eb79d4e69668e02c7a692631df254d8
GET /s/player/d75422b4/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/css
age: 91832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 589859
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 3499
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/www-embed-player.vflset/www-embed-player.js
200 OK 99 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/www-embed-player.vflset/www-embed-player.js
IP
File type ASCII text, with very long lines (679)
Hash dcab709b2fb7e5b2b0ce72e82db0f0dd
5d1f5457969d0f95fc0a5617f71bbe7e3900457d
233b10984971f40d72b0910e0dd32585640a752c5cf3e1ec1d7685883e6e1ce4
GET /s/player/d75422b4/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99383
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 91832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js
200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/d75422b4/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:08:30 GMT
expires: Thu, 30 Nov 2023 16:08:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 91832
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/domain-names.webp
200 OK 52 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/domain-names.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13f3061ad278717cf185a4e3be105d35
037ecd16b1646de7690a1a2b8c15c4260a5b0f19
84092dbeee0c446ec5a3fb0aa65b244c1d92ced4d0ed39f4e4e65f548e8f0fca
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/domain-names.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:46 GMT
accept-ranges: bytes
content-length: 51922
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/api.js
200 OK 259 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/api.js
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash e9cc8ed91a5aca9a1c7d7ad0edeaea48
9353023e1a8547f5f7028213298c8d6662912438
d771264775bf18d93edea86b8491ded127276edc694964350101d0946267a0b1
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/api.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 06:55:02 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 259
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/wallet.js
200 OK 835 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/wallet.js
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash 0ca0289635bd26fae0fe71c0b688524f
c9200713831e0f7a779dbc02012de42c98198bc5
af9118148ee2587c91db3ae3d78374c20b8a8921b16ffc17edb2f8766713e70d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/wallet.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 21:35:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 835
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/abis.js
200 OK 281 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/abis.js
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with CRLF line terminators
Hash 99b9e19471ffdbb7cc145addba0738e1
9887a39482f79d7c18f4d914f5047adbc85ed5b5
bd2362fe594e45e01200731cc58c3e5e9e2b7f44e5fb58524dc45ff1ab896a9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/abis.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 27 Aug 2022 05:29:14 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 281
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/opensea-white.svg
200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/opensea-white.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2931), with no line terminators
Hash f29566c5690ed78eafc3a2f8cc385f2c
b24cb004454d0843e10bf6c72fa6751ddd74c868
eb4a75ba1317149969b554a6016aeb515816cb4d98f3e121f3186263af9ec0a6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/opensea-white.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1385
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/connect.js?v=1111322123
200 OK 5.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/connect.js?v=1111322123
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (14979), with no line terminators
Hash 0bb678c4625a225395b8733c58f7b1fb
d90dfff0a0e258a82e6c6cf4a9adef6af8a3ac26
9e8b5b2eea804045f1958b3f51d70e29e80daa49f090615c43d7ff4943230dc0
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/connect.js?v=1111322123 HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 23:41:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5480
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/virtual-worlds.webp
200 OK 97 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/virtual-worlds.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash bd88b2dc4a25e15e246d200396492836
fdf5d8ea368487a3554cf4caba2a17a82a28e8a7
3b337c5115eccc66bbfebd7fc08aab4f6200c4f4a3773b680d42804aae1f4351
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/virtual-worlds.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:30 GMT
accept-ranges: bytes
content-length: 97424
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/sports.webp
200 OK 129 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/sports.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129352 bytes)
Hash 9a0077fded7f3fb9b2618594ebc859e4
d8149685f5d0c6fe66311dee6e606f2e2c13d8b9
ebac54aa2f93a252975e3ca96d62dec0caa9a01e1f33668620aac442a0036ce7
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/sports.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:12 GMT
accept-ranges: bytes
content-length: 129352
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
200 OK 132 kB URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP
Size 132 kB (131614 bytes)
Hash 182145f439552279f742a58ab175c78a
4e45e213824149decb22b2c1e79e6e2f5487987c
beab92a72bc6d3483efbffe099b6884aaedf900a0b9cf9e57a7490a04b9ac25f
GET /css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 17:39:02 GMT
date: Thu, 01 Dec 2022 17:39:02 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/utility.webp
200 OK 141 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/utility.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 141 kB (140854 bytes)
Hash 77290dadd246bda015753085a7c755fe
c04973aabbe7c8925766c84c0bf88c7a820f8949
46441628c5e6b667e374d0fd5b4688efb15be39524e608bb20765f2274e38526
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/utility.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:24 GMT
accept-ranges: bytes
content-length: 140854
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/trading-cards.webp
200 OK 180 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/trading-cards.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 180 kB (179596 bytes)
Hash a995601de89992960cb18f1ba89479d2
110346a4d12b8e47c3ad44385f85a916d15ee206
ecf70633eab5862ce8d0097d47f1c075be220c716a2a2e44930d2acca6c19811
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/trading-cards.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:18 GMT
accept-ranges: bytes
content-length: 179596
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/photography-category.webp
200 OK 215 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/photography-category.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 215 kB (215364 bytes)
Hash 5b836f4bed45402184ccd898d52fa8bc
4e407d1900f8928da324c957cf43a99aab478ed0
bbf7fa21aa40409faa6416554f4bec4b482dc671c6338ca88050a61f2603a7fc
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/photography-category.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:04 GMT
accept-ranges: bytes
content-length: 215364
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/art.webp
200 OK 257 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/art.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 257 kB (257268 bytes)
Hash 5306867e611ccf4ae4870f2a397ac666
05ddd42571a601d60d4fdef8539bc6e827d4d724
9a1d2967a227349ee6e2a778ff87f336b77cd406bac35dea39a05345d9a2fa04
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/art.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:34 GMT
accept-ranges: bytes
content-length: 257268
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:36:04 GMT
expires: Thu, 01 Dec 2022 17:51:04 GMT
cache-control: public, max-age=900
age: 179
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Thu, 01 Dec 2022 17:39:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 17:39:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ed403eb16d555e7d73c7202835287189
c2fbc9d239fc94c880cbc47b9d1914fb426e0476
9342e074df6179d3d2b1490c0536b01ed1a1d3fb6b942a78a91c123c9a45368b
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 17:39:03 GMT
server: ESF
cache-control: private
content-length: 31064
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:31:55 GMT
expires: Tue, 28 Nov 2023 16:31:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 263228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 17:39:03 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Thu, 01 Dec 2022 20:00:42 GMT
Date: Thu, 01 Dec 2022 17:39:03 GMT
Connection: keep-alive
i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
200 OK 24 kB URL HTTP/2 i.ytimg.com/vi_webp/gfGuPd1CELo/maxresdefault.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 94d015ce62cec9dc2c61420a977da42b
c657a723c06ab007f5dd99b12bcbc500f534bded
cc374be9c2cde17b898c0a88a66162c972adf073e335828e60555b699c76b58e
GET /vi_webp/gfGuPd1CELo/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 24130
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:56:27 GMT
expires: Thu, 01 Dec 2022 18:56:27 GMT
cache-control: public, max-age=7200
age: 2556
etag: "1633564202"
content-type: image/webp
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 71493
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:57 GMT
age: 71166
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 71223
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 81657
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 05:45:16 GMT
age: 42827
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 17:08:13 GMT
age: 1850
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
opensea.io/blog/wp-content/uploads/2022/01/image-10.png
404 Not Found 7.2 kB URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/01/image-10.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5879)
Hash 0f2922aadd97a3cf2899efb6fd8b9a17
548a264965ff2aa9aba4d45dee20652f95ad0802
83940b8021af16b0b164801a860ce68501a9f4c6fd2ed992e7559604e047536f
GET /blog/wp-content/uploads/2022/01/image-10.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: text/html
cf-ray: 772d99924beb0b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kcgs7200153-IAD, cache-dub4324-DUB
x-timer: S1669916343.515530,VS0,VE185
set-cookie: __cf_bm=6zZQEGpS71wUdupOXMtKd5fn2xehTKhUYcwRVisCnaI-1669916342-0-AfQzO3kBGp4115SC1CuOJtJGIfwzdbqEQCOpeNxcRODR+1ubbySrvoFs9a2iPpJuGj1dTgY3T0nnP0igN6MQvJ8=; path=/; expires=Thu, 01-Dec-22 18:09:02 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 17:39:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100
200 OK 3.7 kB URL HTTP/2 lh3.googleusercontent.com/XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 1209d911b32dc2147b94d606b63cd4f0
c04dac737ecc115472f8825baacc9dcced062a7a
dd96bc841f3ea99e844d79b4af86eabf5626eae058c784a6237aa1136655a814
GET /XN0XuD8Uh3jyRWNtPTFeXJg_ht8m5ofDx6aHklOiy4amhFuWUa0JaR6It49AH8tlnYS386Q0TW_-Lmedn0UET_ko1a3CbJGeu5iHMg=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3716
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
age: 13638
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100
200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 096ff4156dffe840fa815d6caf9ff5e7
8871d70770ce4e1677b01160d1c00182328896f4
3aa8c59639a748328ada5ef2189b4a565cd0e3571c8fb38cd19c8de6a3304dc2
GET /BdxvLseXcfl57BiuQcQYdJ64v-aI8din7WPk0Pgo3qQFhAUH-B6i-dCqqc_mCkRIzULmwzwecnohLhrcH8A9mpWIZqA7ygc52Sr81hE=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2612
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
age: 13638
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Pu2TAnykhmrL5jtD48VcYgFb8lTMZeUDabfcUZMQgseS0KJ6CB1hlgIulwdzeVLPnD4yAVXsF9o-3rT9xnuAkbuAcSFH9Wnh0MGP=s100
200 OK 6.2 kB URL HTTP/2 lh3.googleusercontent.com/Pu2TAnykhmrL5jtD48VcYgFb8lTMZeUDabfcUZMQgseS0KJ6CB1hlgIulwdzeVLPnD4yAVXsF9o-3rT9xnuAkbuAcSFH9Wnh0MGP=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 9006b884702a87b501c3438eca82406f
2d4916f6da48db5fbce785011e05237965d88d83
41bee5803a8843b02ac1d2f5870331377f6229dcc83094ba4eb1f8d4faa4bcb8
GET /Pu2TAnykhmrL5jtD48VcYgFb8lTMZeUDabfcUZMQgseS0KJ6CB1hlgIulwdzeVLPnD4yAVXsF9o-3rT9xnuAkbuAcSFH9Wnh0MGP=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6229
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/7B0qai02OdHA8P_EOVK672qUliyjQdQDGNrACxs7WnTgZAkJa_wWURnIFKeOh5VTf8cfTqW3wQpozGedaC9mteKphEOtztls02RlWQ=s100
200 OK 5.0 kB URL HTTP/2 lh3.googleusercontent.com/7B0qai02OdHA8P_EOVK672qUliyjQdQDGNrACxs7WnTgZAkJa_wWURnIFKeOh5VTf8cfTqW3wQpozGedaC9mteKphEOtztls02RlWQ=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 9fede95006b696d4cb4ce6eb808ef8cb
e3778157a13851fc087eb893266bc39fef18b0aa
190c5b2c6b34a26461c43c8d0b30b5132b2e928b09702b81d5b546117a304adb
GET /7B0qai02OdHA8P_EOVK672qUliyjQdQDGNrACxs7WnTgZAkJa_wWURnIFKeOh5VTf8cfTqW3wQpozGedaC9mteKphEOtztls02RlWQ=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 5020
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100
200 OK 6.6 kB URL HTTP/2 lh3.googleusercontent.com/MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash d097c7b5795a85cedea670d904683c9d
bf7f0e946853ad2932c3b3fd9867ca9abdee9c8a
82d085d61dc48bd471cef04224bbfc552360e403007d9828c818246eb3c4ceb0
GET /MACJRvA4MOLHonq73rxU8TaHPrbYuGbJ5_rqV7pw9ZGd97h5mo5NyU6PpQNOvZzdoVu2KRVs3jP-oMK3FF1XQtNSxN6xf1ZVd9is=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6648
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100
200 OK 11 kB URL HTTP/2 lh3.googleusercontent.com/i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100
IP
File type GIF image data, version 89a, 100 x 100\012- data
Hash a668f94dc091a5ecdf3e7ccc3ac89fcd
42e4b302280b5c166a752669d83fa30136181b53
55a9decc5441777f9fdb6dbdd4d66bdcd2c1ace5a4696c2cf179e0f686a88a9e
GET /i1Wpn82qP81zDBPoVwq0vvUB6g4RLed9Ad4rir5M7feTq_t6uYV41dqQXYqQlYt90BhLu-U6vXedFXuORvQUv5bqXEBuPZy_Yd-b0Q=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.gif"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 10907
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/gif
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100
200 OK 1.7 kB URL HTTP/2 lh3.googleusercontent.com/Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 2ffb2726cdf60e01c5af6d05405e1245
1c2f75812adf533916fec9306bf71367894b8b2c
870adc5a61f98a6e547ef83daa2d2af3e03cef57adf8748583691132af8b428c
GET /Gn0XI0Bu3n0xBe1IKqr0AbnKP0eY_NwVAhjDr-ZSb9yHQNLMxvlVG8d8FElkoRs99yKg13a3VB6DeHbOAUCiqHI1nRwoWuwVNSv_fQ=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1739
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/crR2qxl8Gnpg8TUKP45sxdR0NOlDXQrQH0L5n6LEcB2OSMwVKveVkwZFkvB8qytmy51D59TeMZbqhn6mgffRbKBgsshdCryGtJ8PsAU=s100
200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/crR2qxl8Gnpg8TUKP45sxdR0NOlDXQrQH0L5n6LEcB2OSMwVKveVkwZFkvB8qytmy51D59TeMZbqhn6mgffRbKBgsshdCryGtJ8PsAU=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 23e39358a91b393f36572ab5fc8c60bb
c9c4019ae53d41c5df5ab842c29c297bd8be749e
edd154645045100e47b57d6c4f6446eb845624262d230e28ddaf54a1261d0c61
GET /crR2qxl8Gnpg8TUKP45sxdR0NOlDXQrQH0L5n6LEcB2OSMwVKveVkwZFkvB8qytmy51D59TeMZbqhn6mgffRbKBgsshdCryGtJ8PsAU=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2573
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100
200 OK 3.6 kB URL HTTP/2 lh3.googleusercontent.com/YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 2ea7fb6016d77311b4c46c6da13af7ed
86f4da864b1a18c251334b14981e2ae06bbbc93c
054ff14da4cd5fd19c4eb13b99a6b6666c4fd900388841fd135fd44379d7789c
GET /YNAlfkgf4GU_RKNCwOH_nS0Y20pNzVVyI_w_Q2GyL8pNH0yU5_K3Fo9n1v4IfSyM4TbmEg3ALJ2CnxSnNWDeYMJ0DppvhRKlTiW2AiE=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3649
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:08 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100
200 OK 12 kB URL HTTP/2 lh3.googleusercontent.com/Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 32aa5a489ec84f784c225e5bd300e4a9
d25bf2f8f79ca4359f8956d621c7832780ad8b76
b840f2b1b9bc787049914f23eaa8ed38a5da6fad01fbeee2e5ce07405f7cc9c3
GET /Qd1IEPYz_0YlMaclPwb6_9PyP7afZIzH15IdIU2X6t1Wvg81DwpAaWOY0cNmxy173C4yMA7sM3xF9-HJsCSKJdx6KvDR3old3IKuTIc=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 12539
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100
200 OK 2.4 kB URL HTTP/2 lh3.googleusercontent.com/xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 949082247fc8e74d1bf82465c96d3994
2ccdf9065c6b2172772e5ebc58770d08d846b9ea
6859a9717441e1122df3e1b79d56b16bf9b38c01caad5d8c0d39c8dd141de813
GET /xla27hWmOcgl7USvsJMfOU9MPzJz3ltIJc1SKQAubteF_NTIKDaVJoGnYVrI6b6OADrl_esygWKIumCqYzEItR01lZ0CL1RJZhRMhig=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2373
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100
200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100
IP
File type PNG image data, 100 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 98a561436ae37cf62368739c2b2d0ab3
cb633d6ef0c36f4963df9c34725174ffaf1b7f65
51f8e39428b85eb68838441f98ae3dc70a5afb7d07a9efa3518e5cfca40d5ad2
GET /lHexKRMpw-aoSyB1WdFBff5yfANLReFxHzt1DOj_sg7mS14yARpuvYcUtsyyx-Nkpk6WTcUPFoG53VnLJezYi8hAs0OxNZwlw6Y-dmI=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4130
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100
200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e1a49a417f8b9d62a662f9114f85aa10
6743f2cbfcc78f6f4d5850054d131daa874e5854
896d3d489f353b7b4f3995e0ec155ac30e0a76f5d02e2a2d4cfdc728d2db982f
GET /Ju9CkWtV-1Okvf45wo8UctR-M9He2PjILP0oOvxE89AyiPPGtrR3gysu1Zgy0hjd2xKIgjJJtWIc0ybj4Vd7wv8t3pxDGHoJBzDB=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4149
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Thu, 01 Dec 2022 11:15:13 GMT
cache-control: public, max-age=86400, no-transform
age: 13638
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100
200 OK 2.6 kB URL HTTP/2 lh3.googleusercontent.com/H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 9ccecdf82adeeca9cd27ef63b01bf332
5672a46ec284d44fee9735c5f10a27b53cd8e2db
685a9f2b48196b57e007319518fda88d8daf0ef5bfd885f30c92f02e3fff7c18
GET /H8jOCJuQokNqGBpkBN5wk1oZwO7LM8bNnrHCaekV2nKjnCqw6UB5oaH8XyNeBDj6bA_n1mjejzhFQUP3O1NfjFLHr3FOaeHcTOOT=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2642
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:51:45 GMT
expires: Fri, 02 Dec 2022 01:38:08 GMT
cache-control: public, max-age=86400, no-transform
age: 13638
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100
200 OK 6.5 kB URL HTTP/2 lh3.googleusercontent.com/iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 2c37b0f458002ef317edd9ef910f86ab
a364c18d736ca28df46850889967421345c16cd4
624733c671daac9f7e4fcabecf516bdd1d7bd8c3ce51e03fd78cf21680ba7f02
GET /iXfotGwS3X568ae6VbytHkVKlx3pqIq2ahBUGaI8E5nYa6hU-UG68Wu3grkTnOzn9KjGwqf9Rry7kKDVTRaBXSyIOk2pqc_KFJ6g6Ro=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6453
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200
200 OK 17 kB URL HTTP/2 lh3.googleusercontent.com/_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200
IP
File type PNG image data, 284 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d179f9e491fab161cc8e1d6a736a9f8
9aff966244af251034503f0299a3c71b5821df0e
e6045fd192389c8e9ca3df393ffb1119aac3c7b05150dec3299a75166aa7791a
GET /_RwmSVUbb4HJKyBLQovi09Vy0GrJKtvUQI6rt6O0SaB4iYlMNYqFl-phcvsex-tk0SJhEsdnA1G_gibLhkkkb95tt2dShQQfiG-mHA=h200 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 17119
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/collectibles.webp
200 OK 40 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/collectibles.webp
IP
ASN #328364 Host-Africa-AS
File type PNG image data, 300 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash 87a854d863a4937e19f590460177179c
50388c1f38dc25ba1f09637c2a09c545139560d0
e549bf5558cac6622f0cb5aa5176ed86961762d3b07780ae5a0f808dea1253dd
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/collectibles.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:40 GMT
accept-ranges: bytes
content-length: 52248
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:01 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg
404 Not Found 6.7 kB URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5879)
Hash 00cb0d3614bdc8ef50df6bbc75e71e23
6adcfff570ef293977cc0c35f5524e61c2fb0dfc
f81649c375fd030dc9fa27fd54b2b82075a202cc75eede2baf2d409c5dabfe00
GET /blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: text/html
cf-ray: 772d99924bea0b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kjyo7100153-IAD, cache-dub4327-DUB
x-timer: S1669916343.537603,VS0,VE147
set-cookie: __cf_bm=UDPTxeuRC5zNC4hZujptaK2Uu44FufNqVRP2a6MGQSQ-1669916342-0-AV4aH/z+jKm63UPY3paqJOBCAZgXEgdlPXRWHQnl/tC+JYI/Jl94qD94axAWRzKFFbelNsCRbAAgjwX7D7cKF2s=; path=/; expires=Thu, 01-Dec-22 18:09:02 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
lh3.googleusercontent.com/uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100
200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash adc28f8c004cda50159eb2e29c58bdeb
615c85b42c8b0d6dd675cd8876dad1914a498055
0ee336cb24501b896b266be1ac7b0e5f3774556e07a6407a04e118055b0570fd
GET /uheZXqcvxP_8TK7FzP7skUSNh3njmVStcqyLYkCnYPjb5c3enWOS88IAOTf8vdF5y4-vE7f0BQPHnEsVqjq0pD2QKLFugGZOdXUI=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3818
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100
200 OK 7.6 kB URL HTTP/2 lh3.googleusercontent.com/4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100
IP
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 65c723fd5d8d3f2ac7c01e6a1a510934
5b4115dcd4b79fe968842ba634ea0426d48b962f
d15b3f74ad50b9567eaeb6721523665c6123ac6af6d8c33845d13a69e71f6b8f
GET /4c4dqYwdIhtmAkeKAfwVJEQYaJqwgek3juaUSfTY9lhR--LOj8HyqUBzcXxzrVr-XZiWBk98PRg25Hf7M7Wlff0hLe5Vnq5lx3jFF9c=s100 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 7644
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200
200 OK 6.2 kB URL HTTP/2 lh3.googleusercontent.com/j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash b28ab430435756b661ecc62bc09ed705
746b1e37934c0aec41a436053fe4182ef44a45e1
a1126cc1899d77e609207f57ee9739c18ceed611603f99b541524b7d94302472
GET /j4LYd1ZJNy8_0Aje_7HiG5wr_CDCU3ediJcVwPPfcQblH_cqC-sD4aBU3oNm386CSkZhYLMLF4SqmARb66S7nt5782SiPRrluW3F7Q=h200 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6171
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/16x16.webp
200 OK 254 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/16x16.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash def398722dced71ba0d2bae2e7d52939
65e7949cb82c5777ea3c45d8c19a3dfc6233546a
5d486d1b18cd39803401e57d3a6b0293756035320e531456278c6173319f87c3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/16x16.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:34 GMT
accept-ranges: bytes
content-length: 254
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:02 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/style/180x180.webp
200 OK 1.8 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/style/180x180.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 504a6cface1532e9d9d02b3f484b590b
61f4c7b992c8af388efa731d50442515c2b9749e
0938a2f31549bc9225534b09e85b66a749d3e922c1ce139267ac30bbfb0a3e9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/style/180x180.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:09:42 GMT
accept-ranges: bytes
content-length: 1782
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:02 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:02 GMT
server: Apache
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 01 Dec 2022 17:39:04 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash db4010180cd97fdda97b428566e2c337
d5bbb92c6a6c792f3ad3687092ba22d2c54ccf13
154d3f703ead3793c9c4aa39481a352baa023b75e5834d41fe518a711ed92e23
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1139
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 01 Dec 2022 17:39:04 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/
200 OK 40 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/
IP
ASN #328364 Host-Africa-AS
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2327), with CRLF line terminators
Hash 84f9ade16068348ba59e467fa6b493ef
216c6acb201a18197d5bbbda81dab6a6ca5861df
b9442b1c10185aa2e7d7f5a835435b6fa611833c0646fc5b6d04fa5551a1f962
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/ HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: max-age=0, public
expires: Thu, 01 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: WP Rocket/3.10.4
content-length: 39761
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/opensea.svg
200 OK 1.9 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/opensea.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash e13fb61d5dd04aa9d205f000081b2902
5ac5e31ce14a4485df24c698292605a6de7ea67b
2b817c1fea3ecd3198251bd916ab3573a50575751c01b8a67b73f8020df6f8b2
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/opensea.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:12 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1922
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style.css
200 OK 1.5 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style.css
IP
ASN #328364 Host-Africa-AS
Hash 2eafdf4bdca92051c43eb69d5a9d3d6c
43e7c62b5a390f6f734892c348dc479113c909f4
31399ab8d1531f9f17baee3674acbb86495f14fd525f2e3f4172905c21798c53
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:28 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1547
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/810eee84d49a36e81867.css
200 OK 568 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/810eee84d49a36e81867.css
IP
ASN #328364 Host-Africa-AS
File type ASCII text, with very long lines (1390)
Hash 090c22ffa2ea098190ea4e0c9916cdeb
c7838cd2dba9f047b2c4cd3849b53ffa8951262b
f1281515c424d96f66781c3e3d6cc271ad97c9c5948c39e58fad55499468baf1
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/810eee84d49a36e81867.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 568
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style1.css
200 OK 452 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style1.css
IP
ASN #328364 Host-Africa-AS
Hash 110f441ca83a85a95e23efda79b6537b
365d54ae745fe48b965e8a823ac84d0ecee4932a
d1d00c2e703dce94ad62db7bf884b70e83dc30d2d2d67f976cda0c77a39cb4ea
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style1.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:04 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 452
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/img.jpeg
200 OK 36 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/img.jpeg
IP
ASN #328364 Host-Africa-AS
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 600x600, components 3\012- data
Hash cc0be347e76a88bae60f377b403aad73
28125cb2444b4d76f11c24cd8bdd2ab9d01d591d
310e5e38ecd829ab28a0236f20bae00f6eed96168fe98489357824f032ecb056
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/img.jpeg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:54 GMT
accept-ranges: bytes
content-length: 35953
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/main.css
200 OK 8.7 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/main.css
IP
ASN #328364 Host-Africa-AS
File type Unicode text, UTF-8 text, with very long lines (499)
Hash c4a0997c2615433afc5089f4e2e66b86
e4dc0f78ecb5fdbc13324e32d20c8e572ed84efc
c81dddc5e7d592ef4e833c5797e6affcfbe9d2ec878dd614ed462cab78cc9b2a
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/main.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:32 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8651
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/style3.css
200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/style3.css
IP
ASN #328364 Host-Africa-AS
File type assembler source, ASCII text
Hash 0c1984dce15360939d6d3bd15e90ea8b
6be8050dc86416615edf99af9c2534b32f90ce3e
6d21d503e5a691e7567d5a880cf67585c8ee10a2852a2042f2e05b1cf680dd1d
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/style3.css HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:02:48 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1364
content-type: text/css; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/collection.svg
200 OK 476 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/collection.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1090), with no line terminators
Hash 42068232dbaddd4b956d479b8dc65f70
4a30f53fa6669bd2c41ea8eec7f4a23fd34510c7
1c1e0ebc1c3cd646cdf85b5e625a5129036d51d2dbd13dbfdba12e69cddc042d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/collection.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:08 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 476
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/wallet.svg
200 OK 529 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/wallet.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1173), with no line terminators
Hash fd2cba90564f996f6220feb975f182c4
f6b0a5ef0c0bef28da72a42c15f740ae9a960570
e79dda2f96a83f34815c1058f3f630c7ba63c6875572581e8d9b16fc13472b10
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/wallet.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:02 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 529
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/nft.svg
200 OK 467 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/nft.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (966), with no line terminators
Hash 1dfbad7134e55aceb9eb40baa64f66da
6c5228ac5eac1cf1433de0ee4c3dfce477d7f6ad
c0b405e883a5fb061f302461412aeb67096702ab578865f967e54a079459b0ec
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/nft.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 467
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/sale.svg
200 OK 611 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/sale.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1062), with no line terminators
Hash fa7dd16849c4ba31beace7f42d68523a
54c336aea462d6c4e613be98dd4dc1d0c93e080e
ae4989d29260e6886cda48c21e04b9384982d889a85a81810beefe484ae12910
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/sale.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 611
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/collectibles.webp
200 OK 52 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/collectibles.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 476ce7100d248414d01ebe385b9a3699
036cc014ba812783bd079e04bbc828ecd1f1094d
ccf8d844fce53f496903e474f331d318e9498ea957126a2152afee889f4a60ea
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/collectibles.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:40 GMT
accept-ranges: bytes
content-length: 52248
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/virtual-worlds.webp
200 OK 97 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/virtual-worlds.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash bd88b2dc4a25e15e246d200396492836
fdf5d8ea368487a3554cf4caba2a17a82a28e8a7
3b337c5115eccc66bbfebd7fc08aab4f6200c4f4a3773b680d42804aae1f4351
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/virtual-worlds.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:30 GMT
accept-ranges: bytes
content-length: 97424
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/domain-names.webp
200 OK 52 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/domain-names.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 13f3061ad278717cf185a4e3be105d35
037ecd16b1646de7690a1a2b8c15c4260a5b0f19
84092dbeee0c446ec5a3fb0aa65b244c1d92ced4d0ed39f4e4e65f548e8f0fca
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/domain-names.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:46 GMT
accept-ranges: bytes
content-length: 51922
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/music.webp
200 OK 131 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/music.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 131 kB (130734 bytes)
Hash b74b0a9e12d5194fabe6686e6cd36fbe
483164561faed595318dddbabf17678eeaa7a78a
a336a33e8d6a3b74fee191121a0c950229bc6097f9018983181b730b875c741d
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/music.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:52 GMT
accept-ranges: bytes
content-length: 130734
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/utility.webp
200 OK 141 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/utility.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 141 kB (140854 bytes)
Hash 77290dadd246bda015753085a7c755fe
c04973aabbe7c8925766c84c0bf88c7a820f8949
46441628c5e6b667e374d0fd5b4688efb15be39524e608bb20765f2274e38526
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/utility.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:24 GMT
accept-ranges: bytes
content-length: 140854
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/sports.webp
200 OK 129 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/sports.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 129 kB (129352 bytes)
Hash 9a0077fded7f3fb9b2618594ebc859e4
d8149685f5d0c6fe66311dee6e606f2e2c13d8b9
ebac54aa2f93a252975e3ca96d62dec0caa9a01e1f33668620aac442a0036ce7
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/sports.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:12 GMT
accept-ranges: bytes
content-length: 129352
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/photography-category.webp
200 OK 215 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/photography-category.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 215 kB (215364 bytes)
Hash 5b836f4bed45402184ccd898d52fa8bc
4e407d1900f8928da324c957cf43a99aab478ed0
bbf7fa21aa40409faa6416554f4bec4b482dc671c6338ca88050a61f2603a7fc
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/photography-category.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:04 GMT
accept-ranges: bytes
content-length: 215364
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/trading-cards.webp
200 OK 180 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/trading-cards.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 180 kB (179596 bytes)
Hash a995601de89992960cb18f1ba89479d2
110346a4d12b8e47c3ad44385f85a916d15ee206
ecf70633eab5862ce8d0097d47f1c075be220c716a2a2e44930d2acca6c19811
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/trading-cards.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:18 GMT
accept-ranges: bytes
content-length: 179596
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/art.webp
200 OK 257 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/art.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Size 257 kB (257268 bytes)
Hash 5306867e611ccf4ae4870f2a397ac666
05ddd42571a601d60d4fdef8539bc6e827d4d724
9a1d2967a227349ee6e2a778ff87f336b77cd406bac35dea39a05345d9a2fa04
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/art.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:03:34 GMT
accept-ranges: bytes
content-length: 257268
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/foxy.svg
200 OK 1.2 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/foxy.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3231), with no line terminators
Hash 221c6a0c4e819165b96933ad55fc3f47
820c8c138b33165cd8f847cae06d7c60b3ee1159
658e4745219e01068c2520503b7a78159d112d411e9fff0248b474ea612808d1
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/foxy.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:04 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1188
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/fox.svg
200 OK 1.6 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/fox.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (359), with CRLF line terminators
Hash c9f06b8b7a10a9e8a057689ecd338ebf
c73ddbb62564dcc0f0f2e096ba69555281121c43
7faeed7cfc7df590f940e92eebd57d7ad9302b648d7d12c26212333605e15c3f
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/fox.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:50 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1643
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/opensea-white.svg
200 OK 1.4 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/opensea-white.svg
IP
ASN #328364 Host-Africa-AS
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2931), with no line terminators
Hash f29566c5690ed78eafc3a2f8cc385f2c
b24cb004454d0843e10bf6c72fa6751ddd74c868
eb4a75ba1317149969b554a6016aeb515816cb4d98f3e121f3186263af9ec0a6
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/opensea-white.svg HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:38 GMT
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1385
content-type: image/svg+xml
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/loading.gif
200 OK 65 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/loading.gif
IP
ASN #328364 Host-Africa-AS
File type GIF image data, version 89a, 200 x 200\012- data
Hash c8465a7764ad647e5aa84cc24f0b79a1
7ae18b8a5d54324a131418eaf591e260d8434320
432f23042d18bdadb6863ddc464691923e628a37727d06d2dfc96bdb350848f7
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/loading.gif HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:16 GMT
accept-ranges: bytes
content-length: 65429
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/gif
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/spinner.gif
200 OK 74 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/spinner.gif
IP
ASN #328364 Host-Africa-AS
File type GIF image data, version 89a, 200 x 200\012- data
Hash 6c4931387212c6d3a51bfde363e20e57
3cf5bfa5cb3d2c9c294b09ab1ecbac06bf5dfd9d
f279295f81cdfcf5bc2a01ed3ffbd6949713ba9ac40f3aec0a5075bc0ad1f5f1
Analyzer Verdict Alert openphish Crypto/Wallet
GET //phrs/assets/spinner.gif HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:04:58 GMT
accept-ranges: bytes
content-length: 73625
cache-control: max-age=10368000, public
expires: Fri, 31 Mar 2023 17:39:06 GMT
vary: Accept-Encoding
content-type: image/gif
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/bundle.js
200 OK 11 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/bundle.js
IP
ASN #328364 Host-Africa-AS
Hash 81bddca4f08bca6e31162fa0170e9d9a
dba3a2e5bf92b19fca70c702049f2fefdd9e8a81
4082a99391972e0017b701b2e8511236489aeaba083e5b8841689f9ec05884ea
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/bundle.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:06 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 10912
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:06 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/16x16.webp
200 OK 254 B URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/16x16.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash def398722dced71ba0d2bae2e7d52939
65e7949cb82c5777ea3c45d8c19a3dfc6233546a
5d486d1b18cd39803401e57d3a6b0293756035320e531456278c6173319f87c3
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/16x16.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:05:34 GMT
accept-ranges: bytes
content-length: 254
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:07 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:07 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za//phrs/assets/180x180.webp
200 OK 1.8 kB URL HTTP/2 opensea.io.offer.brainsonit.co.za//phrs/assets/180x180.webp
IP
ASN #328364 Host-Africa-AS
File type RIFF (little-endian) data, Web/P image\012- data
Hash 504a6cface1532e9d9d02b3f484b590b
61f4c7b992c8af388efa731d50442515c2b9749e
0938a2f31549bc9225534b09e85b66a749d3e922c1ce139267ac30bbfb0a3e9b
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET //phrs/assets/180x180.webp HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za//phrs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 17 Apr 2022 03:09:42 GMT
accept-ranges: bytes
content-length: 1782
cache-control: max-age=10368000
expires: Fri, 31 Mar 2023 17:39:07 GMT
vary: Accept-Encoding
content-type: image/webp
date: Thu, 01 Dec 2022 17:39:07 GMT
server: Apache
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/image-13.png
404 Not Found 0 B URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/image-13.png
IP
GET /blog/wp-content/uploads/2022/02/image-13.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Cookie: __cf_bm=6zZQEGpS71wUdupOXMtKd5fn2xehTKhUYcwRVisCnaI-1669916342-0-AfQzO3kBGp4115SC1CuOJtJGIfwzdbqEQCOpeNxcRODR+1ubbySrvoFs9a2iPpJuGj1dTgY3T0nnP0igN6MQvJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:08 GMT
content-type: text/html
cf-ray: 772d99b3eb820b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kiad7000044-IAD, cache-dub4347-DUB
x-timer: S1669916348.840088,VS0,VE142
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/image-13.png
404 Not Found 0 B URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/image-13.png
IP
GET /blog/wp-content/uploads/2022/02/image-13.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: text/html
cf-ray: 772d99922bcd0b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kjyo7100154-IAD, cache-dub4323-DUB
x-timer: S1669916343.514747,VS0,VE156
set-cookie: __cf_bm=aqtmLaAOzbO4.1t73KqhCBfv962Oz7oEQhjb1vjDRCE-1669916342-0-AbfUe/27vvIkiACqOu365WRA5iPopmy958cjtZgyC3SF3SySpoIuFBuU1iIL3TDhTzL4sRUCShiwUhdpdS70X08=; path=/; expires=Thu, 01-Dec-22 18:09:02 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
static.opensea.io/gas-free/video-background.svg
200 OK 0 B URL HTTP/2 static.opensea.io/gas-free/video-background.svg
IP
GET /gas-free/video-background.svg HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdsv4zeXqUuap7ZHtxBQ21htxixgBfJlRFfz6TZdvVkxamQCb5XxIxGi0GI401w11xqjWWSS-ncaCkPSUhPaR3Qg
x-goog-generation: 1630524348914119
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20064
x-goog-hash: crc32c=8vorDw==, md5=9AtoCsBIAExuRya7g4YFUA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
last-modified: Wed, 01 Sep 2021 19:25:48 GMT
etag: W/"f40b680ac048004c6e4726bb83860550"
cache-control: public,max-age=3600
cf-cache-status: HIT
age: 2556
set-cookie: __cf_bm=i6jdtNE5Jbx4AWVepoF_u1oMZ1Rg9trP2htUH5EBRdA-1669916342-0-ARopCp0qyf0AAfgMuigN2c7zk2wOpJEbJkVYlo3CddFo7t5jCaURTJoILpGpaBRgAALHJ9zcQZGNesLIJZ/zSh4=; path=/; expires=Thu, 01-Dec-22 18:09:02 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d99939d270b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
200 OK 0 B URL HTTP/2 openseauserdata.com/files/6f8e2979d428180222796ff4a33ab929.svg
IP
GET /files/6f8e2979d428180222796ff4a33ab929.svg HTTP/1.1
Host: openseauserdata.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdvfSAWPppDl1jrbYZvv_JuhcERKUYdEkg7-0Yr-yc3mfeTklho8_Bvc2r3LVK8WaUTaYCYmFA7yE9MZKL3aKy0BEKk3EGg0
cache-control: public, max-age=31536000
expires: Fri, 01 Dec 2023 17:39:02 GMT
last-modified: Fri, 21 May 2021 02:51:27 GMT
etag: W/"6f8e2979d428180222796ff4a33ab929"
x-goog-generation: 1621565487252748
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 684
x-goog-hash: crc32c=VbTFmw==, md5=b44pedQoGAIieW/0ozq5KQ==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: Content-Type
cf-cache-status: HIT
age: 1729944
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d9991dac2b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/01/image-10.png
404 Not Found 0 B URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/01/image-10.png
IP
GET /blog/wp-content/uploads/2022/01/image-10.png HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Cookie: __cf_bm=6zZQEGpS71wUdupOXMtKd5fn2xehTKhUYcwRVisCnaI-1669916342-0-AfQzO3kBGp4115SC1CuOJtJGIfwzdbqEQCOpeNxcRODR+1ubbySrvoFs9a2iPpJuGj1dTgY3T0nnP0igN6MQvJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:08 GMT
content-type: text/html
cf-ray: 772d99b3eb870b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kcgs7200048-IAD, cache-dub4351-DUB
x-timer: S1669916348.841514,VS0,VE137
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
200 OK 0 B URL HTTP/2 www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
IP
GET /embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 01 Dec 2022 17:39:02 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=ZNEF9yy2YQs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=PXX4F0MMfQ8; Domain=.youtube.com; Expires=Tue, 30-May-2023 17:39:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+770; expires=Sat, 30-Nov-2024 17:39:02 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250
200 OK 0 B URL HTTP/2 lh3.googleusercontent.com/uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250
IP
GET /uMYGSBdEi-kLG7_z2dfOoGQYRFdU9_Dw0LSwzsG94MCGnuQawRw9rG-mMpBHY65we-ugoiD80NCiDzK8DI7TjfOWcHKJRqUrhbIQnxk=s250 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 119666
x-xss-protection: 0
date: Thu, 01 Dec 2022 17:39:03 GMT
expires: Fri, 02 Dec 2022 01:38:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/d75422b4/player_ias.vflset/en_US/base.js
200 OK 0 B URL HTTP/2 www.youtube.com/s/player/d75422b4/player_ias.vflset/en_US/base.js
IP
GET /s/player/d75422b4/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 593973
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 16:09:35 GMT
expires: Thu, 30 Nov 2023 16:09:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 30 Nov 2022 01:20:28 GMT
content-type: text/javascript
age: 91767
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
opensea.io/blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg
404 Not Found 0 B URL HTTP/2 opensea.io/blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg
IP
GET /blog/wp-content/uploads/2022/02/76edde93ea6402d5818fbc03767aeda0.jpg HTTP/1.1
Host: opensea.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Cookie: __cf_bm=6zZQEGpS71wUdupOXMtKd5fn2xehTKhUYcwRVisCnaI-1669916342-0-AfQzO3kBGp4115SC1CuOJtJGIfwzdbqEQCOpeNxcRODR+1ubbySrvoFs9a2iPpJuGj1dTgY3T0nnP0igN6MQvJ8=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Thu, 01 Dec 2022 17:39:08 GMT
content-type: text/html
cf-ray: 772d99b3eb860b55-OSL
cache-control: private, max-age=0, must-revalidate, s-maxage=300
last-modified: Thu, 01 Dec 2022 05:15:17 GMT
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
cf-cache-status: MISS
content-security-policy: frame-ancestors 'self'
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-cluster-name: eu-west-1-prod-edge-blue
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-served-by: cache-iad-kiad7000079-IAD, cache-dub4350-DUB
x-timer: S1669916348.835169,VS0,VE197
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
opensea.io.offer.brainsonit.co.za/assets/js/web3/web3.min.js
200 OK 0 B URL HTTP/2 opensea.io.offer.brainsonit.co.za/assets/js/web3/web3.min.js
IP
ASN #328364 Host-Africa-AS
Analyzer Verdict Alert openphish Crypto/Wallet
fortinet Phishing
GET /assets/js/web3/web3.min.js HTTP/1.1
Host: opensea.io.offer.brainsonit.co.za
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 19 Apr 2022 01:05:00 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Fri, 01 Dec 2023 17:39:01 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Thu, 01 Dec 2022 17:39:01 GMT
server: Apache
X-Firefox-Spdy: h2
unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
200 OK 0 B URL HTTP/2 unpkg.com/evm-chains@0.2.0/dist/umd/index.min.js
IP
GET /evm-chains@0.2.0/dist/umd/index.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://opensea.io.offer.brainsonit.co.za/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 17:39:02 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Mon, 02 Nov 2020 20:31:28 GMT
etag: W/"5881-yk4n8EqlvpHDLglCWD85vKUneh8"
via: 1.1 fly.io
fly-request-id: 01G3YDPBXRA18B04P0CD7HWFWJ-fra
cf-cache-status: HIT
age: 16406742
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 772d9992df6eb527-OSL
content-encoding: br
X-Firefox-Spdy: h2
102.130.117.137
142.250.74.42
104.18.17.184
23.36.77.32
93.184.220.29