| assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.ce22d4e00.min.css | 143.204.55.80 | | 190 kB |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.ce22d4e00.min.css IP143.204.55.80:0
File typeUnicode text, UTF-8 text, with very long lines (65524), with no line terminators Size190 kB (189891 bytes) Hashce22d4e007c43bab597fb43a3f0ee6e9 a0d1aad4d2f980918a496072ab6bac226bfd4c32 f1198e1419d473ff781777cc9d3f2af3bf8d50141afd00afe61181f4c3f7a4d9
GET /6257adef93867e50d84d30e2/css/discord-2022.ce22d4e00.min.css HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
content-length: 189891
date: Fri, 19 Apr 2024 09:56:30 GMT
last-modified: Fri, 19 Apr 2024 09:56:16 GMT
etag: "be02ba993e59a6ab23030e28f5f99fbe"
x-amz-server-side-encryption: AES256
cache-control: max-age=84600, must-revalidate
content-encoding: gzip
x-amz-version-id: NxhcX_aHI9fvzlZIo6fTOHxQVTjPNHNw
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 23478
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kg5qPkulZPP0dBJhw-l_PtsIwO1-xGjMa8ST4OSF_hiHUtdkXsKnpA==
X-Firefox-Spdy: h2
|
|
| nike.m-h-azaddel9225.workers.dev/ | 188.114.96.1 | | 317 kB |
URL nike.m-h-azaddel9225.workers.dev/ IP188.114.96.1:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (31684) Size317 kB (316706 bytes) Hash79503c1684bb25b89dbc4411082f5484 c24c155ace1470d8599042b025b155860f8cbecb d1e943c185825cd901595e645a29858e5f6f554c67de581514fcc20f7b5a47cc
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET / HTTP/1.1
Host: nike.m-h-azaddel9225.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 16:27:46 GMT
content-type: text/html
cf-ray: 876e43916bf4b4f1-OSL
cf-cache-status: HIT
cache-control: no-cache
last-modified: Fri, 19 Apr 2024 16:27:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding,x-wf-forwarded-proto
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'nonce-MjQyLDM0LDE3NywyNDMsMjA0LDIyMiwyMTMsMTcy' https://discord.com https://www.googletagmanager.com https://connect.facebook.net https://www.google-analytics.com https://ssl.google-analytics.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://s.ytimg.com/yts/jsbin/ https://www.youtube.com/iframe_api https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location https://script.crazyegg.com https://*.website-files.com https://global.localizecdn.com https://d3e54v103j8qbb.cloudfront.net https://gist.github.com https://unpkg.com/@splinetool/runtime/build/runtime.js https://*.twitter.com https://cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js https://boards-api.greenhouse.io https://ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js https://ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js https://cdn.finsweet.com/files/fscalendar/calendar-invite-v1.0.min.js 'sha256-mjdgHR9aXy-6OwAGlNS_XgNcYG1Uhd2U4pl8vi7-XCY=' 'sha256-gqG2LEZaHDwOL3S_CXJTuk_f3LimTEyruhOc_U0_QUY=' 'sha256-y0oGiuXZdmX7xRABTnY5cbHkfghDqbfX6JoerXLgVJc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F_qF7Qt8TYwY=' 'sha256-TrY3AqlyKfZdsI3LYsy6u8GAhckLEXeyLcFK2gOe18U=' 'sha256-lVOL-gH47X0Li5QriWNZ69Hcr-71DsXFvGmQxN9TpBw=' 'sha256-j11ZNhk91nmUjPCBAIRcvJeEgnkbdJ9qNqoEMekilec=' 'sha256-1sQ9sTbc6Lumd2Frwf7IBwGG02gPTreTI8QBBW5kibM=' 'sha256-uh1p-Vy3_Cn66Ugk4Hak-gGr2Udg7yiI_5u5E_BdCRM=' 'sha256-7JHgDILwD7i_kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-KvstP_RIj6GGaE25Mqo-kIO0_WVEls1n5tnNhm8zmPA=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r_ZP5EDPY=' 'sha256-jY_7jWrddtNUb-Y4CFKWaH-R2lrqgm_LAX72E8SLqKw=' 'sha256-MdICB9cW7ILT3ZeSxhN2YlpFxEsn5WHr03Ix-WVpHsw=' 'sha256-fUfByJGhChEFu7PE5HJfFwiYKySnP1H0iXvAxkauLNU=' 'sha256-xjkCDxBOM2TlIn5DpGQM4aJldb4AiHMKlRjfW46l-x0=' 'sha256-VOPfGBY-XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY=' 'sha256-tVeTMYknRG_IAdCHRGlDd9S2bX2_rX0e4HpaP9lgKWY=' 'sha256-kprfDg8ElCpUCFQAX5shnAPf3i59vVTSy02AjZXV3k0=' 'sha256-llLws8TR-U3nNRCIvJNVc-SGscqwyeO1IPgpbnWuZdc=' 'sha256-h9lm4cvrD7egZu1GTAE1h2IDy1K4fXgD-q_O7aEosuw=' 'sha256-_cdQbTQzcfSt2_aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-U0jHWhsvIpjnwYKeJS_-2pe9ROsYnck5ZB2aXNyKWq8=' 'sha256-rB4G_-e_bAPU7rKI_9HC1lBZ0XEa_nHDH6hXFz4GIh4=' 'sha256-N02bP-slnHB-OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-QHiY6i8ql9SJTaFXzUhm08ZWuNz0QarKruf0Omd9-OQ=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG/j/hFOUnE=' 'sha256-s4OBHcHJnkGxjEyNJhU5BQt4qlt6MH07rG_j_hFOUnE=' 'sha256-mjdgHR9aXy+6OwAGlNS/XgNcYG1Uhd2U4pl8vi7+XCY=' 'sha256-jY/7jWrddtNUb+Y4CFKWaH+R2lrqgm/LAX72E8SLqKw=' 'sha256-lVOL+gH47X0Li5QriWNZ69Hcr+71DsXFvGmQxN9TpBw=' 'sha256-/cdQbTQzcfSt2/aCceUvkUmLh1WMdvlKbi1BBG7u8Jg=' 'sha256-N02bP+slnHB+OYEN6imRqCHcHLN5DvBouRmyO2qcQYU=' 'sha256-gqG2LEZaHDwOL3S/CXJTuk/f3LimTEyruhOc/U0/QUY=' 'sha256-llLws8TR+U3nNRCIvJNVc+SGscqwyeO1IPgpbnWuZdc=' 'sha256-gBzDBwsujjXjXk6GLgdSlLIrvt5h0s3F/qF7Qt8TYwY=' 'sha256-6xIDOlx5P0LKHv8fkot5ULOnB8ySdhjJi5r/ZP5EDPY=' 'sha256-7JHgDILwD7i/kvnHwJFF5WsHHmIc98tkBqDqbv47iFE=' 'sha256-VOPfGBY+XgTDMwhG41S5eZyMKlu3gN60suwCPDWZ8MY='; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://*.hcaptcha.com https://hcaptcha.com https://*.website-files.com https://*.githubassets.com; img-src 'self' https://www.google-analytics.com https://www.googletagmanager.com https://www.facebook.com https://cdn.discordapp.com https://hackerone-api.discord.workers.dev/user-avatars/ https://safety.discord.com https://discordmoderatoracademy.zendesk.com https://assets-global.website-files.com data: https://*.website-files.com https://global.localizecdn.com https://*.ytimg.com https://uploads-ssl.webflow.com; font-src 'self' https://fonts.gstatic.com https://fonts.gstatic.com https://*.website-files.com; connect-src 'self' https://discordapp.com https://discord.com https://connect.facebook.net https://api.greenhouse.io https://api.github.com https://sentry.io https://www.google-analytics.com https://hackerone-api.discord.workers.dev https://*.hcaptcha.com https://hcaptcha.com https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location ws://127.0.0.1:* http://127.0.0.1:* https://global.localizecdn.com https://*.website-files.com https://webflow.com/api/ https://script.crazyegg.com https://assets-tracking.crazyegg.com https://pagestates-tracking.crazyegg.com https://tracking.crazyegg.com; media-src 'self' https://cdn.discordapp.com/assets/; frame-src https://discordapp.com/domain-migration https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://www.youtube.com/embed/ https://hackerone.com/631fba12-9388-43c3-8b48-348f11a883c0/ https://10851314.fls.doubleclick.net/ https://*.twitter.com https://*.vimeo.com;
permissions-policy: interest-cohort=()
set-cookie: __dcfduid=c19ac170fe6911eeb74dd56d65eb2a8e; Expires=Wed, 18 Apr 2029 16:27:46 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
__sdcfduid=c19ac171fe6911eeb74dd56d65eb2a8e28e4077c24dba4844d62915d529c6f1d26b3dc48faeb0dff8491ea6de3df1102; Expires=Wed, 18 Apr 2029 16:27:46 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
_cfuvid=YdNCnzQidBQwiXAmeTCftcI3tIQiqzvYrLMZTuo8u.Y-1713544066831-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Amsxw7PVCJejQ69r%2Fi7MMSlCsGurbxK5oXTCb3Cd2K1qmti3mWLRxGT%2BjUyEq3nqW0JPKgrdVuOwVrI6914LeAMz%2FYU8kaOf8Gs%2Br2EFiWm7vwjBXY5gDaDrvAZx6Q2fPLA3IyM6uYE03G1IoqfZvfbLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js | 142.250.74.138 | | 5.4 kB |
URL ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js IP142.250.74.138:0
File typeJavaScript source, ASCII text, with very long lines (2134) Hash7c96a5f11d9741541d5e3c42ff6380d7 d3fa2564c021cf730e58ffddb138cf6b57ed126e 81016ac6be850b72df5d4faa0c3cec8e2c1b0ba0045712144a6766adfad40bee
GET /ajax/libs/webfont/1.6.26/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 22:37:07 GMT
expires: Tue, 15 Apr 2025 22:37:07 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 323440
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js | 142.250.74.138 | | 31 kB |
URL ajax.googleapis.com/ajax/libs/jquery/3.6.0/jquery.min.js IP142.250.74.138:0
File typeJavaScript source, ASCII text, with very long lines (65447) Hash8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 18:59:06 GMT
expires: Tue, 15 Apr 2025 18:59:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 336521
last-modified: Wed, 10 Mar 2021 14:28:09 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| discord.com/webflow-scripts/bodyEnd.js | 162.159.128.233 | | 4.4 kB |
URL discord.com/webflow-scripts/bodyEnd.js IP162.159.128.233:0
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (11426) Hashcf1fcdb5511493e70497b458944e1358 16edf79361fb9f6232e78fe790e05afc8c0f22c3 565361427f87e795807c3fdcf5debe1dc807c6edbf5f5e57a10d9c9d593c9a1d
GET /webflow-scripts/bodyEnd.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: application/javascript
cf-ray: 876e43947f84712f-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=30
etag: W/"cf1fcdb5511493e70497b458944e1358"
last-modified: Thu, 21 Mar 2024 18:09:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R37%2FWqCQw%2BAL1bSVbEjX9d%2FKqinIxIAROvJGKPOBtjCER4%2BTtp5w4Ik1%2Bms93mMAyXt4GEVAl352q1pBn92V%2BLe450HTLcjzuhPlPZHZhB0mtrgUnVf9ysTpnY8P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=e41f1e589be253f6e688f0779c7e2b8cfd63fd79-1713544067; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=ylM9QulDAkUgPBXHiI65jzcaVKDiXUFIh2ng1WpGi3A-1713544067345-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg | 143.204.55.80 | | 814 B |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg IP143.204.55.80:0
File typeSVG Scalable Vector Graphics image Hash8b196637ae590a18d9cf2f5bb692ae73 bd8d86ba72a2dcc2c2d8acbea63dfd8997062f25 56c2a50032005ce4082a752c124a0c1b7453395b72ac1b2b166c42fbeff33768
GET /6257adef93867e50d84d30e2/6582b262413a0600bad70006_download.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.ce22d4e00.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 814
date: Wed, 24 Jan 2024 06:03:22 GMT
last-modified: Wed, 20 Dec 2023 09:22:43 GMT
etag: "8b196637ae590a18d9cf2f5bb692ae73"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: Qzr6LIeIFRKthbSvTy9usKiqu1qEgDXI
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7467866
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4zPI2tfQ-I5_J_zXlub-yHCUqAwU7nwPHoaU_2SK8ZuFalkcz7_BTQ==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg | 143.204.55.80 | | 47 kB |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg IP143.204.55.80:0
File typegzip compressed data, from Unix Hashf14cd5b7d604d36e593d33b7e49bf4b4 55a65e50b107b28a6c63b69019406fba7ca695a5 bf54dcc92446a6bf07a48075c370f301c9e93eceb95e71ec91a0be18ea8a7770
GET /6257adef93867e50d84d30e2/644fab4da9dbd93a7dfae97b_e6d57714479874c665b36c7adee76b1d.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/6257adef93867e50d84d30e2/css/discord-2022.ce22d4e00.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Jan 2024 19:29:45 GMT
last-modified: Mon, 01 May 2023 12:06:39 GMT
etag: W/"e6d57714479874c665b36c7adee76b1d"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: 4azmGLkHqXDQcQhsKUX3YgfaRjryrV9s
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7333083
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: q9C4ydePA52VSDdT2w0duascigYiL3x9fPlty0bDfnjBImrGEC8TWw==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 | 143.204.55.45 | | 33 kB |
URL assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 IP143.204.55.45:0
File typeWeb Open Font Format (Version 2), TrueType, length 32592, version 1.0 Hash6db712e9212169e71d90c9999b5d98f6 dac145a44f8530b801f8fa525742ebc93efce6ba d68a183592ac8ad34c6a0649690b01946cfd17762dc317e0ca31791e707a2d84
GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4cb_ggsans-Medium.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32592
date: Tue, 16 Jan 2024 00:16:13 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "6db712e9212169e71d90c9999b5d98f6"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: O.MN014CaJ7rpd0EYtYKL1gJt0CuPry8
accept-ranges: bytes
server: AmazonS3
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
age: 8179895
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: biqOp97NECgTkKmT6yRDHiM5TW7yaqz9myMhDBzGlzRDAB5TdwRScQ==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 | 143.204.55.45 | | 32 kB |
URL assets.website-files.com/6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 IP143.204.55.45:0
File typeWeb Open Font Format (Version 2), TrueType, length 32540, version 1.0 Hashdb6b320298071092b190ca887d06e95c 8016461ca1131ea676cff368c4405d79f52c7867 9f97ff47d66b2f3cdd1aa40988382749ef90ac9051d1a548b12a1260d10c1e6e
GET /6257adef93867e50d84d30e2/652737c30510e4ad4333a424_ggsans-Bold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32540
date: Thu, 07 Dec 2023 15:36:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:16 GMT
etag: "db6b320298071092b190ca887d06e95c"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: ZA.NEdTV8MFcZm5wwoKrA5eTikBcQl_s
accept-ranges: bytes
server: AmazonS3
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
age: 11580703
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cXfh4D7uqD_PgeHmjtHfsBnoERao-pLpQvMhZGi5ctMDQQq2V2MTmA==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff | 143.204.55.45 | | 63 kB |
URL assets.website-files.com/6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff IP143.204.55.45:0
File typeWeb Open Font Format, TrueType, length 62768, version 0.0 Hash746a4f241e03deffc59b08c5650cf458 16569eaca9910e7538f31bc3c1460c2761eb5ca3 12954218db16e3a3c86a6ee84e41be8bb35cee983ffd5233b37c7e094f9dcf11
GET /6257adef93867e50d84d30e2/65274471f1a58fe9565b9ca9_60ae8e384c11e54fd6986f3b_ABCGintoNormal-Bold.woff HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
content-length: 62768
date: Thu, 30 Nov 2023 20:07:25 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:57:22 GMT
etag: "746a4f241e03deffc59b08c5650cf458"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: jA5XmHZ6LxEy4IR9.UBRjDzTvaXkKSaO
accept-ranges: bytes
server: AmazonS3
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
age: 12169223
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P1An8NqLecqQNwhCs3xQTOXsywkEruMfI7-dF2GTwwl05bDuY8oHew==
X-Firefox-Spdy: h2
|
|
| assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 | 143.204.55.45 | | 33 kB |
URL assets.website-files.com/6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 IP143.204.55.45:0
File typeWeb Open Font Format (Version 2), TrueType, length 32952, version 1.0 Hash890a9ab504c3657183ff118b1aff212b 127609df5d04fc779da4a9e90d8d09bdbb390149 d472a71a0f92855881ce2c2334df77a333461f6936f1f0388f952fedb056fb3e
GET /6257adef93867e50d84d30e2/652737c319ba7da75394c4dc_ggsans-Semibold.woff2 HTTP/1.1
Host: assets.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://assets-global.website-files.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32952
date: Tue, 16 Jan 2024 00:44:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Thu, 12 Oct 2023 00:03:17 GMT
etag: "890a9ab504c3657183ff118b1aff212b"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: WIOu3nzmwbn9so0iCvFU.l8wZizfTi6I
accept-ranges: bytes
server: AmazonS3
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
age: 8178180
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VVaYcD1FYcBMGeFy5wlCTFR1UyQc1y3tGZe5svaKb93hMhjYmTVrTQ==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg | 143.204.55.80 | | 32 kB |
URL assets-global.website-files.com/plugins/Basic/assets/placeholder.60f9b1840c.svg IP143.204.55.80:0
Hashfe50013b8be3e80e085c28543ebfd03a a502033f1727cec8ef2b4ecb0e80c3fcaf139764 0524ad74210892feaecbd48ce7b8c589ecaedeba4de7e57a3a15ba02032a80d7
GET /plugins/Basic/assets/placeholder.60f9b1840c.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
content-type: application/xml
date: Fri, 19 Apr 2024 16:27:46 GMT
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -i43TPO39VztrIKamYQclpL7GvFhKVh4HRWJpA0ZIJzYf4p624wr8w==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png | 143.204.55.80 | | 288 B |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png IP143.204.55.80:0
File typePNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced Hashe6d6b255259ac878d00819a9555072ad 6beb12d36acbad79743495aef581891a1ff4f5f5 21d34772ed80c8be7ab9e7338498bdfe2f66c77b61542cc48e103fd77ecd7f60
GET /6257adef93867e50d84d30e2/6257bf8b5ba300233705a542_en.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 288
date: Fri, 19 Jan 2024 14:55:25 GMT
last-modified: Thu, 14 Apr 2022 06:30:37 GMT
etag: "e6d6b255259ac878d00819a9555072ad"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: PZH8cHkflELFvoWAWDsIAZ.EvOoTJUd0
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7867943
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zkucQpg8m2rEknpnTFVNF_-FeV_A4zyr_wKTv4Vqj0kltqxnj7Xx7A==
X-Firefox-Spdy: h2
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg | 143.204.55.80 | | 3.2 kB |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg IP143.204.55.80:0
File typegzip compressed data, from Unix Hash5db6f49f2465fd841c6c8170dd1f1c77 e664deabd1559c58cfce2872ff416859d9d04adf dababb4ad9e4e38f4f962c986549f7eab882aae6bbcee437ef96e17cd16bdf1a
GET /6257adef93867e50d84d30e2/6257d23c5fb25be7e0b6e220_Open%20Source%20Projects%20_%20Discord-7.svg HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sun, 05 Nov 2023 12:52:27 GMT
last-modified: Thu, 14 Apr 2022 07:50:22 GMT
etag: W/"af172fc4474c781e2dd37c0bf905e86a"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: L3xb6VYoQ.AotyKi_Z9N2_J5hV1m9MOY
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 14355321
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bmRHszkwTLz_Ymrfqb8KSQvA5d2lJrBwrexDxrUqPP9sezrrJYH7Fw==
X-Firefox-Spdy: h2
|
|
| nike.m-h-azaddel9225.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js | 188.114.96.1 | | 88 kB |
URL nike.m-h-azaddel9225.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js IP188.114.96.1:0
File typeASCII text, with very long lines (998) Hash8118665f482e569895664807fa264a30 074fd5cf6227c92b1075e02c0865abb48dc07243 dc3dbb901bf0f7d425718edd58c7d8a9131d4dc9ee06405ae67cac96477bdff3
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/styles.js HTTP/1.1
Host: nike.m-h-azaddel9225.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Cookie: __dcfduid=c19ac170fe6911eeb74dd56d65eb2a8e; __sdcfduid=c19ac171fe6911eeb74dd56d65eb2a8e28e4077c24dba4844d62915d529c6f1d26b3dc48faeb0dff8491ea6de3df1102; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: application/javascript
cf-ray: 876e43978cf45689-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=60
etag: W/"8118665f482e569895664807fa264a30"
last-modified: Tue, 16 Apr 2024 17:52:23 GMT
set-cookie: _cfuvid=PAekIR41TZDmKbhR9uO9ZDCZhSMSEgIZQjrCUVE.4zI-1713544067791-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=146UzkIh%2BK2pIdm%2FhxkI0ZbnNVNgnr3EySldymV4Vtq7MC3r4Wyy735Y0JF8CSy0unFVfL8i4y4mOXv7f9aVRy7kSvvYyaQI4F%2FLPEwd1b%2FhGjpWk5kJ0rOS1S9qJzUtSuReErq1%2Fn%2BDYymioL7Tc8hyVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| nike.m-h-azaddel9225.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js | 188.114.96.1 | | 2.1 MB |
URL nike.m-h-azaddel9225.workers.dev/w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js IP188.114.96.1:0
File typeJavaScript source, ASCII text, with very long lines (1000) Size2.1 MB (2078317 bytes) Hash1e15f3981cb1741b8654b8621a0d3e17 b6175cd114e82a912267ab813d7013b24782c41d ad923645e4aa76db10f2864ad6b156699d2550cc4571f18daf58a2ba7ca563e6
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /w/assets/b960ac7f559c3a04d18e7cce9de42c4b94a33dd4/index-react.js HTTP/1.1
Host: nike.m-h-azaddel9225.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Cookie: __dcfduid=c19ac170fe6911eeb74dd56d65eb2a8e; __sdcfduid=c19ac171fe6911eeb74dd56d65eb2a8e28e4077c24dba4844d62915d529c6f1d26b3dc48faeb0dff8491ea6de3df1102; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: application/javascript
cf-ray: 876e43978ced5689-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=60
etag: W/"1e15f3981cb1741b8654b8621a0d3e17"
last-modified: Tue, 16 Apr 2024 17:52:22 GMT
set-cookie: _cfuvid=nnwpM3lmV.0kx2NwJ2qSaoEiNwuLt1l0pRAqkr8QqbM-1713544067860-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-build-id: b960ac7f559c3a04d18e7cce9de42c4b94a33dd4
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gshx6mJ3zqfUwMNm5JLBYX0FrxNjM%2BFCwGB6bkCWMNbIF9EGyfTg221IR5eoU3m7iIShhh9GYwt8e5Ttism39e86FlwczrtWsJfBXiKekWw3%2Fe%2BY9kCgDhK9HAQTRa3hkTt2fEpnkzVXb7OFVCv2pbCcmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png | 143.204.55.80 | | 557 B |
URL assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png IP143.204.55.80:0
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hashc309ae41848547064c2ddb7dc66b6215 6d9801822541e4be3ed25137c4e53a249c85ba2a 11848b5f1c8a7f294c6211c2f0d0dc83a8a28bfe1ef0829a8dacfdf475c5e5a2
GET /6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png HTTP/1.1
Host: assets-global.website-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 557
date: Fri, 19 Jan 2024 14:49:50 GMT
last-modified: Thu, 18 Aug 2022 06:41:20 GMT
etag: "c309ae41848547064c2ddb7dc66b6215"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000, must-revalidate
x-amz-version-id: n3jtG2p1G.rx09TUNkUzzkpqc1_KeQPx
accept-ranges: bytes
server: AmazonS3
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
age: 7868279
access-control-allow-origin: *
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GhI4Pa_ObarN05Gka1T-rFBlbaENHQpYDGU4WI85nrqj8tFx4HLjbQ==
X-Firefox-Spdy: h2
|
|
| nike.m-h-azaddel9225.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.96.1 | | 5.0 kB |
URL nike.m-h-azaddel9225.workers.dev/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.96.1:0
File typeHTML document, ASCII text, with very long lines (13068) Hash9b16cb59710fd34b0f3c8865c942b56d 6a123d880ba89c787a3de8a598979fe59d7a4378 fdb257504c764d8e98827091b47e3735f5d01c1bfad23b940b043c50a228c50b
Analyzer | Verdict | Alert | OpenPhish | phishing | Discord |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: nike.m-h-azaddel9225.workers.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __dcfduid=c19ac170fe6911eeb74dd56d65eb2a8e; __sdcfduid=c19ac171fe6911eeb74dd56d65eb2a8e28e4077c24dba4844d62915d529c6f1d26b3dc48faeb0dff8491ea6de3df1102; locale=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FZ%2BgbMTeXy7AALFgyY57uIf1FiHSgeMUS6kwy%2BKETIF8vd65QuN3Evwcb3jYxt17BVF6IjHgoKQQ1TrJiXyb6mZfgTDmKNDV4WpXnyFyktyJ%2BMVtu0PyzLeKAYQRxJbkJid7gi%2F7yJFqjjuWv%2BLOn%2BlCjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 876e4397dd4b5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| global.localizecdn.com/localize.js | 104.18.4.175 | | 32 kB |
URL global.localizecdn.com/localize.js IP104.18.4.175:0
File typeJavaScript source, ASCII text, with very long lines (63114), with no line terminators Hash3be6398804eeab2124f4b83c4f33c1aa 4f46201052f4a4c856d99e1a31d05a45082d5109 cbd7cc3a254b7639e03a2ccb89f9ec2b0287c74d41b684863167558973c740dd
GET /localize.js HTTP/1.1
Host: global.localizecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: application/javascript
cache-control: public, max-age=259200
cf-bgj: minify
etag: W/"3be6398804eeab2124f4b83c4f33c1aa"
last-modified: Thu, 04 Apr 2024 15:28:15 GMT
vary: Accept-Encoding
via: 1.1 d009c4305a73ef1e26138117423d6076.cloudfront.net (CloudFront)
x-amz-cf-id: pgAq_LSV91CleMM3_K6YveyNluFo_UMzwBtV3e-s7sJK9QYHy5iy4w==
x-amz-cf-pop: ARN56-P2
x-amz-meta-x-amz-meta-v: 483
x-amz-server-side-encryption: AES256
x-amz-version-id: ZMs98.l0d_4bnX1T9jXjHHaT0X8dgz40
x-cache: Hit from cloudfront
cf-cache-status: HIT
age: 166836
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876e43935d1b0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js | 162.159.128.233 | | 9.4 kB |
URL discord.com/assets/oneTrust/v4/scripttemplates/otSDKStub.js IP162.159.128.233:0
File typeHTML document, ASCII text, with very long lines (4536) Hash9684abbddcba7d26af63704d2935f6d1 c4700f815ef01461a52727ed2e04a00910762f99 3a191129e4138021bd1e86b8718160cae2a28282566f07b9de4114d166c8ec57
GET /assets/oneTrust/v4/scripttemplates/otSDKStub.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Fri, 19 Apr 2024 16:27:47 GMT
content-type: text/html
x-frame-options: SAMEORIGIN
referrer-policy: same-origin
cache-control: max-age=15
expires: Fri, 19 Apr 2024 16:28:02 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XKt5DRdWpm85uwBr12hBKsOMTqeXmCUtvOnDWJZjsUpycXrktCKhoElciKx88Cfr9Cj%2F%2BUM%2BYvhv7Uy0enw5f4wceAYlCR60RafQWtMprJCrX9OffNXjaoUHMlq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 876e43948f8d712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| discord.com/api/v9/users/@me?with_analytics_token=true | 162.159.128.233 | 200 OK | 43 B |
URL OPTIONS HTTP/3discord.com/api/v9/users/@me?with_analytics_token=true IP162.159.128.233:443
Requested byhttps://nike.m-h-azaddel9225.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hash041912d109d349cf8c39ccccc812126a d677b242a21df8bb9d696998193de662b96a9ff0 774085c73d7aeecdd59894443d83d16b7e4e731c89420ca9f7356a5c9c928056
GET /api/v9/users/@me?with_analytics_token=true HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 401 Unauthorized
date: Fri, 19 Apr 2024 16:27:49 GMT
content-type: application/json
content-length: 43
access-control-allow-origin: https://nike.m-h-azaddel9225.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=omUwrqBsugSh24IHq4iIk6EX3%2F%2F7QtiQghydrk2QGZWmDyGWuuezqs83KHXWFzYdkNwskghRNNt4GCrW1desfq9SDnP7Psy%2F3rvWoGvs%2F0PMKkFLZnn8UfaG6iOZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=c33af978fe6911ee92ee9ad22fe10d2a; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=c33af978fe6911ee92ee9ad22fe10d2a6dbac94e741856c086c3d8b256da0344999df7e934fae798bb251b6ce4920757; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=96bef24fdfa22f504c1bb5751d5a10385a508ea5-1713544069; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=Kh_._x7X984amvf_l9GZffkeYJtvmXyI6s8o9lt2CZE-1713544069610-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876e43a22dbc5697-OSL
|
|
| discord.com/api/v9/science | 162.159.128.233 | | 0 B |
URL discord.com/api/v9/science IP162.159.128.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-fingerprint,x-track
Referer: https://nike.m-h-azaddel9225.workers.dev/
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 16:27:49 GMT
content-length: 0
access-control-max-age: 3600
access-control-allow-methods: POST
access-control-allow-headers: content-type,x-fingerprint,x-track
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://nike.m-h-azaddel9225.workers.dev
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K9szH0FqKKHs%2FaxihEgCo3UiVaNwGmaoGum6MhIfymNEZN%2BHdfxnX6CdCj7wRQ5pJk9ys%2BcVIOyYtIfOcLQf8%2BL%2B9iN%2FfjdSMhlLEfgeMdOastffOTOWL%2B8BHh92"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __cfruid=96bef24fdfa22f504c1bb5751d5a10385a508ea5-1713544069; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=aM9RpwA1HWIvG7lLrgMxJD9.9gN8sdAv7cBOfL.tT4c-1713544069804-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876e43a36ec25697-OSL
|
|
| discord.com/api/v9/science | 162.159.128.233 | | 0 B |
URL discord.com/api/v9/science IP162.159.128.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
X-Fingerprint: 1230917786151288985.uNq1r3R7RGZOVS_lhZEzcURDMzA
Content-Length: 230
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 19 Apr 2024 16:27:49 GMT
access-control-allow-origin: https://nike.m-h-azaddel9225.workers.dev
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYAy3FGSR5Zt4k1bIf6d2YVf3B6SDW%2Bikb662AZBEBgp1FHUVDKraA6QHIQnFYnWX20qLbp5MvaraSLch84xadKofv4cptA8B7NeGDyMvXc1sgQlFOSSmFg%2BmAYK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __cfruid=96bef24fdfa22f504c1bb5751d5a10385a508ea5-1713544069; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=s1FstvjeOB_aZRW.88S.6PROAT5qn6wN.Sv8_TAK630-1713544069937-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876e43a44f6e5697-OSL
|
|
| discord.com/api/v9/track/ott | 162.159.128.233 | | 0 B |
URL discord.com/api/v9/track/ott IP162.159.128.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v9/track/ott HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Track: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiIiLCJyZWZlcnJpbmdfZG9tYWluIjoiIiwicmVmZXJyZXJfY3VycmVudCI6IiIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6IiIsInJlbGVhc2VfY2hhbm5lbCI6InN0YWJsZSIsImNsaWVudF9idWlsZF9udW1iZXIiOjM3NTAyLCJjbGllbnRfZXZlbnRfc291cmNlIjpudWxsfQ==
X-Fingerprint: 1230917786151288985.uNq1r3R7RGZOVS_lhZEzcURDMzA
Content-Length: 18
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 19 Apr 2024 16:27:49 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://nike.m-h-azaddel9225.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rIejer%2BVJEi5bh5T48wU4%2BdLoEOgplXYPl9NP1V0hraUwvOuuxsyK1JpPwRrS%2FaMWxNK2kcuy19gc%2Bk3aUsYhWYxRw9057cvTS05puC74s01kkk3bVl5Te%2F5e3Ul"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=c3715ca2fe6911ee8f8d4aa563843b87; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=c3715ca2fe6911ee8f8d4aa563843b87b22afcebc0c725e34c3a36a371d97d2addfd0a533d24d4ebc6b21d91509edb3d; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=96bef24fdfa22f504c1bb5751d5a10385a508ea5-1713544069; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=IBDGITjDA__7Ohk3Wvs_UXWL_fCyRGXFa.aBBNmMhcE-1713544069966-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876e43a45f765697-OSL
|
|
| discord.com/api/v9/auth/location-metadata | 162.159.128.233 | 200 OK | 5.9 kB |
URL OPTIONS HTTP/3discord.com/api/v9/auth/location-metadata IP162.159.128.233:443
Requested byhttps://nike.m-h-azaddel9225.workers.dev/ CertificateIssuerCloudflare, Inc. Subjectdiscord.com FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3 ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT
Hashdad9406da76064feda1058698e741077 7a33531df0827daa47419f6ac73bf794f4235d25 a5c6e098392f077a15ed1baead725cff19f24805a20b20c3126abd2963610adb
OPTIONS /api/v9/auth/location-metadata HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-track
Referer: https://nike.m-h-azaddel9225.workers.dev/
Origin: https://nike.m-h-azaddel9225.workers.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 19 Apr 2024 16:27:49 GMT
content-type: text/html; charset=utf-8
allow: HEAD, GET, OPTIONS
access-control-allow-origin: https://nike.m-h-azaddel9225.workers.dev
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, PUT, PATCH, DELETE
access-control-allow-headers: Content-Type, Authorization, X-Audit-Log-Reason, X-Track, X-Super-Properties, X-Context-Properties, X-Failed-Requests, X-Fingerprint, X-RPC-Proxy, X-Discord-Locale, X-Discord-Timezone, X-Debug-Options, x-client-trace-id, If-None-Match, X-Captcha-Key, X-Captcha-Rqtoken, X-Discord-MFA-Authorization, Range, X-RateLimit-Precision
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1qOBVtZtrwX2XYqaPP%2Fgr6Naa0%2Bw0Lx5G1qIFtPD6WZ7NNHbNIzd8X2aIiiJWn5wnvUv8W52IW5PDJXlOCYnv%2BYJ0UZTWZxstC%2B8WXDZrE49d8QoPSM5oypiFTDG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
set-cookie: __dcfduid=c31a5998fe6911ee8df2669fd74a01e3; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__sdcfduid=c31a5998fe6911ee8df2669fd74a01e3dcfed41a8467bd004598f31c4d0af2ac7d3a3233c7f747bf0fe553c1e00fd572; Expires=Wed, 18-Apr-2029 16:27:49 GMT; Max-Age=157680000; Secure; HttpOnly; Path=/; SameSite=Lax
__cfruid=96bef24fdfa22f504c1bb5751d5a10385a508ea5-1713544069; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=mzZ3ni9Ou8PFYiLDPimERSgcMM_HSc6dqUV12nkb6.c-1713544069396-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 876e43a0dcae5697-OSL
content-encoding: br
|
|
| www.youtube.com/iframe_api | 142.250.74.142 | 200 OK | 1.1 kB |
URL GET HTTP/2www.youtube.com/iframe_api IP142.250.74.142:443
Requested byhttps://nike.m-h-azaddel9225.workers.dev/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1087), with no line terminators Hash691b7379096a6be53902dbb999345ba0 422c618a2c86bdc9f1b8deb89e09c3f7fc45be38 4761c3ad30fc47d18e79e5956dd7536bfdb371090e97feeffba578517992de8b
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://nike.m-h-azaddel9225.workers.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 19 Apr 2024 16:27:49 GMT
date: Fri, 19 Apr 2024 16:27:49 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy-report-only: require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=jAYslPZ_db0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=_tpGn8zcC6A; Domain=.youtube.com; Expires=Wed, 16-Oct-2024 16:27:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIDI%3D; Domain=.youtube.com; Expires=Wed, 16-Oct-2024 16:27:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|