firefox.settings.services.mozilla.com/v1/
18.164.68.21200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 09:05:36 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8671c9c28d4abb06df55e1091d0f124a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: 6GYdDKOn6YkFSHnoHADmxU5uc4X24iyN5X-9pc1doXSxs9OBbuI9hA==
Age: 1556
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6048
Expires: Sat, 24 Sep 2022 11:12:20 GMT
Date: Sat, 24 Sep 2022 09:31:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.51200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.51:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 7334e58f541a6f336bf4941e79456558.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: YR7vw-F45KXgseTcFLZ4kK_-Edx4PDhqcEq0uZ83ux9P2EFgBfOlRw==
age: 19109
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 09:31:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.21200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.21:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 09:03:42 GMT
Expires: Sat, 24 Sep 2022 09:49:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 c3ac810888cb46ee4166354c2171bcde.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: wu8dymzzYRLtNzbL7tNPNayg9JnguPCXEYUydY51KJqffrNfsIPG4g==
Age: 1669
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 682
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:33 GMT
Last-Modified: Sat, 24 Sep 2022 09:20:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
216.58.207.234200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (65451)
Hash 81182f4b684635f6bdcbdd907ee66f25
a1f2f151df72ede41397c8131bd47a3ce85575b3
be40946c98d9a78a3c7c9ad097d379ab12549a195bd7a4766919a1d3fd987396
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 15:53:22 GMT
expires: Wed, 20 Sep 2023 15:53:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 322691
last-modified: Mon, 13 May 2019 14:37:17 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4fb51016b82f43bc6ee9f5ace001690c
5390a86aa0a7b82f5d09605b10812567b309d27a
73283fa4b416ee80d2ac87c30d2183afa1ae487a8650563b79adc1f001030f73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ewtetpedysbest.ml/us/opensea/files/iframeResizer.contentWindow.min.js
104.21.51.239200 OK 5.0 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/iframeResizer.contentWindow.min.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (13066)
Hash 69ea2b8c236be0fcdedebc41563872ae
701ca7a78d9f0b6c2ffe7b76fcddab53748ce077
c0ec83a4867f367329ec562bf7d6513fa0ae96f5768c7503f8d47113f89e4de7
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/iframeResizer.contentWindow.min.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:47 GMT
ETag: W/"6214b107-3491"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A%2BP7PaEEfVxGxAf77xNgO06vcj97RkyutbsPpX1rHjC4%2Bh5qtpMgT1p%2B%2BNWsXiz13MAiao06c42aEMkEmDe4UD%2B8gyZIO6ICZMyqR7xpozZz0pUUdq7GOaHQAqJpSvGh%2FPXqrA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81f98903b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
44.238.3.246101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.3.246:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 61d0UHQMA/i/yAC/x5roQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: owLFCimAR2ZKDcXyDknhly9JGws=
ewtetpedysbest.ml/us/opensea/files/810eee84d49a36e81867.css
104.21.51.239200 OK 565 B URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/810eee84d49a36e81867.css
IP 104.21.51.239:0
File type ASCII text, with very long lines (1390)
Hash 8edb7790ef70ed73a20f6f0b24d01361
3bae6c372a88290658f6992ee36e787cb693ab4c
bac3a40398a33da9204290693037893cab4cf683457da334802898eb319c3aa0
GET /us/opensea/files/810eee84d49a36e81867.css HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:33 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:47 GMT
ETag: W/"6214b107-5a2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v0MHBE3L5DjQ7QfXLwSAi2sCAWkfgPCyZ%2FVFAJWQYKAse8TD24oNED19EhenBdxR%2FF9KK7nm6gDRu0ASAujsyTPFgXI4KHNTVu4zfrukj%2FDVq2p1MRtW2gUNJSkwSBm3ukLopw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fa49c4b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/opensea.svg
104.21.51.239200 OK 1.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/opensea.svg
IP 104.21.51.239:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash 4840df9e89c03b43b6617bafe15e960f
e925227f9529076b4abff58cb998226269e136d9
53a75038e2700ed3ba9531afe4591fcdca142984b5ef9d44d3ae27f6dd274dfc
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/opensea.svg HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:33 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:53 GMT
ETag: W/"6214b10d-f41"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yffETe0I%2FRfatAX2NV%2BJ8GEFHK1t07fOoXyEMNKzPzzr%2FcpQxfPStIZRBXB%2Fr%2FBhNEjvzYq1Cbgd42DLY8c4dpjiKygdvBGfoBwiRBJyeat1dTXspB9rVf3aFlbhsttq4cHEiw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fa4859b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/webpack-cdda4c9aecdee50b638b.js
104.21.51.239200 OK 1.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/webpack-cdda4c9aecdee50b638b.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (3201)
Hash 077f8e126114321f96a23b14b8a43a44
3a3dddc7ac3a7a92aefbeedf2803102bc9ecb052
73cc22e992a00a5cc16d85e7ad2716be9bf83e94172a2454d4c640291b204733
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/webpack-cdda4c9aecdee50b638b.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:48 GMT
ETag: W/"6214b108-cba"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5FAgYtEuB%2FzlOsQL9zrvbCDd1I9BE4JI9HFPdJskYCaQ81%2Fdr0kX0apvzk3l%2FuxqUSfUCpFTFgMlBpecLfIRrinciQ3nxF0fdxxQZ4entEwgkHhFHNKv6LNLJ1PNhSycOx1W9A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fa4977b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
104.21.51.239200 OK 60 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
IP 104.21.51.239:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba0e70bd6fb99d16e7911277bd56f96e
dab9567a48678a5ff2d5e00a4553e030a7d3afb1
102e49e9957141648f9e53d8340beb46a228a28e8f45cd88b1deae211403988d
GET /us/opensea/?subid=6422-9011-202207080930094c4974 HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: ktr=6422-9011-202207080930094c4974; expires=Mon, 24-Oct-2022 09:31:32 GMT; Max-Age=2592000; path=/
uid=107; expires=Mon, 24-Oct-2022 09:31:32 GMT; Max-Age=2592000; path=/
oid=171; expires=Mon, 24-Oct-2022 09:31:32 GMT; Max-Age=2592000; path=/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5am19MaJhI7FX2gqjnaVUEU10UKjub2GayfCiwFTcaQetQG%2FF8MljY736cygaB8%2BnTWjr1L192gw0%2BvRTshh0jfhwzdXh%2BGh2fhVq0fxD5RSymv4wR6W2CTujKYO4590nt4OGA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74fa81f57aa7b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/fs.js
104.21.51.239200 OK 69 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/fs.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65410)
Hash 74cc85bf246eccbe6ef88cd64833c42a
cb5e56bb90ba64c849687122bc837790f6cb402c
06dd1a36ae3abf3e619407b8e1c317ae4f9658d33310a5f0d55ba3185b38302a
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/fs.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:33 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:47 GMT
ETag: W/"6214b107-38105"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zboQF%2FQQm62pfz0jSDCUsLltDj7fXzqchtT2VeIydbEtPj4ybV2OV58pkB5LqFwvdYPgMLHrbj%2Bn%2FCZTdaiBrxq%2F65G6BDyLj9OP3q3pwez30a%2FUvMXKRilcIz0JYASKMA75vw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81f98979b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/main-c53512ada5f9d54452e7.js
104.21.51.239200 OK 9.3 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/main-c53512ada5f9d54452e7.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (28132)
Hash 2d9e2d7b4c04cb41ab2309ca559586e9
27b226e14cd8d794c7b1c2de34d4dce239649df5
a0af36baf7f5f19ae1e775b8c22da7bd8be832d83aebbbece711114a9814eeba
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/main-c53512ada5f9d54452e7.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-6e1a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HWiLUShCaufJ5VePU5FKOvM1oVF7Gt1y6Ppl7jktEdhNV8XPup7Bjd0h8txmAPHY2BtBrjdnXlXavNJokpNZ1lO%2BjTVC5OWWghIjunjI%2FL%2FR2C0C5XQvccp10lhE7qYuzUAC6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fd6b93b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/c78d26b1.0206c1bd9e700fff603f.js
104.21.51.239200 OK 25 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/c78d26b1.0206c1bd9e700fff603f.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e8297470925beb4878558deb4cc05220
d44b86a13bbb2f1f3bcacd12f0c6831bc972dc7d
0068a78aaf6b734e1d4c706fb62698780e1f5608d161f637cb939466be9aad03
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/c78d26b1.0206c1bd9e700fff603f.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-1186b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tQhoW2tCeI6e0%2BC%2F1etRx9hOm8ctJOo53dWp9Nvgzn%2F108OnTAxbW0lNAyZfisMSdeSmcPI%2F%2FCmn93nnNrgfpP8%2FUvMFcn7LHw3imTuwjupN76ZXg4NqqP9SkNVHl%2BZPAQfbwg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fd6d25b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/commons.e36e2e88abf6012400c6.js
104.21.51.239200 OK 16 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/commons.e36e2e88abf6012400c6.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (50948)
Hash a1e727aecf0bfe11647405efd36a0284
766692e721d4532eefd8d6b679022367581d5c87
5c8d39ba62af5082b29ecc0792c31453df5b4f5ed4e0b195fe474ca912eb88d3
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/commons.e36e2e88abf6012400c6.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:48 GMT
ETag: W/"6214b108-c73d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jis%2Fdvh%2F4ljPlFY78%2FfMWxE%2F7BuI1OfZJJt45pmIrtrB8TiD2qM6SOW58JoUR8jS1EAS7gmHd0w0s8pijGnku1SZgISgffhj%2Bx3%2Bu6dffo4KeIHPkqa%2F%2FLq78vZ3q0EM0c8u0w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fd6d9ab518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/framework.973672fa1c877200789f.js
104.21.51.239200 OK 43 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/framework.973672fa1c877200789f.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b1081bf529fb3a846b5b20945a8fd9d4
958d8830bb55a5a218c9ad5dce052156a0aed329
a95cfe2c061bf09f9e5b4d8b7e750db7f0bd744b9123b50b5f9890d1e77ebbbd
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/framework.973672fa1c877200789f.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:48 GMT
ETag: W/"6214b108-202a9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MCvIogGvCLb16LmWg4HXVZJAbkFJ8ZBu9jBWBkXFY5HxTNU50CUGW6opFYmeBWcC%2F2PQ16BZChTTO6Fvvz61WFYqCxv2ETNUej0EcDeQBSs5cCLJ0%2FDbLvMS%2F2wgwh%2FuA1qbAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fcac2ab50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/9cccfe13.fd7937abf813ad2eadea.js
104.21.51.239200 OK 27 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/9cccfe13.fd7937abf813ad2eadea.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4af6a2b79e415f64a6f6fa09813c81ff
c05c906145fef9311cac8556823c13dcb98c69c2
17a6f422a65e76db138634f072e02ffb28221631b5c81f9fe49e479103693ba5
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/9cccfe13.fd7937abf813ad2eadea.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-190b1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KqHhefPhPXIcucQ18HSpHETr5JpUVekvwGgMPQ03jjSnraYmrU%2B010vRP64kNMdZuj1z98hm8B9sL5yqY7kFrKy2OU0oA343M9fn9rpQndpgDAoKVRwwQzZJVSJIi5LHitcG%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa81fd8b1fb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9041
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 09:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9041
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 09:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9041
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 09:31:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9041
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 09:31:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 42018
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 42187
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HfslSWhSAKRjZr-qqajVm6bKf9jGt2pXq8N8GlXgyTwRxWqw0y-CgA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 05:14:28 GMT
age: 15426
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b722574c0e6f63a78a19eff0f100ae4
96185aa90e560a4bd9462cef2e280561ee557413
c5b1012f1fca39d949f4b70e69b94bc6e03521d93ab8c38bb30d2c9c43bac633
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12087
x-amzn-requestid: 2779f1ce-50e8-4bdc-b8c2-6f87976a9daf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4WAYErZoAMFYrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd068-1f1831806dffda454e532ac8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:15:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wsZ5UX2rbxGMECRjV6NR4fTFrfj-jK94RDMZn0_SKU-DDYKHl8JgMw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:39:00 GMT
age: 17554
etag: "96185aa90e560a4bd9462cef2e280561ee557413"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 42188
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb832dec96067e5e003b2f7617941
b0697adfd0fab611ba6afae2218645977846c341
e3ebac2261c6243caf678babe5350ae70da1e24fd7a0bbfdb449fd2b933eb237
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6510
x-amzn-requestid: 1d584980-5495-4925-b420-ef8b5a5e30e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruGGusoAMFe6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-370b00862dfed1606ac36797;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1n3rcgCsC9jDDWDLNrwAQabcAXCoYwH5jh6j8cLJPwAF9SKe9yx5ng==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:27 GMT
etag: "b0697adfd0fab611ba6afae2218645977846c341"
content-type: image/jpeg
age: 41647
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ewtetpedysbest.ml/us/opensea/files/a508c3f2.034fb7f4ac37110087ce.js
104.21.51.239200 OK 3.1 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/a508c3f2.034fb7f4ac37110087ce.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (8938)
Hash 0d972264d7de14c2b3a515131ba21b0d
8a97ebe9206f2f937b18fdc8653d9e4b0a8b7eb5
f2c60577ef669c234cdf6c3f53d555738b3739d6f772b97925751969c9ae63e3
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/a508c3f2.034fb7f4ac37110087ce.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-2324"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sfo3JWnxtvBC2wTPl5BoQ%2FhFrT%2F%2Fp2KeacJLrqQkVANBk8xR3U3noCaSa7cj%2FbUc%2BWXZIXXG6uI6uK40sTQPDh0E2ZelMvq2lHwoPcjTyR6dHa2k5nkaSvItSSA1LaX11OQ0vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8201a890b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/35270ec8.79ed6c296b8975b24477.js
104.21.51.239200 OK 16 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/35270ec8.79ed6c296b8975b24477.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 735f8cc2793391280c6c7eb9fdda6d60
69e867b407c08caed4f66dfa5180857e29514a8a
cbc33014bb587ce695122e9ce8a0972147b3643c58212c0ba13cb859acde31da
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/35270ec8.79ed6c296b8975b24477.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-12468"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l6ssb7y0PyCOWJoVkgrP7jjPZeghlhhDprt0xrq8JbCfjfHZE%2Bi3NyvfvKsoMgO5%2BKa7TKMYVpeqdwvHPbdjcZCqYhXz%2BpEWJ6Dt3yTKVxPTe97D5CUk7AeT54qoUpCMgqnEww%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82014a36b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/e971612a.2a3015c858e817e81d75.js
104.21.51.239200 OK 19 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/e971612a.2a3015c858e817e81d75.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (60344)
Hash 636eaaeb57d92b5f18d6c7c5cb32dac4
ee11f4c63902c98e7c66c8000266e6f9bac8d395
48f5f2760a571b79f2fee69a560d8c0e5926296d03bbbf4cecee3a63a8ce06bd
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/e971612a.2a3015c858e817e81d75.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:49 GMT
ETag: W/"6214b109-ebf2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VAqP4Z%2BLFL23N3D3dO1trPKrF2B9X4idV1fyJs6LblKCV4kimSflLPvepBpTarHee1Gzqe%2Bpu87ApFG34hh11G%2F5XuxQ30Ff%2BodqAvQxCLK7dPpeN2a4sPpGBp%2Bx2T2F9hXnWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82026af3b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/ee58867187e443a6f9fcd41cdc57a1a15d287da1.6b19b08e0aa163a27e7a.js
104.21.51.239200 OK 9.3 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/ee58867187e443a6f9fcd41cdc57a1a15d287da1.6b19b08e0aa163a27e7a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (28471)
Hash 9146eab3d6198849b981047e6fb77253
ba1dc887101904f230c2f593857e3c373c07a4bf
2ab4ea358b4518efe373e6c9ba08fa1da08e07207bb79d63ac43bc70257b4e6c
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/ee58867187e443a6f9fcd41cdc57a1a15d287da1.6b19b08e0aa163a27e7a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:51 GMT
ETag: W/"6214b10b-6f91"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7OO%2FMZMvV5SPIwoYSO7LUH2t4whujWjm2T77tpbJRis%2FM4aVxttPR%2BuIqU7TgqLumSXrl5Z4kQx5w7gnHucdnhU7IBH3fW7cqwR5nxRWLmpNOIuuOu8K3B2WN1sg5p3M2%2BIL%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8204bd3ab517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/ec23b2e1.0009e21f8fa16d1d3ae6.js
104.21.51.239200 OK 26 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/ec23b2e1.0009e21f8fa16d1d3ae6.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9b2bcab1f6dd9174bb26c697bafc912d
321074d67c746265266dcd7a6558c98d486c8200
4cb3a742227bb20c40a69ac059cbe18572632a1be17222598baee60028e27e40
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/ec23b2e1.0009e21f8fa16d1d3ae6.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:50 GMT
ETag: W/"6214b10a-2d9eb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Hj%2BzoC7iirVHCCDNeCq9P1B4%2BBX5gZO9HPX%2F%2FkO0UftidkPWAozwd0RMSuDQgSttRQvC3qehnln9G1juEOYNt%2BJFsKj0jheniJ9MXW2XBTvd%2FOHrJNDEe17CpgbosePF1eJdA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8202dc7bb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/f1fd94e3bdc18c10d354851dbbc381a2f947f236.93848d68968b2b4f9b7a.js
104.21.51.239200 OK 5.9 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/f1fd94e3bdc18c10d354851dbbc381a2f947f236.93848d68968b2b4f9b7a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (22283)
Hash 3b6ba82836f0e1ceb0888f22c781bfe0
7f4e3e25826eff62aa56e5336f5bf51d970e47cc
8245bd267949cb4f43753ec0a3693d7ffe8423fcd883154a354ba2a0e50849b1
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/f1fd94e3bdc18c10d354851dbbc381a2f947f236.93848d68968b2b4f9b7a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:51 GMT
ETag: W/"6214b10b-5765"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GidUR%2FyJYsPb4GPKDlsUvCAqzexsFUqSbaDH7pJj1WI83IrS6iFy%2B5PKfZ5AmEV85c%2B3%2BsU3AjUfa%2BaZKogXD2uv4gJWG9FNcM4GZ1dRVU01uY8wTxknzC%2BOuNd0ry3Q%2BeVJoA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8207b980b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/33f004c3602ae34a470050250261819e34abf824.8cdbc07d48927844b80a.js
104.21.51.239200 OK 11 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/33f004c3602ae34a470050250261819e34abf824.8cdbc07d48927844b80a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (44189)
Hash 60dfce081b8b373f8be6f788ee689ee4
c5f3a6b60a24a0477229aa2554ae84a1de74b26b
bf66cf937afeb4ae0b12f80df4fa80fe62fae12b9cee53d73ac99d78be92642f
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/33f004c3602ae34a470050250261819e34abf824.8cdbc07d48927844b80a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:52 GMT
ETag: W/"6214b10c-acf7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tsc%2FE4ujDS42HalPqrZlz8e7Bf0Lmv0T3vNBdHgTNSTMaNCZuBMJOuPE%2B6U6M3GFMbTRf2VlAay77iIUrMh51dJ5v9qebmiDh0YIEPHXmBsBMrbvmVnKHvyxJdnKQ9J4Yl%2FUpw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8208797ab517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/bbad298436bb521fd33029b6bec413bd683ee6af.64c9aadfa9967e13b5c8.js
104.21.51.239200 OK 40 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/bbad298436bb521fd33029b6bec413bd683ee6af.64c9aadfa9967e13b5c8.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 26d107a209173fee9c7eda868ab02e9a
6200efffb57953162a4ef9ffd6ad1ba47223e4c2
83c64c62f54130745ec8bb48b3c94313259854a0a99047f0a44cc05f8a8c5853
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/bbad298436bb521fd33029b6bec413bd683ee6af.64c9aadfa9967e13b5c8.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:51 GMT
ETag: W/"6214b10b-1b855"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VPpXuxCZcGTUHb%2BoN7lJJ5is3fmrv0T%2FKFrIhau5CvsPPIge03bjh5izrUZQpI%2BLysQQmsJkbC40nLurHqCRD29ahqqtm%2BiNg3whKryuCKYxhoQ6GWFQg23oaPVi%2FibfH9NcdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8206c87ab4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/_app-e2909621f196aa40186e.js
104.21.51.239200 OK 14 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/_app-e2909621f196aa40186e.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (4014)
Hash ee329873bc0f3b60d2b88ee6e394b7bd
fb70c94757b4c812b7137707cf0811acfc0fdec2
ce3c79c34b8f60540b00f365c73746126e8632bba1e4e4c7135c49aa82e0d431
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/_app-e2909621f196aa40186e.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:01 GMT
ETag: W/"6214d479-e99e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eoUKNlVbjdUL0uPwEfNUBJAmVdGCpUvXp2u0ICNUYNdCpNCKCvy4e%2FaG5D4dese6wlkC4zQMPiJFU%2FoBXq0HII8C9Gug7PwAjb27EPvuXQjzNb3AJ91XNKB00nCXSS%2F9g1EJ4w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82094c22b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/4f948394af59d5ea30c3828ebcac0dba0d89ed09.7cc9e5850bd3a86be64a.js
104.21.51.239200 OK 228 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/4f948394af59d5ea30c3828ebcac0dba0d89ed09.7cc9e5850bd3a86be64a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 228 kB (227747 bytes)
Hash 90ee46e88264a06c8151463028265ed8
20734732368758c2b39d3322eff8bdb03a25c373
68728fe4bf98dfbee561a726bd8e9ef2468b45ab93cb9d34c2852f4b7b37b733
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/4f948394af59d5ea30c3828ebcac0dba0d89ed09.7cc9e5850bd3a86be64a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-c8a3d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cCQBUGf4X6AC4ZQCKR3c3gE2nZ1wbqNp4A3B8eo2d9sEEZDgLT6hWcf7fnlVc5JieOqIPmKsoPUa2U4KtKZt8El9FKwsCpJJAK9U40ndmyIWp7dB%2BHUzwpAog%2B0e3i9z4PV%2Byg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82040a90b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/42984c518d7cf2ab35f813fe319ed53c2d4f1866.f3bda1ce6280551e5e88.js
104.21.51.239200 OK 5.0 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/42984c518d7cf2ab35f813fe319ed53c2d4f1866.f3bda1ce6280551e5e88.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (12150)
Hash eda82b7587895794e5b30dcc7b20d677
add9a91655d425a0ff121e5fe20009646050d01b
07940e0e3aae6298c1b5bf45552182d96f4f8feba21b536ce266ffe078311174
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/42984c518d7cf2ab35f813fe319ed53c2d4f1866.f3bda1ce6280551e5e88.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:52 GMT
ETag: W/"6214b10c-2fd0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9cDJ%2BKKH%2BMIusxYFX43hgFmjUZfoZ2nmu40tzEn%2FTYHYLzyVNVI1XT80Q7R5YpObBZdnfsKZeSD835awGZlxRhiE4%2FYfPCSdKI5zLWOwZGqOY1CpR5B0BrA%2Brc4ivIqS%2Fjv6aA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820bee44b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/077bc7c1c93dba551a99ab663220fec2c2d9610b.fb456a817f418326cff4.js
104.21.51.239200 OK 3.5 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/077bc7c1c93dba551a99ab663220fec2c2d9610b.fb456a817f418326cff4.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (10197)
Hash 33c1ba1e1a75350011a40cbaccd847c5
587d5287df8a692a23e4f9f64088c2b4b03d47b3
0232912ac1c42e48fe1f6a11aabd914104e17fe612a6ab126d139e477e359eb2
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/077bc7c1c93dba551a99ab663220fec2c2d9610b.fb456a817f418326cff4.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:52 GMT
ETag: W/"6214b10c-282f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SWn8hW%2FVnuUg9wwLBZkWjU2XsoflyI9nU8%2Bjj6VYzXjnFNS3%2BmAZudevIMW%2Fk1LANrR3f1FBQlOkSLHZVUxHouHrvWGDTmcMVhWpW9XnCn%2B1mwe9lWfYKrbJ1jrBS7VTyDuB8A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820d1d87b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/5e80977299a279c2afd6320c3680105100288ff0.6214b7ec4b9b71ba90eb.js
104.21.51.239200 OK 9.7 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/5e80977299a279c2afd6320c3680105100288ff0.6214b7ec4b9b71ba90eb.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (29804)
Hash 5d72efa52499d960ad58e7a99ca052a9
445567ac6a2341f1d5e451f32aab3cf272e4d5e3
8c650ccd55ba2d7bf1b582e415984ed08b3300ad1c4f845ad85d69ef4c427ca8
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/5e80977299a279c2afd6320c3680105100288ff0.6214b7ec4b9b71ba90eb.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:52 GMT
ETag: W/"6214b10c-74c6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mx4pBsSVFkSwqkzSSjFJcTSadGQUiRohk%2FkSOqDjH1ogNA155Y80LegH0tmiwWiWhk0vpCDM0VXd2oekjrzASIzx1pl%2F62KiTq5zTQuO1nlV9Wc5jDET9h7h2gPDNNmYoftZAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820d3fdbb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/_buildManifest.js
104.21.51.239200 OK 2.0 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/_buildManifest.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (6029), with no line terminators
Hash 562a5ba5f5234fcf97e6f727a609b795
b60fe761da3a9fc83c52499dcf3c8494b4f8823f
4da53de1a0a98a73d5bc8552f048b90e6b6fb064affdf4d0e7144b8f0660213c
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/_buildManifest.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:53 GMT
ETag: W/"6214b10d-178d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2BSv6txW%2Fpg5QjiRmOYjaD9C%2BB6eYehqLz8Veb4Yab3SXX8GLM%2FNG8YOKyQREPC1pzVF%2BCPqN305oS1SwGvQKTE%2BpsV%2BDAxqvaCoHr6KKCqRzUDUOKlTktU6YAqkhxt02b1ofA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820f1f61b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/714abe64911f7dc7a392bdb298d196a64b0ae41a.7aa5ec95928f47670f17.js
104.21.51.239200 OK 1.0 MB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/714abe64911f7dc7a392bdb298d196a64b0ae41a.7aa5ec95928f47670f17.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (7020)
Size 1.0 MB (1040896 bytes)
Hash 8794538077f4253dcbd96bbaccb964d9
bbeabb1d4e3f79c435657f31cc45a15371435ed3
530e0a870f70c0ded3d1347586779237d80f8edd850d84b66d85c70a59280f23
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/714abe64911f7dc7a392bdb298d196a64b0ae41a.7aa5ec95928f47670f17.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:15:20 GMT
ETag: W/"6214d3d8-5d2b14"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OsCBgJHIaJTb4WXtBsRrUUoudrePelR9vOYROUObgULuelYXZr4Hczxq%2B8k13BgFbcPqscc%2BaziBedvF4yuJruxGbJ7mSSs8DvPsI%2FPhhJbr0TX%2BZlSCFlLBf2CzyrqXQgP%2FPg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82031bb4b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/_ssgManifest.js
104.21.51.239200 OK 60 B URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/_ssgManifest.js
IP 104.21.51.239:0
File type ASCII text, with no line terminators
Hash 3a3a21a8555661b82b582a230c270275
4b95dd3d9816126f2b3231ef3ee11fcfa646e015
6ec0f0d1830724535d444117c7724130da4633be58b3cf7bef512fdaab631429
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/_ssgManifest.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:53 GMT
ETag: W/"6214b10d-4c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YURBAWyaXP9HcLweMwBX76q8ntTkh1NSTOmlYyCT7EaCGdF4rTYyQp6DRf%2BpVfiJuVCz6gMo7ogOGPldsuHgyIbivqnmG8zG3twtH7BBRbLlaamtmWMD2qf9RolecpcXoqdCmA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820f4a6ab51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/home-5825adf0545a74a2442e.js
104.21.51.239200 OK 14 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/home-5825adf0545a74a2442e.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (53294)
Hash 3a85f406d271b1eeecc444e4dda063b8
2be8735ea8a9b36a1e65551f212c4a8d944d804e
8676231b2ea6cc73155fd7185499f51cd66291ba4fc40fb89cb75046225f3409
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/home-5825adf0545a74a2442e.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:54 GMT
ETag: W/"6214d4ae-d064"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NXe9qCKFER%2F7R%2FQa58kxobV4%2BaEQwMVzg%2F2lW7%2B%2FP20z1VZb9FeXFt6GxNrzXHenS8aJpM7T%2FqlR4ymma275hxs%2F6z6Wgh%2FZs0sdTNkKwqQJ7hxsJV%2BOLzk9G%2B6W5TIWCIghHw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa820eb9d6b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/8db6f7452beece289c6f24e99c18e18be244d8bc.03b092a6f24a1ab917ae.js
104.21.51.239200 OK 3.7 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/8db6f7452beece289c6f24e99c18e18be244d8bc.03b092a6f24a1ab917ae.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (9614)
Hash 2011ba42644c3b3eee5a83a7396e33f9
41fc23c8cc68bc377182e1a2b2cf8cf834b810a2
115f9ed23d8b7a6390b76024460e3389e1b28ab6727d5e3e0d38770aa8a83976
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/8db6f7452beece289c6f24e99c18e18be244d8bc.03b092a6f24a1ab917ae.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:58 GMT
ETag: W/"6214b112-25e8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vxCrTzOB8aKHaKVOnAedSt%2FbSvpfUhNzW4LciW%2B8xAIPfUKNQ1cmXa9CDugrcc%2BsUGJjVPSNdVN0ZoQ3QCEuRikhkM22NNl4WkUacNRcsxRvlqsTevyA9Q4nm7H2FQGqqjTVpg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82125d85b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/89.699db03ad42d3ee43d8c.js
104.21.51.239200 OK 29 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/89.699db03ad42d3ee43d8c.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 84c9558c706c2f60dd796db5a6682eea
490324d63b20d9efe762710c289d04544c169160
e29ac7006ed013fb06f96a64acdc7ad45d61e7c3e75df949bd84d020d534da37
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/89.699db03ad42d3ee43d8c.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:53 GMT
ETag: W/"6214b10d-156cc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0B8bmBzhBm6UrAjKFjbBmMEeAs6bro6lUXjwNkI6CMMscSQztFrwLZNADu%2F1RUqrqG1A3%2BeLRBh48UgEImQxspP%2Bb%2FTpmi7eizSBuJBTIqPI5lK5W5qQ8I%2FZWiBjzwkIB5VqHA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82118d1bb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/91.48ad613ecdf3e3ef5b20.js
104.21.51.239200 OK 23 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/91.48ad613ecdf3e3ef5b20.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5a61abda714f4faf9e5eb9427e2ba546
c6f1ac17b3af2747f64d454fca13c7069c4e33c0
b8c8ac56c0f04888b9d7c8a631e175d44841efe35f15d00b9244a78a89b669f2
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/91.48ad613ecdf3e3ef5b20.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:53 GMT
ETag: W/"6214b10d-1148d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=szitvy3HHx2fcwnXgpY4%2Fv%2BNi2qxYE6c9Mdhm%2BGek4EPgWoDNgj98Sfr9XtWjYQEUWNI0S7tWLUoN8aC6gfWuKTe37u%2FoSvqrpHc3yNWC3gRULa1WM0uxTdmqGTdRiQQ1jS8Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8211cafab51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/7c64e57289bb8c3caa70709b45d911f94e347953.3a707b4d3d1319447fc3.js
104.21.51.239200 OK 18 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/7c64e57289bb8c3caa70709b45d911f94e347953.3a707b4d3d1319447fc3.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bd128c38a8c28e3b67957b3a01a46e22
e22a96454c0350ca027968f053f8f378aa12dd3a
a92885b8e1f821ae3717fb0799b7ad64a60516e1263d2cfa2cce360f87204093
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/7c64e57289bb8c3caa70709b45d911f94e347953.3a707b4d3d1319447fc3.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-127ac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ClXE0zPcFAIaET23KB1pIKn7jcRrY5xyxEQ8wGfjrf%2Fn7KGogCNr7PPSyhBZJlt1a%2Bb6zKcq2qErn62QKjcuj8w%2BLsHMHCK%2FYYkhdAjkXiny3TUjVFGj6UdxZE293Le0vGvmcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82120c6cb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cdn.ethers.io/scripts/ethers-v4.min.js
216.137.44.32200 OK 102 kB URL HTTP/2 cdn.ethers.io/scripts/ethers-v4.min.js
IP 216.137.44.32:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 102 kB (102475 bytes)
Hash 5a17a5b5b229c91152967eaff3219bfa
8fa590c1dc11df0190ed33627f83c8768c62d291
7cc45b591c29a722d5cf1774bb234db9787798d8279bba7124d59db552dffc1e
GET /scripts/ethers-v4.min.js HTTP/1.1
Host: cdn.ethers.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 23 Oct 2020 03:52:54 GMT
x-amz-version-id: 1vIDD7850l9p1Juv2dxP72RhnSV02NFY
server: AmazonS3
content-encoding: gzip
date: Fri, 23 Sep 2022 23:50:20 GMT
etag: W/"0e66b864a27c5961a702e18683961608"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b091f0807f56fed397ae3abb89dd1206.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P2
x-amz-cf-id: 7OInKYmPX8uT23-0GkUwksCIJCffQEZE1hSXrqMssvTIqWyb_HXI3g==
age: 34925
X-Firefox-Spdy: h2
ewtetpedysbest.ml/us/opensea/files/account-fc9f944ef8174ad21865.js
104.21.51.239200 OK 261 B URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/account-fc9f944ef8174ad21865.js
IP 104.21.51.239:0
Hash c6f99a0ca059d2f1468b1919393d159f
fe30a6c171f51ef4fbc8c9db096f803fab7bc8c7
4359518ddcf9f165db82e87b4ac66154aef608611b40b84f8b2b771e0d7f55e9
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/account-fc9f944ef8174ad21865.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:59 GMT
ETag: W/"6214b113-160"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iUIFSOdFssA2o7a87gmiom5kgzA2hSMEyWlu6y2LUiEsCRGT3oNzIdfvXw%2FSghN2CaHRS0QtgUjBkvKum4EdCF6ZsntRalvkv7OsDTQHApttLLto1vexDwo%2F%2BxBQviwskXjf4A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82174a49b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/e436cf43d45767e0079c53f59a0def6f1cb750c1.283b84c3d643c0cdec12.js
104.21.51.239200 OK 20 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/e436cf43d45767e0079c53f59a0def6f1cb750c1.283b84c3d643c0cdec12.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8605792dbbaf58286005b70bd90743c1
82590f22a3a93660fcbd44ef2c04b325c7209ec7
6fd8e4e1d359c948d24b41c2b61e50bff2742aa2c74d42f18354194dadb50676
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/e436cf43d45767e0079c53f59a0def6f1cb750c1.283b84c3d643c0cdec12.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-19292"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JlDBjpbgOJwyXmpxkHE%2FaxBdflFTn6XfWypejfrOAE1uQCTSUQ65ems%2BxP1Qcv0XVoaMHqZWZEWmqK4SiQJ8dIUQEfbSht3%2BbFJKlel2VR55a9ex3%2BdmfAdskVjnp%2BPKD%2FqE%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82140fe1b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/2af1076c938894ef6e81a691a5a6a8dc00f4dbbe.72e5ca6f021a458daa76.js
104.21.51.239200 OK 15 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/2af1076c938894ef6e81a691a5a6a8dc00f4dbbe.72e5ca6f021a458daa76.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5132208c1f4745cceaa4ed31305d12dc
969d4b84036a34447a833e757d57078fe9a80cc6
f3b49c76ea11dddc7496b1d6030922173dbabd2ad3722488c12cc51470127235
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/2af1076c938894ef6e81a691a5a6a8dc00f4dbbe.72e5ca6f021a458daa76.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-10dec"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GtPCElYaWDHN0DEFYYOww67fcIHlxIT6dwkVFgLwjBCku8C8Q1s%2FOtTe8ouOY18pAN0Dd5Xnp7809L7KdMS%2FONPoWFCLvtwmfEeP6D0uWMKXlrhsJlVRXoL%2BtWQkiG9qqgaW7w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8215a8feb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/2a2df937e3e5a1fd2b6ac2befaefd59832f64268.0f0e01a5e35043da023a.js
104.21.51.239200 OK 3.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/2a2df937e3e5a1fd2b6ac2befaefd59832f64268.0f0e01a5e35043da023a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (11870)
Hash a2653c78f1f813819d1fa9144ff3fc0d
bbf47e9202d24b75ed4539b86d485c84e4a4bf43
b81673814602e8c7888fa36465faac500d58ee242cc1eecacd356e12f98826eb
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/2a2df937e3e5a1fd2b6ac2befaefd59832f64268.0f0e01a5e35043da023a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:59 GMT
ETag: W/"6214b113-2eb8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VpOOwV1RqvCgSJdwE9hZfEbUvoodk59phj%2F84vXk6OA5UB0e%2BrWXgpBWPz6KjUgth64XCfgoVR2MGYNp2yY%2F354cJT5Du2qABMHn6CVJkEGVlMKGNNUC4FVlXiX%2B7NPg3d8lWw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82191a02b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/collection-543b078ca4ca0ef3ae11.js
104.21.51.239200 OK 14 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/collection-543b078ca4ca0ef3ae11.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 89c6a1e6bfdd78ae5092dd4278f9e44e
88e3a2a0046263be3d0ccdd2660ec9eff72eb4db
36d6ca53cfbee614a67c39f48a18e455e7114f3359e8993da0d635bee8ce09d2
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/collection-543b078ca4ca0ef3ae11.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:59 GMT
ETag: W/"6214b113-12425"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kQR0knjh%2F8c3%2FTGb0vAhRdl7locmGVM1twyD7kr9lfXtnGlVq30hZywnAn14BjAU95nDpGf7pEj%2BaHv0bVWXi8yYaZvjsd1ZBt1oAV05yi9apuVw5lPhGPTh9r4ku1fs8uLhUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82173944b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/dd91f51e7d432d1a8a797371aecdba3b799ed3f7.c6102bf3b24e35ba54d3.js
104.21.51.239200 OK 4.5 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/dd91f51e7d432d1a8a797371aecdba3b799ed3f7.c6102bf3b24e35ba54d3.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (13884)
Hash 71efaa44ab5f13e26bfdd9175ab031bd
5df28a5ba590b61f542a6ae77b35a4512c14b549
38f90f6e013bff3c7d10e7b4253f8215ac5494510c01f02294fface7a51c8aaf
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/dd91f51e7d432d1a8a797371aecdba3b799ed3f7.c6102bf3b24e35ba54d3.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:59 GMT
ETag: W/"6214b113-3696"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YW3WHB1nAdh2AH93NtNCaEhZ7beaXbhr84DDJQWEHpEdsAeHWuLzmA6nvVhqiZ2i5qQvc%2FZdkb%2Bi6x9nT5PaQXpxfP2GxVEVWXVBpnUl7ZxOEOf1Nd255NwoDcI6Pi1wsnv8TQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821a7817b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/rankings-41ed9c6e7867710c4317.js
104.21.51.239200 OK 7.4 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/rankings-41ed9c6e7867710c4317.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (34985)
Hash 3b71d84c2fd163e84af70b5736c0bee1
0e733d63c6d8afae36fa4804bc4a30a975ca5f9e
e8e8467f52552ae2af909ebab1b0c7b96e3985638280bd778447d381796be7f3
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/rankings-41ed9c6e7867710c4317.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:46:59 GMT
ETag: W/"6214b113-88e3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GeS2om8e6hkPF%2BcQKuQxfBn5xEniQjiNULX3eQoQa0%2FRuQuV2NLhTdtsm9buCUFrkNrwjIq8YwiF3EEwhDJ2GbFC7KN6u0V6ylydfxUvOuLLpQWQM9l%2BG9HzS5YXFkRlAPpu4w%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8219fd4cb50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/collectionManagerAssetCreate-d29e8418e120fde68b02.js
104.21.51.239200 OK 3.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/collectionManagerAssetCreate-d29e8418e120fde68b02.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (14159)
Hash 1f62471785d522bc7f5ad7d1e9276a25
27cf02c7d18f00a5cd84a31dc52ec2dcc904ba8a
fb90a2e7c6c4545aa12c068937f8bf071991211e34210fae4fb235cae1ae8d79
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/collectionManagerAssetCreate-d29e8418e120fde68b02.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:00 GMT
ETag: W/"6214b114-379d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MJksOIRx1f1q0nq6k0lpDPQ6vk0K53l6D0LMh6CGP2fwHRd1ozUE4TeCllkDyhkQTdhrjzm4ffcZ3Tzsj70IZcpPdT0BAc4NTs8JQRMxPKLlx960e%2BLUtfu5M8kU4gQELmelnA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821bdcb8b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/c1b7ed0946a0f29d0c37089199cdc3cdcfe59f76.85f7f702ad6510f1568b.js
104.21.51.239200 OK 19 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/c1b7ed0946a0f29d0c37089199cdc3cdcfe59f76.85f7f702ad6510f1568b.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8a78c3a40b16af9b6f3ca322fed9e1a1
106a22f418a2ed9fdceee754943ad9b2d356ecbd
61910a12b6eaea86d989e29d98a14112a330b9f6d92e5ca6eb89775ab8f2845c
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/c1b7ed0946a0f29d0c37089199cdc3cdcfe59f76.85f7f702ad6510f1568b.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:00 GMT
ETag: W/"6214b114-11f6b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KtDQaOON%2FSN8WYcspiNS0PgMppU6veVqKlETC9ncWL63qi%2FtBZBnEYj1l7Nn6Dr%2F8csWEBibuHIjFDUH%2F1fRCzOzAqDdazyVpVc2kc3nvJuLd52IMwlQ7AUxMwIxzxgpyknPAw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821aff14b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/532c7ba911511659ba678c95770e93adf9bbd0f3.305409eae47112a6975b.js
104.21.51.239200 OK 221 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/532c7ba911511659ba678c95770e93adf9bbd0f3.305409eae47112a6975b.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 221 kB (221122 bytes)
Hash 30a830a9af49ba352ef4c50347b7ac1e
d3c174cf090cbf609fa460ac97687053c6d6ea07
dc8d0a64102280efb16d136b62e9743fed9d46bb9e9f0ca263324de1e4f4b5cf
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/532c7ba911511659ba678c95770e93adf9bbd0f3.305409eae47112a6975b.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-f0bfa"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X4wxZQVZcrGX5zt2W6DY1eyE9DVTyErbtqUbWFWWjO%2FZ9SLV3RW8XVMBY2Ak131uHr9knX%2BPeNy7GeGykuMXYBko%2F02zxZ7JoxgbYKRui5CFDopUW0U3usQEzkjM7bZ4KuDWsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8216da8eb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/a447263bab901fa28ee48397c09019c74076c6a5.c601ccf3e6ad68fd4a65.js
104.21.51.239200 OK 28 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/a447263bab901fa28ee48397c09019c74076c6a5.c601ccf3e6ad68fd4a65.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 753c214a76fe2674bcafda6c16811b77
76aa4950e62318a3d98b9f642b57690b9a481713
7c22088977e0243d0912b77eab36f7930a7ff53ece8cd278d0c1d66d34738335
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/a447263bab901fa28ee48397c09019c74076c6a5.c601ccf3e6ad68fd4a65.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:00 GMT
ETag: W/"6214b114-19feb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0fYTF194Xkwi6K%2BYRhnmC1hKBKfy%2FUzNjaafpR3JvCL6L2ZLkLWRvFMSy3zGbQ6lrypg%2Ffj%2FyyVvBPOkNv8hYB9sMJ6BDo1%2FIOebdrOzYnQE5WQgm4%2FtZlhVyFejIFJJDHl3Mg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821c8855b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/explore-f3d3c1f4b56fddba497d.js
104.21.51.239200 OK 9.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/explore-f3d3c1f4b56fddba497d.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (43678)
Hash 4039753cd0a2c203ba050794d5aa914f
fed34215062bd790bfb63ef111eb57cc3b06a821
51f8460d308e90172d0e3913162a9e2eef4dea1ff2f616fde00d2b3e80295adb
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/explore-f3d3c1f4b56fddba497d.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:01 GMT
ETag: W/"6214b115-aad7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X9Dn4sHXjT1Ro%2FPgZyVWis%2BKu%2FlILDQyJ8Z8O7Xwekag%2FQNe7eUUvS6aZhXWJhXkikemW9QCEyofq2Dv%2BHVywHVPEYrH88we1M99HKRi3ZtfUnSmNH6YGiqBY9rTMnVTUhexnA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821ee880b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/ab1bfb98e6b747ea844657c2a28229d392efe7ec.5c1f35d61b0d537c6f7e.js
104.21.51.239200 OK 23 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/ab1bfb98e6b747ea844657c2a28229d392efe7ec.5c1f35d61b0d537c6f7e.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4552eae7590780b24d12ec68df3514d2
917289296c6e200626ea1eafd748671214f51815
13de095afac570b82c7158fd10972193ebdff9ec0c965e58fcad0f55a56c6dd7
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/ab1bfb98e6b747ea844657c2a28229d392efe7ec.5c1f35d61b0d537c6f7e.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-19b03"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=suE3ybbuJXNBZzONyT9tbI6fyfrXqyHl4OeDyItxV6CfXr2MWUgqhrmZCTy0JtyiGzPqkwBV%2F8k8%2F%2BOk9aa2wLgqnBTGV7yMonROdsdAYQSHOtrfg%2BQOlL1GZ2i3qyIpygZIlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821d9b3fb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/item-e7fc188789993122f5a8.js
104.21.51.239200 OK 28 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/item-e7fc188789993122f5a8.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash af8217bbef20c7fe88dc038cbd73fc04
472008f97f9471616c359378ab77c11e83ed3de0
a1b97eff2658f77693fc2e820cd91514c9e508f9badb6789c077251100a9b503
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/item-e7fc188789993122f5a8.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:54 GMT
ETag: W/"6214d4ae-25224"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMGEbSBGkSFMzjGhz3lx19T4Wb691wmVewy8czhctnMsmUdgAGHUwqBH9gq7H%2F7gcaEMglEipgawH8N89H1LPPlVk7wKgVoTON8BQTiQlm1jO0m5chD9UoXnwAb76dXo1t5jUA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821dda34b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/assets-ca6c3a9009ae0faf7aa9.js
104.21.51.239200 OK 5.1 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/assets-ca6c3a9009ae0faf7aa9.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (27578)
Hash 15a0c6747495da87cdb1dbede7e5664b
d524e26afe3b1507a96be73a74b6872cf792cdb8
a1b6d33b3336bf7297c6c936288011d557c8d4c6abdca6f710b03df49705989f
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/assets-ca6c3a9009ae0faf7aa9.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:01 GMT
ETag: W/"6214b115-6bf2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F45kDFECGAmOCRdnhfjMMn1XyY4kMkNx4hYxBFHHJ5Gpuq0WKQp0Q5MJwp%2Bb8mcu5aSJ1oZ5NMw%2FF6IbA9QE69eevy85j7l4L%2BnnhbEOF99lN7aDBVEA7cclylmVUOGZxz%2Bzgg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82204e34b4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/collectionManagerIndex-9172fa636b64b6082934.js
104.21.51.239200 OK 10 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/collectionManagerIndex-9172fa636b64b6082934.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (39241)
Hash 2d6ae66f6f10ffb7ebe43dbf046c13da
2e1a64e0928b3d43f43b0abae1945ce8b3e767e4
6b2b3ac8a8ab649c76cb3f29bc54db57741446afbb3c772bb039322827b3f74b
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/collectionManagerIndex-9172fa636b64b6082934.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-9991"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xCR2DURz445yqdNC19kfNvlZ6yyas9%2FpXQoUKkTtRjMMKPDQBaB3Vc9nqVJ3nZ%2BH%2FhHS2bcu2j%2F7j4I9WGSjrU%2B18dsqGvnuHrtaZL9ixV5Drbl2HiW%2BP5hASh1aoPTZnsYwMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa821fdcf5b51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/gas-free-34ae7c39e42d371c71ca.js
104.21.51.239200 OK 3.2 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/gas-free-34ae7c39e42d371c71ca.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (8993)
Hash d8db21a97032aa277e00e8d6252ac434
8d831e5dda2841899e04f319b754b16a55030f96
bed679baf057019fdc1e5caa56fba4d5b41b9bcf4d6f8b9a8c46f30f14b95ec9
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/gas-free-34ae7c39e42d371c71ca.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:02 GMT
ETag: W/"6214b116-235b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WN72cS04IpDJp10loXptrENWy%2B9GNJwZ%2F1Uz0eiQSG1hcouVj4xdbprbRNsT1iiIKy7e7ZaV3mdahFY2WhCjVEFrqQA519cpkk%2FGY3F%2BU%2BBFa%2BgfbuAUFC95JNc%2BBGhYGOVu9A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8223f8d6b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/watchlist-9c5ea5b397c6c3b74e64.js
104.21.51.239200 OK 8.7 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/watchlist-9c5ea5b397c6c3b74e64.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (36954)
Hash af0ddf5953fbf72d6943e0aa88b8e641
888f5ea5f9b26dc826764d76e65159c8af34cfb4
26159cdb6d8466b6d5ca517066604922721cafc9ed2fd80b50950ac82954fdf8
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/watchlist-9c5ea5b397c6c3b74e64.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:54 GMT
ETag: W/"6214d4ae-9095"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sxeJGCtqYtP50lFVo%2BfJnmCsnhO2zu3%2FKK8b6%2BtVwJE3Y7isEOCDPSFsTnGmEpPVF42JPPhMkhm7AM%2BXnGqKueHIKtiaF1u4fWV0CN0oMjiii47RxOr7BogV1heitXS%2BRUqu4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82227f7fb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/tax-0a82abfe1e2a1cea252a.js
104.21.51.239200 OK 2.4 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/tax-0a82abfe1e2a1cea252a.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (5911)
Hash d54835191eb0708b64a3a41743b92fb5
c8fc957abd798e2814eb6a8d5ecc226f77ffa895
401afc66b90fd2eb0542668aa002b851c553fdd60f775ac77feb8fd1c26f5c28
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/tax-0a82abfe1e2a1cea252a.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:01 GMT
ETag: W/"6214b115-174c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7SbUqRfx7TS1uJu4gaBiogGgmJdSkkT6R51P8AaViIc8Q9Q3R6JXeEvtEflgk8SKnYrDlrKM0c0JcS0iLxYg5MZjqnZmWguH3A7DQn7WDTVlqaT8%2BRyIjrLjSuJSni9ywCc1wg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8223a9bcb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/ventures-e65d45e50522f65a29d5.js
104.21.51.239200 OK 4.0 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/ventures-e65d45e50522f65a29d5.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (13320)
Hash 633f412deea4f2709d2bf8940966573c
e3afd7fee63d82ca79ed8b17d1c512bb3f603e4a
7a58d24e13a3cf3814d4db95fb880f0bc7f207bb3fe5d76cf7fa8fabefba457b
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/ventures-e65d45e50522f65a29d5.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:54 GMT
ETag: W/"6214d4ae-3442"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJmuKM1bV%2BI%2Fv4hxx8DDMYVeQB9EesAhhhGp4Ocf0Ydst6aPAcoHiAz5t%2Fi9QfhpfhIj2mmbul%2FiZ69kck8%2BwdfdmNw8L%2BMeSRUMJFbHMiCa5vmEHFFqRegahZsynvlZudE8Kw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82247acdb51d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/careers-99d978688ca324fac530.js
104.21.51.239200 OK 8.2 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/careers-99d978688ca324fac530.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (23714)
Hash c9ee2a1f4789f19295711ca9641e8ef2
0a01ce79f22764dedc81c09eaf5a9485f3b46f71
16b2244269cb98da261f29ebfd64c6b225dc9867f5fcf0b239b59cee61584c3d
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/careers-99d978688ca324fac530.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-5cdb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z7b%2BaHfSoO3fabPmsd6Zix%2FTsmJ501t7ltq9gbyE3bW4B0HK5EHcPtPQR9aUwmYeoiFY2noiR6I%2FvP0FbmDMAtEjCzLfMrc2Fjc0QtcC1ycIEiO03%2FrGoNJMI8TimGeyPQXZxA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82241a2fb4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/userSettings-38721511a4077257b8f5.js
104.21.51.239200 OK 10 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/userSettings-38721511a4077257b8f5.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (45134)
Hash 59c6b8d675a8eee211838edd3968a376
ea233c342abe1fa9a86e75c7a249d17d165f56a8
bfceff8f15403c623b358f494e826018cf7e5e0fdc457bc3a872b8cb68f9fa9a
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/userSettings-38721511a4077257b8f5.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 09:47:01 GMT
ETag: W/"6214b115-b08c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rly0fv%2F4MHDyuZIUIB4mopatbgnSbEK3%2FcRSDRhirFy%2BO6qNFu3Nz1Q2OTL8bbXFcusjODxwtUqiEYtw%2Foh2ay%2FKz%2F%2FnVjv4X4ex%2BoTfwFSaomhNPTnUPY7QZQoZncSU2J%2FIOw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82231da5b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/about-5f4abb8e8e62a56683ff.js
104.21.51.239200 OK 8.2 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/about-5f4abb8e8e62a56683ff.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (26139)
Hash 1f46f35595eb9a6ecca9ff5e32814cf5
6195903779e6892655a610a0ea659c5f52bf86fc
314e6374dd9cd1be4f51daf37852ea9dd1a4ce1ed6d7a4f206aeea429a15e981
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/about-5f4abb8e8e62a56683ff.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:53 GMT
ETag: W/"6214d4ad-6652"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNb7tnB8Vpq6MEQwYC8EpsCNYXMhEsCQLEobDRw3%2FSzGCZM%2BFOhGN6hL8Kb0sga0FK3xLeB1cCraNfmDQGeBLb6UTklrI7bWdmWvK%2Fv1L%2BoPq7AUTSlWgPMfIKzXEW572k%2BLOA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8226ac4fb51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/grants-32a9f334feeacfd99608.js
104.21.51.239200 OK 5.0 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/grants-32a9f334feeacfd99608.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (16576)
Hash 3d73ecfe6731ba6062501e9733de114c
1393dcb07c9647006a8fb500f12cdef5c8a04e4d
4e7f2b46380224b228663250e2593471199bec457690fc4815c8c18fe9a93167
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/grants-32a9f334feeacfd99608.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:18:54 GMT
ETag: W/"6214d4ae-40f8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BNOzSthpL35HXjsZvf70bTGftmffbnt2qBszhDNrrhQzCGnB%2Bw4F0MXVqybyDve7%2B%2FCZESVJb0kw4U3sPDIDxk5THNiW7STxTWV9fXUVZ8SxGdz0FAENatarIJ%2F2i16%2Fus4%2FEg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa8226bcb0b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ewtetpedysbest.ml/us/opensea/files/partners-d5f9218946147377e02b.js
104.21.51.239200 OK 8.6 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/files/partners-d5f9218946147377e02b.js
IP 104.21.51.239:0
File type ASCII text, with very long lines (4257)
Hash f6f2ef1627a40ac32723d399ba9e3dbb
8631dee8cf53807fe12695692366cda330a6228b
f00338ba9e7bc4939274f701f04195b5c687d25c7daf016c492914aa3d5e1e03
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/files/partners-d5f9218946147377e02b.js HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 12:16:34 GMT
ETag: W/"6214d422-87bf"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CL0tQKD68YIPdMEFnwvlb7spI7r4iUwLEOAAA9jmTP7FSQbD8QCmKqaZ%2F9CX2nTTQ4YOnrqN2R8U5hsuz9QSJxFDQUVet9oYTQ4sxBMsv4dwDeOJqgQ%2BF%2FBkGtdSyy1WiNbQnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa82269c7db50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bdc8142f214e9c1e9bcf725417c9cd2
5214e52d21ce48301447615e72bca598eb2c7223
4dcf91b32ea45946e5bb4579ebb4257eef71cf184a06b999727c104f4534327b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DCF91B32EA45946E5BB4579EBB4257EEF71CF184A06B999727C104F4534327B"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7173
Expires: Sat, 24 Sep 2022 11:31:14 GMT
Date: Sat, 24 Sep 2022 09:31:41 GMT
Connection: keep-alive
o406206.ingest.sentry.io/api/277230/envelope/?sentry_key=1b25bc1fe3ba44cc9a17a03a1b47cb41&sentry_version=7
34.120.195.249403 Forbidden 56 B URL HTTP/2 o406206.ingest.sentry.io/api/277230/envelope/?sentry_key=1b25bc1fe3ba44cc9a17a03a1b47cb41&sentry_version=7
IP 34.120.195.249:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6e5a3e5ff236fe99535092d7096ceddc
92a5db65cbedf687ee76693e9b89b9d6ca417b61
7c1e2d0f6a27b6701cbfc14d4b2c6863a2de1753603e0eafaf1a1c42a4e22b65
POST /api/277230/envelope/?sentry_key=1b25bc1fe3ba44cc9a17a03a1b47cb41&sentry_version=7 HTTP/1.1
Host: o406206.ingest.sentry.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ewtetpedysbest.ml/
Content-Type: text/plain;charset=UTF-8
Origin: http://ewtetpedysbest.ml
Content-Length: 430
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Sat, 24 Sep 2022 09:31:41 GMT
content-type: application/json
content-length: 56
access-control-allow-origin: http://ewtetpedysbest.ml
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bdc8142f214e9c1e9bcf725417c9cd2
5214e52d21ce48301447615e72bca598eb2c7223
4dcf91b32ea45946e5bb4579ebb4257eef71cf184a06b999727c104f4534327b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DCF91B32EA45946E5BB4579EBB4257EEF71CF184A06B999727C104F4534327B"
Last-Modified: Wed, 21 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7173
Expires: Sat, 24 Sep 2022 11:31:14 GMT
Date: Sat, 24 Sep 2022 09:31:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:25 GMT
age: 41656
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 423331d8bae78ba045bea86f1e4c6e7f
8ed72a508ba25a95e6899569180a02728d5edb5c
fb27ab0f1591889639eff81fa012d5c185ecb1b04be5060af2e89e378fc264a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0bceb870c8736e18a753f780de07c24d
eea3eb1ad61a36e786c62fe8ed40518767eabf71
25a937cee6c1cbf4bb354bde833334c144542b49d31109cae43089b2b8e2c57e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "25A937CEE6C1CBF4BB354BDE833334C144542B49D31109CAE43089B2B8E2C57E"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1804
Expires: Sat, 24 Sep 2022 10:01:45 GMT
Date: Sat, 24 Sep 2022 09:31:41 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/materialicons/v125/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
142.250.74.163200 OK 124 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v125/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 123688, version 1.0\012- data
Size 124 kB (123688 bytes)
Hash a9f75301f833d3034059cc765ea1bf4a
83c8f581f9d97314095fa3462a651697e7f00063
69cec6dba2124ba252251752bb45da00b5a4343db3f2525eb40c02a5b1bc6ef0
GET /s/materialicons/v125/flUhRq6tzZclQEJ-Vdg-IuiaDsNcIhQ8tQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 123688
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Sep 2022 22:35:56 GMT
expires: Wed, 20 Sep 2023 22:35:56 GMT
cache-control: public, max-age=31536000
age: 298545
last-modified: Tue, 15 Feb 2022 21:23:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f81d321c15c87e7147d792d08ebb7513
47f30d4ca38e6753a393965219321b0394ebb597
390ae5f5435d3f8c8b7f1fa8d7e2a3ebf55ea5dbe98aa3528dd562df4c295753
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v19/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v19/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v19/pxiEyp8kv8JHgFVrJJfecnFHGPc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:15 GMT
expires: Thu, 21 Sep 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 223046
last-modified: Wed, 26 Jan 2022 19:11:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialiconsoutlined/v100/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
142.250.74.163200 OK 151 kB URL HTTP/2 fonts.gstatic.com/s/materialiconsoutlined/v100/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), CFF, length 150784, version 1.0\012- data
Size 151 kB (150784 bytes)
Hash 4b56e16c1e2109da297309b5046831cc
b8a40b775d6988aa5c01c206ea862bc28974e2f6
7a7783671a6f25f40454cdd21c9fbe945c447585fa0c5d803bd893b18332be31
GET /s/materialiconsoutlined/v100/gok-H7zzDkdnRel8-DQ6KAXJ69wP1tGnf4ZGhUcel5euIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 150784
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 06:23:49 GMT
expires: Thu, 21 Sep 2023 06:23:49 GMT
cache-control: public, max-age=31536000
age: 270472
last-modified: Tue, 15 Feb 2022 21:25:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f81d321c15c87e7147d792d08ebb7513
47f30d4ca38e6753a393965219321b0394ebb597
390ae5f5435d3f8c8b7f1fa8d7e2a3ebf55ea5dbe98aa3528dd562df4c295753
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v19/pxiByp8kv8JHgFVrLEj6Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 12:31:49 GMT
expires: Sun, 17 Sep 2023 12:31:49 GMT
cache-control: public, max-age=31536000
age: 593992
last-modified: Wed, 26 Jan 2022 19:13:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2
142.250.74.163200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v19/pxiByp8kv8JHgFVrLGT9Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 20:21:03 GMT
expires: Tue, 19 Sep 2023 20:21:03 GMT
cache-control: public, max-age=31536000
age: 393038
last-modified: Wed, 26 Jan 2022 19:11:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-111688253-1
142.250.74.72200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-111688253-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 5da545b89df3221d8b1e45f346146928
a07695f929702998a6bbc263e2c2add2bc5c4482
09911619820486507b74a271849d874e63299f4777d40f3d74264fa430ad7796
GET /gtag/js?id=UA-111688253-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 09:31:41 GMT
expires: Sat, 24 Sep 2022 09:31:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43306
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KRLPHCL
142.250.74.72200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KRLPHCL
IP 142.250.74.72:0
File type ASCII text, with very long lines (10069)
Hash 26cc32ec4818fa2cfc60ea40b37bb6b7
b898efe5e2fab44c030f9da8a7aa5e9b2e1b9902
d0cda70e3da949e18e50b24ed6e2c443ff730de697d1db3db0fd953b50541e37
GET /gtm.js?id=GTM-KRLPHCL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 09:31:41 GMT
expires: Sat, 24 Sep 2022 09:31:41 GMT
cache-control: private, max-age=900
last-modified: Sat, 24 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78454
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 423331d8bae78ba045bea86f1e4c6e7f
8ed72a508ba25a95e6899569180a02728d5edb5c
fb27ab0f1591889639eff81fa012d5c185ecb1b04be5060af2e89e378fc264a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f81d321c15c87e7147d792d08ebb7513
47f30d4ca38e6753a393965219321b0394ebb597
390ae5f5435d3f8c8b7f1fa8d7e2a3ebf55ea5dbe98aa3528dd562df4c295753
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 09:31:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ewtetpedysbest.ml/us/opensea/static/images/logos/opensea.svg
104.21.51.239200 OK 1.8 kB URL HTTP/1.1 ewtetpedysbest.ml/us/opensea/static/images/logos/opensea.svg
IP 104.21.51.239:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3905), with no line terminators
Hash 4840df9e89c03b43b6617bafe15e960f
e925227f9529076b4abff58cb998226269e136d9
53a75038e2700ed3ba9531afe4591fcdca142984b5ef9d44d3ae27f6dd274dfc
Analyzer Verdict Alert fortinet Phishing
GET /us/opensea/static/images/logos/opensea.svg HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171; amp_ddd6ec=9QJglv52tkzpYC0fsbXYra...1gdndd4v7.1gdndd4v7.0.0.0
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:41 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 22 Feb 2022 11:48:25 GMT
ETag: W/"6214cd89-f41"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BertTLgBwakJdJRXPn0EEfPuaVrTbqEmLPvw0OGEAT1hEU3eIfdKPP8gMkyUDojKVCe192LOOf7ZWwXftgMA0BL9J7Tm0s4T0KmVNJKqrhfCRaMs0G1mPyXyFAM1oljvEz5mWA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa822dec28b50f-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLGT9V1g.woff
142.250.74.163200 OK 66 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v19/pxiByp8kv8JHgFVrLGT9V1g.woff
IP 142.250.74.163:0
File type Web Open Font Format, TrueType, length 65760, version 1.1\012- data
Hash 3bb9ab2862ae072e657fb2fb2b6a3279
37ada8de241d44c2dda5d779778d606f93ddfb3e
9ec8c55ca9a20762804eddbda1f3bb327d2d19245d89a7ee6f2076421c60c6c1
GET /s/poppins/v19/pxiByp8kv8JHgFVrLGT9V1g.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ewtetpedysbest.ml
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 65760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:49:02 GMT
expires: Fri, 22 Sep 2023 06:49:02 GMT
cache-control: public, max-age=31536000
age: 182559
last-modified: Wed, 26 Jan 2022 19:15:43 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ewtetpedysbest.ml/static/slick-carousel/fonts/slick.woff
104.21.51.239200 OK 0 B URL HTTP/1.1 ewtetpedysbest.ml/static/slick-carousel/fonts/slick.woff
IP 104.21.51.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /static/slick-carousel/fonts/slick.woff HTTP/1.1
Host: ewtetpedysbest.ml
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/us/opensea/?subid=6422-9011-202207080930094c4974
Cookie: ktr=6422-9011-202207080930094c4974; uid=107; oid=171; amp_ddd6ec=9QJglv52tkzpYC0fsbXYra...1gdndd4v7.1gdndd4v7.0.0.0
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 09:31:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Last-Modified: Sat, 24 Sep 2022 09:31:41 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PlCEJURrK0y6LNp8Vixyx0loM3JM1WbfmJ0%2B1q136qsF1bfLBS7kdiG6wYZk370iEOaWTtnqRdEdY1%2BxT9Q7TEScbLTrfNbTW9LcKO2ZVSGyppy6XY2I%2BwVQLmuYfx9945nt%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa822f9ee3b4f4-OSL
alt-svc: h2=":443"; ma=60
static.opensea.io/gas-free/video-background.svg
104.18.17.184200 OK 0 B URL HTTP/2 static.opensea.io/gas-free/video-background.svg
IP 104.18.17.184:0
GET /gas-free/video-background.svg HTTP/1.1
Host: static.opensea.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 09:31:41 GMT
content-type: image/svg+xml
x-guploader-uploadid: ADPycdsxojcnulZqGzebcGxwyZ6tAwbLU7RFOMKii4jfzZyDtLkwZUttA3UhaDDzUr_tR6S-zt5Ua4jWjidLrjR59tZ8i8DpPu0o
x-goog-generation: 1630524348914119
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 20064
x-goog-hash: crc32c=8vorDw==, md5=9AtoCsBIAExuRya7g4YFUA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
last-modified: Wed, 01 Sep 2021 19:25:48 GMT
etag: W/"f40b680ac048004c6e4726bb83860550"
cache-control: public,max-age=3600
cf-cache-status: REVALIDATED
set-cookie: __cf_bm=BX9igQcOJfUJvfnxJEZT12ppq1wXtnZiUjrkzrgh2ZM-1664011901-0-AQCKdp0BapyOkuehKZqOmlaLDSifFWviK856/u1UcoTRYKw4d3YjmVClnWUzqPgui2EV5HpuuNg8U3QoQ+lIofU=; path=/; expires=Sat, 24-Sep-22 10:01:41 GMT; domain=.opensea.io; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74fa822fdbdfb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0
IP 142.250.74.46:0
GET /embed/gfGuPd1CELo?playlist=gfGuPd1CELo&autoplay=0&controls=1&loop=1&modestbranding=1&rel=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ewtetpedysbest.ml/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 24 Sep 2022 09:31:41 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=9h68nFgZh5M; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=zQ7V89WUX4c; Domain=.youtube.com; Expires=Thu, 23-Mar-2023 09:31:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+643; expires=Mon, 23-Sep-2024 09:31:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2