| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/7wdl_r9hf_FLBj0uuqI-h/_ssgManifest.js | 76.76.21.61 | 200 OK | 767 B |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/7wdl_r9hf_FLBj0uuqI-h/_ssgManifest.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (767), with no line terminators Hash6518ea866e8914166d873b4d05e7b82a 52493cf3ae6762b867f40f81a16a6b727fe24adf f1c47eae65c0c08a67e26e2ca498ad090bf650210d10e40e395163932a4b30fc
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/7wdl_r9hf_FLBj0uuqI-h/_ssgManifest.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_ssgManifest.js"
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: "6518ea866e8914166d873b4d05e7b82a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/7wdl_r9hf_FLBj0uuqI-h/_ssgManifest.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::qnhwn-1713332547381-a1aef8d4565d
content-length: 767
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4602-da9d21c9de1fa6ac.js | 76.76.21.61 | 200 OK | 26 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4602-da9d21c9de1fa6ac.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (20340) Hashd62a68cae530b67f21ca4356527d246d 1b071289a4dc4feeb4a532484cb7c5d1ea1e927e 6b835fb8b29443bd9fd373acbfa7bff964916ee5a36cb2129665ca8292c57f6c
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4602-da9d21c9de1fa6ac.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4602-da9d21c9de1fa6ac.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"d62a68cae530b67f21ca4356527d246d"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4602-da9d21c9de1fa6ac.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::7mdk9-1713332547377-348294b0f851
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5451-fa8d3fae2a068f5c.js | 76.76.21.61 | 200 OK | 5.8 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5451-fa8d3fae2a068f5c.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (11025) Hashd2d770c4d448288318037c2038dd4684 0245c6c8fdfdaa2d511dd6f4ed3edb4a8f50c39d c668d5cd2d47a46fa38f453f5ca53cc19d76c2175a58c2316453212559827e4a
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5451-fa8d3fae2a068f5c.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5451-fa8d3fae2a068f5c.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"d2d770c4d448288318037c2038dd4684"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/5451-fa8d3fae2a068f5c.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::tc5s7-1713332547377-1bd4d981669f
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/css/f15ae5acfa72202a.css | 76.76.21.61 | 200 OK | 13 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/css/f15ae5acfa72202a.css IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash40eb3e05a48057f33a952ad321a0a9c5 dd84ac5bb29de4c4987f4b51f226488bb8f3bd34 4f9445c8e4d2c918dbe08691d7efd12dbc63b6c0c0c85846fb7c5d35e45bc3fd
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/f15ae5acfa72202a.css HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="f15ae5acfa72202a.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"40eb3e05a48057f33a952ad321a0a9c5"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/css/f15ae5acfa72202a.css
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332547366-ae7b8950f492
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/7wdl_r9hf_FLBj0uuqI-h/_buildManifest.js | 76.76.21.61 | 200 OK | 15 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/7wdl_r9hf_FLBj0uuqI-h/_buildManifest.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (14887), with no line terminators Hash19e2ab24aa4495ebd9869711f1e21a34 59ccb8103ce6ea1c7df5635c20aaf57c45ff9867 85e0fef7cabc4c58261f287b3b03672fcf9aa13abc71657b4d8c3a24ae2d5402
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/7wdl_r9hf_FLBj0uuqI-h/_buildManifest.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_buildManifest.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"19e2ab24aa4495ebd9869711f1e21a34"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/7wdl_r9hf_FLBj0uuqI-h/_buildManifest.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::qnhwn-1713332547382-06636bf004cd
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/webpack-6f7a2953f0539fc7.js | 76.76.21.61 | 200 OK | 4.4 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/webpack-6f7a2953f0539fc7.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (8496) Hash7d726aa985c4d1d2c9447a2acea281e9 ba3044e6ed03a9384b6f5305cec96fe2d93d8efd 4eab5d58cd4b4e07d4400eac7ff25a8e73b1886cf68578559d86d0be4593ab23
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-6f7a2953f0539fc7.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="webpack-6f7a2953f0539fc7.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"7d726aa985c4d1d2c9447a2acea281e9"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/webpack-6f7a2953f0539fc7.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lhhk8-1713332547367-a07405d23f62
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Kanit:wght@400;600&display=swap | 142.250.74.106 | 200 OK | 20 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Kanit:wght@400;600&display=swap IP142.250.74.106:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hash20ec6259ae882db526088129b0e46e29 4816b9013f483261badbd058d748c8af8242d6aa afdad5b953a37202d553eb0a46872584b1a0b61677266c5e71b185fe23ca1cd1
GET /css2?family=Kanit:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 05:42:28 GMT
date: Wed, 17 Apr 2024 05:42:28 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/3804.5c782b135a9ecacd.js | 76.76.21.61 | 200 OK | 86 B |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/3804.5c782b135a9ecacd.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with no line terminators Hash51248ca3a7069f90dac31e324b5d577e e8b0cf2d6212a3e931fab48c0d669b6fdca6c11a ea6d7b09d0b72b833bd863e5a50eeca94556472bc275e70297b3f4cd22304b1c
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/3804.5c782b135a9ecacd.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="3804.5c782b135a9ecacd.js"
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "51248ca3a7069f90dac31e324b5d577e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/3804.5c782b135a9ecacd.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549079-0aa7f702e3fb
content-length: 86
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js | 76.76.21.61 | 200 OK | 8.2 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (19694) Hash7ff8b1e6a0e5a241f9a111ae8e4283ec 44d8305e76a089c1d9e8043e34b58eaa79bb08ea fd912e56cd6c6e6db35581eeda37fcfd0f66903c2fd1bb68198fe87e6e677fa7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/quote-worker.4ecf382979bc0cbb.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="quote-worker.4ecf382979bc0cbb.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"7ff8b1e6a0e5a241f9a111ae8e4283ec"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549305-ce7ed231cb7f
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/3676.bfc136fe6917fba7.js | 76.76.21.61 | 200 OK | 142 B |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/3676.bfc136fe6917fba7.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with no line terminators Hash24d6a4793454886507bd9328d64a417f fab42afb4ca6da0409cfabb386b23b917517c4dc 3ebc9a16d6dec44f8ce35537c4a1775180c00fcd1346d2678fe900ddcdbb3a42
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/3676.bfc136fe6917fba7.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="3676.bfc136fe6917fba7.js"
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "24d6a4793454886507bd9328d64a417f"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/3676.bfc136fe6917fba7.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549334-90fcd777b620
content-length: 142
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star1.png | 76.76.21.61 | 200 OK | 4.2 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star1.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 202 x 201, 8-bit colormap, non-interlaced Hash179200526e9cef73c1eccb27ddef68fa 8f718fe1b417dfb03a2bcb6c9472cb14ffd669d9 f0ef7034f329aedfafc622eb242f89e38309294cc151c8007824c23f8c747a3b
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star1.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star1.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "179200526e9cef73c1eccb27ddef68fa"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star1.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549448-c3fbd79f89d3
content-length: 4159
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star2.png | 76.76.21.61 | 200 OK | 1.7 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star2.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 86 x 86, 8-bit colormap, non-interlaced Hash650786098ffb691758847570b740053a a732543d4a9a44662d6d2a0f552ba092ba182c26 fad7ef7a63909b71ab45ed16c12bd0f76d58446f66082812b42f92046cead4ca
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star2.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star2.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "650786098ffb691758847570b740053a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star2.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549449-bca470ddf96e
content-length: 1689
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star3.png | 76.76.21.61 | 200 OK | 3.0 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star3.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 92 x 90, 8-bit colormap, non-interlaced Hasheaffb38a5b16a685a1517a91323b71f4 18664bff2669e62190e4abcd9fd216bc9f362751 48905946c1cca868a85e4536da6a34d2eaeeb1511ed2c7389ad352c63b848fbb
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star3.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star3.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "eaffb38a5b16a685a1517a91323b71f4"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star3.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549451-5652383ea1b3
content-length: 2985
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/main-0785997221e18e7f.js | 76.76.21.61 | 200 OK | 46 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/main-0785997221e18e7f.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash46788ca3201af8ee2b7bd75d99ec91f9 607baf6837cb956f791773c1cbcfee5a3b53e89d 2b7ce862a23bf3a1e95d2f516165021c9e2e40061740c003d3ec48589ee271ed
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-0785997221e18e7f.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="main-0785997221e18e7f.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"46788ca3201af8ee2b7bd75d99ec91f9"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/main-0785997221e18e7f.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332547369-88cf34aaecf2
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js | 76.76.21.61 | 200 OK | 286 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size286 kB (285864 bytes) Hashe2e4072bf968e7d85a02428347b68116 580f551cd588bd85637eae112dd99b4b348c018b 7b3b8b080cc9e21b118ffbc83768dd127b3ab0c4093fc6f51cc344d34b494da3
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="worker-chunks-bbaf4d77a2f64238.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"e2e4072bf968e7d85a02428347b68116"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::dx5xf-1713332547369-fb2666eb570b
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4768.326bce17aa112646.js | 76.76.21.61 | 200 OK | 169 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4768.326bce17aa112646.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size169 kB (169043 bytes) Hash53414e9ebf03c83d80a6484861e39116 fd85b3f2777b8b360c0f4538957e23efd3909a9c e7e60cb786eaa37f8b501582d3656525dcac6f3eb80ff549d6fe3fb4f9773879
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4768.326bce17aa112646.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4768.326bce17aa112646.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"53414e9ebf03c83d80a6484861e39116"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4768.326bce17aa112646.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332549078-0e3e0713a9af
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/framework-9910fad42761648c.js | 76.76.21.61 | 200 OK | 74 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/framework-9910fad42761648c.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65200) Hash46b92cd043fe51d3018c33c2faccb623 2e49e403cd93b8bd131b754c8bb2cd95ad527c1f 6a002e3da5cdfbe42873232c822d868fd714564876f69f22a7187b989fa393ba
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-9910fad42761648c.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="framework-9910fad42761648c.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"46b92cd043fe51d3018c33c2faccb623"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/framework-9910fad42761648c.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::mb4j4-1713332547368-d846495ca7d6
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter.png | 76.76.21.61 | 200 OK | 16 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 396 x 388, 8-bit colormap, non-interlaced Hash3eb4d8db68674440a697a4d1e91e551a ce586758d101e1472c12ab541bd415777df4b10e 72d92324673e4e5650f8647fa88be948ab6f54a565d101b60464f16e95f3e2f2
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/butter.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="butter.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "3eb4d8db68674440a697a4d1e91e551a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/butter.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332549506-03f163d0f6e0
content-length: 15471
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/coin.png | 76.76.21.61 | 200 OK | 28 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/coin.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 310 x 297, 8-bit colormap, non-interlaced Hash440e25228fe7ed206ab13478d39a97cb 64d11945dcd31587a718f1b04c68ab73c06be3a1 6d068cdbaa7b7eea5c198613f0d60251d146825c43b0a64a595ef56079b86ac8
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/coin.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="coin.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "440e25228fe7ed206ab13478d39a97cb"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/coin.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549508-3c94892e2618
content-length: 28247
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/pool-1.png | 76.76.21.61 | 200 OK | 37 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/pool-1.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 615 x 391, 8-bit colormap, non-interlaced Hash6df5c7e2c43434c2a6e425ff88af96bc 3571eceecdb84f376b5e9e4496d70e06f19386aa c91e72425c38fba31ad788a3c24d719f91bed4ac1e2d4f822d9339df58b15e69
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/pool-1.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="pool-1.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "6df5c7e2c43434c2a6e425ff88af96bc"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/pool-1.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332549518-709f985f390d
content-length: 37293
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/pool-2.png | 76.76.21.61 | 200 OK | 10 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/pool-2.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 212 x 204, 8-bit colormap, non-interlaced Hash60420d79026e07313d74fa706ef17240 4b749d7b734c082658486e383d178bd08f8f6b4b b99592347559cbe41776650e38cfbf0ba46e9cddd8a64e6afa83d5d2ed0b465b
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/pool-2.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="pool-2.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "60420d79026e07313d74fa706ef17240"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/pool-2.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332549519-2fdcc1074f8a
content-length: 10316
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/left-bunny.png | 76.76.21.61 | 200 OK | 12 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/left-bunny.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 186 x 486, 8-bit colormap, non-interlaced Hash73fb3978d0f854e8267f636998e1b9c5 d263540919316ac07a55a5e36ec85a227182a6a4 e745e86d83763b28d6208ce5903767a5fdcc5000f0d88ef2a2d66b4fea6ff450
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/left-bunny.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="left-bunny.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "73fb3978d0f854e8267f636998e1b9c5"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/left-bunny.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549504-c22554bbbabb
content-length: 12482
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWnVaE.woff2 | 142.250.147.94 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWnVaE.woff2 IP142.250.147.94:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19572, version 1.0 Hash24ad3fea714cb5e100aa16f832531bf3 a5475cd37afb39fc2472ef8391a4a3fd900122eb 7196c3002f08704f9f99de95b6357969a512eaa9a766eee693921dce72927cea
GET /s/kanit/v15/nKKU-Go6G5tXcr5KPxWnVaE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 23:09:20 GMT
expires: Wed, 16 Apr 2025 23:09:20 GMT
cache-control: public, max-age=31536000
age: 23589
last-modified: Thu, 20 Jul 2023 20:50:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star1.png | 76.76.21.61 | 200 OK | 4.2 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star1.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 202 x 201, 8-bit colormap, non-interlaced Hash179200526e9cef73c1eccb27ddef68fa 8f718fe1b417dfb03a2bcb6c9472cb14ffd669d9 f0ef7034f329aedfafc622eb242f89e38309294cc151c8007824c23f8c747a3b
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star1.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star1.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "179200526e9cef73c1eccb27ddef68fa"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star1.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549898-e63400760024
content-length: 4159
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star3.png | 76.76.21.61 | 200 OK | 3.0 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star3.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 92 x 90, 8-bit colormap, non-interlaced Hasheaffb38a5b16a685a1517a91323b71f4 18664bff2669e62190e4abcd9fd216bc9f362751 48905946c1cca868a85e4536da6a34d2eaeeb1511ed2c7389ad352c63b848fbb
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star3.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star3.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "eaffb38a5b16a685a1517a91323b71f4"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star3.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549900-76c5379d44fd
content-length: 2985
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/9119-2c0de954c7240fcd.js | 76.76.21.61 | 200 OK | 17 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/9119-2c0de954c7240fcd.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (24040) Hash299f0ad3de19b53ce6fce255ad6c5761 e4fa592932a09540611fb2c9a40de26a62a9e577 165588aae2def601728fb18ce4f6dcadd51c3c397b83e123fe9becaca73f24e7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/9119-2c0de954c7240fcd.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="9119-2c0de954c7240fcd.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"299f0ad3de19b53ce6fce255ad6c5761"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/9119-2c0de954c7240fcd.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332547371-b20d5e79b2bc
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter-2.png | 76.76.21.61 | 200 OK | 33 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter-2.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 167 x 261, 8-bit/color RGBA, non-interlaced Hash66bddd9fe89684cfd9387ffc819c32cc 53d96abc5dce715dedbbfd57452706dcd99d41df f9b7998bf11b41e5369dd1176d7e0a07b6bafa9b71f2b989f61126331a9a3025
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/butter-2.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="butter-2.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "66bddd9fe89684cfd9387ffc819c32cc"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/butter-2.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549901-0c58f0ba78b1
content-length: 32797
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter-1.png | 76.76.21.61 | 200 OK | 10 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter-1.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 186 x 168, 8-bit/color RGBA, non-interlaced Hashc8984d06c2dfa60a3062055e43d7b5e1 559796701fb7515e21eded960fe1a226881ca2a2 296c21246e29ca49e0c5784a65832d54e0385afaecd69f164234b8d88a7557bd
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/butter-1.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="butter-1.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "c8984d06c2dfa60a3062055e43d7b5e1"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/butter-1.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332549901-4827e213e17d
content-length: 9952
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward | 76.76.21.61 | 200 OK | 155 kB |
URL User Request GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward IP76.76.21.61:443
CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (3867) Size155 kB (154816 bytes) Hashb3e8128b833d95a75d993e3fb1fd520c b4815747457abb82c745eb2e525b8eb6745a4220 409ccc1057e4d6165cb69247a4abcca76d95c0fb848f3d38e0110f388ce0e7b7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /trading-reward HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 50212
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="trading-reward"
content-encoding: br
content-type: text/html; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"b3e8128b833d95a75d993e3fb1fd520c"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /trading-reward
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lhhk8-1713332547127-5171453a13f4
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/left-bunny.png | 76.76.21.61 | 200 OK | 12 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/left-bunny.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 186 x 486, 8-bit colormap, non-interlaced Hash73fb3978d0f854e8267f636998e1b9c5 d263540919316ac07a55a5e36ec85a227182a6a4 e745e86d83763b28d6208ce5903767a5fdcc5000f0d88ef2a2d66b4fea6ff450
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/left-bunny.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="left-bunny.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "73fb3978d0f854e8267f636998e1b9c5"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/left-bunny.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::dx5xf-1713332549902-c781e84c60c7
content-length: 12482
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter.png | 76.76.21.61 | 200 OK | 16 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/butter.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 396 x 388, 8-bit colormap, non-interlaced Hash3eb4d8db68674440a697a4d1e91e551a ce586758d101e1472c12ab541bd415777df4b10e 72d92324673e4e5650f8647fa88be948ab6f54a565d101b60464f16e95f3e2f2
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/butter.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="butter.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "3eb4d8db68674440a697a4d1e91e551a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/butter.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332549904-a02472e430d8
content-length: 15471
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star2.png | 76.76.21.61 | 200 OK | 1.7 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/star2.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 86 x 86, 8-bit colormap, non-interlaced Hash650786098ffb691758847570b740053a a732543d4a9a44662d6d2a0f552ba092ba182c26 fad7ef7a63909b71ab45ed16c12bd0f76d58446f66082812b42f92046cead4ca
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/star2.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="star2.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "650786098ffb691758847570b740053a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/star2.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::hlxvp-1713332549899-214d9bf66a97
content-length: 1689
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5298-309e53b67e4c2392.js | 76.76.21.61 | 200 OK | 41 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5298-309e53b67e4c2392.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (46912) Hash5b3d0e7658b834ddf95ad288d7a7bf0e 0ce802786dcdaf74961b06a2bf87ac07c92e56c4 cd284958f7187362f3a10d504382b8fef07a1751e8d5042ed6b5f436c7c4d648
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5298-309e53b67e4c2392.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5298-309e53b67e4c2392.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"5b3d0e7658b834ddf95ad288d7a7bf0e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/5298-309e53b67e4c2392.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332547373-a17ca615882d
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2 | 142.250.147.94 | 200 OK | 20 kB |
URL GET HTTP/2fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2 IP142.250.147.94:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19636, version 1.0 Hash22aeb837a470326fe42ab217a37cea2a 46a4d8b6f9fc8f7bd2471be93a63fed40126e415 ae193f732cb0b2f333c561c7fb758f3a83e841a79da350e7030c492d3446fea9
GET /s/kanit/v15/nKKU-Go6G5tXcr5KPxWpVaF5NQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 18:05:58 GMT
expires: Fri, 11 Apr 2025 18:05:58 GMT
cache-control: public, max-age=31536000
age: 473791
last-modified: Thu, 20 Jul 2023 20:54:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/2892.5bee56d11386cb22.js | 76.76.21.61 | 200 OK | 86 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/2892.5bee56d11386cb22.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (1067) Hash6a0cb1008388c405349dc9e8233dc798 c5821d91824ad431478e022f35b955f22798bcc4 01d6f870f1649515b07a3c889007792d546fbf50290ba6a591c0cb14854a144c
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/2892.5bee56d11386cb22.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="2892.5bee56d11386cb22.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"6a0cb1008388c405349dc9e8233dc798"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/2892.5bee56d11386cb22.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549855-689a04b37749
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TLF66T4 | 142.250.147.97 | 200 OK | 78 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TLF66T4 IP142.250.147.97:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (10853) Hash21d12e928d27ab706dc0c1ffb0f343cf f22e23df099a0699b8669395d48246191428a012 17eba66c1598249c96b9963de1c512093f35cb1835e3ed4e8a70af18b9898aac
GET /gtm.js?id=GTM-TLF66T4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:42:29 GMT
expires: Wed, 17 Apr 2024 05:42:29 GMT
cache-control: private, max-age=900
last-modified: Wed, 17 Apr 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78337
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5313-26f3477017de348e.js | 76.76.21.61 | 200 OK | 10 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5313-26f3477017de348e.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (25479) Hashc23121f8259c2ef54ac013ea685f1346 f713d35326746d45dfc94e743d7357d45f0041f0 d104d2fdca3cff562088bbac8e6bd5d2f19094a60ddc5cbc39ce7d1c9f0eb6a1
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5313-26f3477017de348e.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5313-26f3477017de348e.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"c23121f8259c2ef54ac013ea685f1346"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/5313-26f3477017de348e.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::c8x9t-1713332549330-6d6ef7b1a359
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6933-dc0e84c788ce99c9.js | 76.76.21.61 | 200 OK | 19 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6933-dc0e84c788ce99c9.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (8667) Hash6b25e4698cf8fdc3c4204206f93cd13e 1e0a4e94df586e93fcd6cf1eb1ffcbfc61fe9554 3d9fe72600deffd36cbe77caf859402227deb1859549c3e5871a08d30dcddcc5
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/6933-dc0e84c788ce99c9.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="6933-dc0e84c788ce99c9.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"6b25e4698cf8fdc3c4204206f93cd13e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/6933-dc0e84c788ce99c9.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::rc95s-1713332547377-4ad436da3b11
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7545-3bfaff3f1913e080.js | 76.76.21.61 | 200 OK | 42 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7545-3bfaff3f1913e080.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (12040) Hash9f5f8702cd0d7f8b1f9f1644627cbfed 3b10624457c79ce1930fb8e6d147638ac031b00d 7eb03ed3e7560f38d35c4a649de0bcee09464eafa83fa6fbdd740f3caa5dd631
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7545-3bfaff3f1913e080.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7545-3bfaff3f1913e080.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"9f5f8702cd0d7f8b1f9f1644627cbfed"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/7545-3bfaff3f1913e080.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332547377-7b5ab42e7d5f
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/decorations/phishing-warning-bunny.webp | 76.76.21.61 | 200 OK | 4.9 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/decorations/phishing-warning-bunny.webp IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeRIFF (little-endian) data, Web/P image Hashc73199f7cfd8a30afa8182b0b5d9e2e5 52a839df66e697b6a63c609fc3f978bf43b5edae bae96bf0ec8c48d43751e0a3be260ce9c57feaf129b80f6e6dea7f1612c8dd39
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/decorations/phishing-warning-bunny.webp HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421888
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="phishing-warning-bunny.webp"
content-type: image/webp
date: Wed, 17 Apr 2024 05:42:30 GMT
etag: "c73199f7cfd8a30afa8182b0b5d9e2e5"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/decorations/phishing-warning-bunny.webp
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332550242-df3651cbba81
content-length: 4850
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/metamask.png | 104.26.2.169 | 200 OK | 5.7 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/metamask.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hash94915cd04c09db3b051619b5473e1eba e2704378fc1d79faa2e3b054299eba38da0c0084 3241b9711fff18a21c24c8331f9c6ed6c79cd2647008818bd68b15ee0291dd26
GET /web/wallets/metamask.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 5738
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "42f9ce2617d6202af597e10d33973b34"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K%2B1yqN%2Bw%2BhlHyhzMq9nkT8U3EpuXb0wQifc6i1%2F0fwg18HQUtO5HtWIYSMq4teQZKcBrBCUgZAKiHdbaOERzudjZ2HdhMKBx%2BbcnCCiVBWnDYKDwcFGrHjnbnsFRjOifAeTyyFcoG3QiaF812w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 7055
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17972a0363a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/trust.png | 104.26.2.169 | 200 OK | 2.2 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/trust.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hasha5c44f3a69730488cf69035aa91acdfa 74c6ccff8f5c3227d0216f63fd9a9000205ae011 c0a5155f81490256cb607244e502bbd86998e6e3c5c826cfd3fa86fb2993c739
GET /web/wallets/trust.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 2177
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "62f570988d31ae1821180d7c1b61ef8f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M6Di0DFWzahetAXOVpl53dhFbaZplTbldwLY%2BtaGzPFHqW%2BEP6Rwius%2Fc7r62v2OtlGuwPjUNlG3fTvNYYgsvOjDJG2uu3q8sZsuL3EIaOxK5LuLLuCWoF2qjA997ujZYKYh9hXX9KNUBHhi2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 4173
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17972a0663a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/opera.png | 104.26.2.169 | 200 OK | 3.3 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/opera.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hashb8c2ee0a8b6673889f895e1c5ffed2c6 a2a4069ababd5db01f0b3d8fd4392964e1c334e1 3a93e883601c13e72381165bd035155f531e30560acd737401d4ac93053b9be5
GET /web/wallets/opera.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 3287
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a3bf28b12102f3e4cf1ccaa356175d44"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s4dgiwvsz1k%2BpAhblV04VQKbSAMf%2BwVVBMHC2eK%2FagdodTHubBgP9Qy3xRr%2B56y%2FRsRK2FWxaIzcMtlEGEQQPjdYjOOKPXkCS3vuV237Qq7UfOdR3UDgpdHEZNYN%2BPzu%2Fie9dGhcCzKZ5bYMlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 2596
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17972a0863a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/walletconnect.png | 104.26.2.169 | 200 OK | 1.6 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/walletconnect.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hash78af89866774086b393a771bf2dc0eca 5f708af6b8f0586466aa0fe022d4e6b6ecfa07bf 7cfe65f11aafe9006a6ef242ce1b12374c571fdb919aa089acc7ccf9052aa5a5
GET /web/wallets/walletconnect.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 1580
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "ef943e7c5cf7b187cf20a8c6308a03ac"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=meEPjSCHtBpFMGUUL2JcN%2BsAwYhHaaJjN42E1Hl%2FeL%2BGqSXh5WZ6xqhow6uelkkrZ1gwyBM6lXqmu0zMAAFA69IqeLsXjQ%2BPCviFeVW2bs6o%2FsS3PDODtcRsZryBDMk%2BlvY936KjhMwgv%2BYS6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 3033
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17974a1663a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/coinbase.png | 104.26.2.169 | 200 OK | 2.1 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/coinbase.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hash851ec2ffeb2f50e208bc1ff7c32c87d9 2ac03d14ca3e43b8a650adb46e386be7f6ff177a 29846f0225d4caa8399bc44926889b023b6f5fd7e92666bd31170273716768da
GET /web/wallets/coinbase.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 2135
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "37d02187a2f00581e51815d50b840da5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wKQeNKVdSZ6LN7V0RZt4rWvKZU0xaHmGHrZpdQZxxmONYt3OvAZLFi4r%2FrAylDICRwcY9t5cqKejEor%2BMW48WayFvE4nlHMdl1SBx2vCYQuxetoRwUsDmZ%2F%2Fj%2BaQCIO4N%2BzHHaJW6P0xKxjiew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6906
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17974a1b63a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js | 76.76.21.61 | 200 OK | 145 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (19694) Size145 kB (145448 bytes) Hash7ff8b1e6a0e5a241f9a111ae8e4283ec 44d8305e76a089c1d9e8043e34b58eaa79bb08ea fd912e56cd6c6e6db35581eeda37fcfd0f66903c2fd1bb68198fe87e6e677fa7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/quote-worker.4ecf382979bc0cbb.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="quote-worker.4ecf382979bc0cbb.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"7ff8b1e6a0e5a241f9a111ae8e4283ec"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::rc95s-1713332549305-ffccb1c5241d
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/ledger.png | 104.26.2.169 | 200 OK | 1.1 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/ledger.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit gray+alpha, non-interlaced Hash05c6aca3b2fc8f03e01b480dc905625b 1aff06fe61565ce1951622b1759a5889f81e61bb 9f515d462e131ea77573fca64bb2a138dc497434b928c372ecdf8a83e33217df
GET /web/wallets/ledger.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 1061
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fc5d6f0a18bc8c7811331e13d9d7c96f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YM13YxhDseoXvqluyGJRpakuq2YRo1O4XajQAGMPA35xARFkU4GlAJcirOEhubjLNiNUqIheYP7TbiNaXkBVkwWiC%2FbSSsK7ojjLKaUeL92rBOKSCNAPslBC6K3XUTyJEkVxu0AkP%2FIewCI2vQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17973a0b63a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/blocto.png | 104.26.2.169 | 200 OK | 5.0 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/blocto.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 232 x 232, 8-bit/color RGBA, non-interlaced Hashd87c961f741da9f48ee0b84b2d8c5d97 0af6331b85523be30d072fc3d844157c1fe76cac b06b94134a2e5d91e6809f04b080866fb12d42a875c3fd98ad65ffc6f3e0a0ee
GET /web/wallets/blocto.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 5015
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a9d3ccbc66959bb406ed1966e0f92fcc"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uehvpNkx45JJ8a6tZ6Wf8MIJ1bKOBHUlRtI%2FNhRK46LIT3qzEldFYjqjYvgGxPVuKWPf1pxzUYcEwlQpPFxcFk75GLfFf7dmUKsuwASg95PGe2wsQAp%2F32n0VDKvrfvuSIikynSGDP6zNtB3UuTMVbVDAZAgf9dwlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: REVALIDATED
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17973a0e63a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| hub.snapshot.org/graphql | 172.67.72.161 | 200 OK | 0 B |
IP172.67.72.161:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjecthub.snapshot.org Fingerprint51:92:07:17:6E:EC:8E:CB:EB:58:16:46:A8:FD:FD:5C:48:F4:F4:69 ValiditySat, 30 Mar 2024 23:28:55 GMT - Fri, 28 Jun 2024 23:28:54 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /graphql HTTP/1.1
Host: hub.snapshot.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type
access-control-max-age: 86400
x-do-app-origin: 9134fcd0-e6bb-11ec-b1dc-0c42a19a82a7
cache-control: private
x-do-orig-status: 204
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MRzYLkD2%2B3yHa%2BT4Lhlh3kCRXWEl%2BacXt4l9MsUYdKEEindfsA0U96q8YDY4FXfhnPmOW1v42TUhI9ESPdQSbrBLBejDYx92laTliKyA%2Fdhy%2B3R3eYppfOxx2iJAQtlShds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 875a17976a444185-LHR
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 3.164.222.26 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP3.164.222.26:0
Hashfb669fd40bd838fedc5d47c531db361b e6ef924dc2a155f807c405995dae067df2099b66 13200e23e24c0634cae8b1b9789970e2c4f6ab41826abfd85e9e136b68861fd8
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 17 Apr 2024 05:42:30 GMT
Last-Modified: Wed, 17 Apr 2024 04:21:43 GMT
Server: ECAcc (ska/F73A)
X-Cache: Miss from cloudfront
Via: 1.1 41ee0215556e0543d529d912519eb46a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: ARN53-P1
X-Amz-Cf-Id: xlpeG-lLanPSRUIPurpxoT4z1nZDSIhu5F1I1fB_Tidbk2Ey7TQm_w==
Age: 4847
|
|
| relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true | 3.74.89.141 | | 0 B |
URL relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true IP3.74.89.141:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true HTTP/1.1
Host: relay.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YO0v8Ytw3PdLBpxmc6dRdw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
connection: upgrade
upgrade: websocket
sec-websocket-accept: FOG0grtpopBvLr8nYHiNxI9lkCY=
date: Wed, 17 Apr 2024 05:42:29 GMT
|
|
| assets.pancakeswap.finance/web/chains/1.png | 104.26.2.169 | 200 OK | 1.2 kB |
URL GET HTTP/3assets.pancakeswap.finance/web/chains/1.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced Hash236ecd183d696e37d949d8cf70a2bbd5 8eaa89051b171e1a35e226ca5d2eba058f7a6253 4540f0e53f6ed66e0dea773269c2b0d5698ebb1f7025cafe2358d6b78ac421d6
GET /web/chains/1.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 1179
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "27a3beb7256d43dbe9c6e41a4550d156"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wYA%2FrFQVZgP2MTD%2BC9jkUZyIC%2FAqmRXa2dOYT6%2Fg5zuehcxYdNRcrO4Czh83f4XvRFmgI5cZHldTPl%2BsCHwPE2EzS7BPLB7ACVawQ0%2BKV%2FGzupWxZ7UjfBrw4zdlAJVZiITSHwn6td63mINzaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6872
accept-ranges: bytes
server: cloudflare
cf-ray: 875a1799be309527-LHR
alt-svc: h3=":443"; ma=86400
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 1.3 kB |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash994d1793fa7bfd6d09b87aae3719f6f3 4a84c902aaf57a0b9645d40ead4cbb547e758c6b 6635578e0a1fc50ef13b3962d1891a38c1c0a63dadaf3d1d8a1bdcd3a09a7377
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 1864
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/chains/324.png | 104.26.2.169 | 200 OK | 738 B |
URL GET HTTP/3assets.pancakeswap.finance/web/chains/324.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced Hash140504c38ceb01bbbe1632ebfd047ec5 f301254d5972ead4839dad92b9c322dde76a6e75 ad9d9c13aed41cdaaa4749bb6337aced91d1fe7ad378e1e1ac5525a706a21fe0
GET /web/chains/324.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 738
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "141f703bc2926deca57513a5c3c8eb04"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RPq0e8oxI%2BQiClNOUkPSOedLoWpa2VbL5FjBg%2BjEmXdwH6RTWzTMdh8cqlAMgtwPkh8VD%2BzH49suT8Pn8gyBRMzH4hzrPXxnAumyeM2W%2FCMAEjpMCIesZw50HaV5Bmil7jdeTIb4ZqIOmdvwWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6872
accept-ranges: bytes
server: cloudflare
cf-ray: 875a1799be339527-LHR
alt-svc: h3=":443"; ma=86400
|
|
| assets.pancakeswap.finance/web/chains/1101.png | 104.26.2.169 | 200 OK | 86 kB |
URL GET HTTP/3assets.pancakeswap.finance/web/chains/1101.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced Hash8d6cd83ec34994330abbebd0a65c2f7b 9a84b286c689dba40169902e89a36022a474371e 476e4017b3f83e891214f87e60bcfcd1624f905065f436f745491222f0736f6a
GET /web/chains/1101.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 86383
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "7e76b94cdc0f9628ecef8c8bb234f3ba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lE3kbQ8YKs4Wc8jwZpQB3Oi6txzjqnfeJcH7GBpvdbkG9dgaSZgxMsKpvPjKATJeQAZOdvvhCw087yoszgGsfegO%2B8Dia7k9c0I%2F1Btr3b4hulzkua561VkoYmmPKwHx%2FKjkxNCq%2Ffcq50h30kByoLNhW5qCmHHzNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 347
accept-ranges: bytes
server: cloudflare
cf-ray: 875a1799be359527-LHR
alt-svc: h3=":443"; ma=86400
|
|
| assets.pancakeswap.finance/web/chains/59140.png | 104.26.2.169 | 200 OK | 4.0 kB |
URL GET HTTP/3assets.pancakeswap.finance/web/chains/59140.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced Hash1ceb847edb47e9c5c20a1fb57a1f7deb 828fdeffb61d6e22b516daf84e6471692bc2a4e7 d278067eb81dbb2506b25e1fc008f941ccb491c1d1bad680482661119209f346
GET /web/chains/59140.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 4007
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6f83df69f71339cb5769c76cd3cc84d5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wMZrLXlu4E2G%2BGJb1WmBk8nfxZdePZyMtNaXsTPzfzmbKbQKmfDFa5BCZZqqm8s54OCALY9HgJwUymNj0UMWfQ9MWOr%2FSVuCZPUAQ%2Bvshtd4xExiQlcqDxx09jhKKSqqE6LQoVV2t3scALuHfPMGlRBKtqs8eb5QdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 3346
accept-ranges: bytes
server: cloudflare
cf-ray: 875a1799ce389527-LHR
alt-svc: h3=":443"; ma=86400
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| aptos.pancakeswap.finance/images/apt.png | 104.26.3.169 | 200 OK | 808 B |
URL GET HTTP/2aptos.pancakeswap.finance/images/apt.png IP104.26.3.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintCA:F7:DB:93:BF:AB:FF:53:F2:3D:11:7D:D7:8C:62:B7:F4:3B:80:3F ValidityMon, 12 Jun 2023 00:00:00 GMT - Tue, 11 Jun 2024 23:59:59 GMT
File typePNG image data, 72 x 72, 8-bit colormap, non-interlaced Hash74168d688d61e90d33aa8c00dbc38d76 9dba71d2bd1ae649f81a36a966faad7049cf705a 260092dadbeeabbf5bc49e2cec9342dcdc2e0a561d9dc24cb290eab6021ec7b4
GET /images/apt.png HTTP/1.1
Host: aptos.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 808
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="apt.png"
etag: "74168d688d61e90d33aa8c00dbc38d76"
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/apt.png
x-vercel-cache: HIT
x-vercel-id: lhr1::ptwtc-1713306982515-7574fc2b77fc
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zp9uR0qR0GRzXDSiscOLTQtEenmJCgf9jds9gQ7PnNvaalZGxkfYSBDNdwdTX51%2BcfkJgJSANLkfjaxiljUrbKEIabqN3%2Fi64AiElDHDo1UkFRUOGCuAmgojCtlkhGGxaw3dAR%2BPl%2FsESbY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 875a179a6c1a23ff-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Ftrading-reward-banner-bunny.21cb8cfb.png&w=750&q=75 | 76.76.21.61 | 200 OK | 39 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/image?url=%2F_next%2Fstatic%2Fmedia%2Ftrading-reward-banner-bunny.21cb8cfb.png&w=750&q=75 IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeRIFF (little-endian) data, Web/P image Hasha092b9eb161bd32045dbd54a54c57a5f e2c6b4665d8f769a446ac12cdd22083418519ad6 2d02d7acc0f001794cb29e17f510c48b2dac6fe582f99482b07d0aa8317913ee
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/image?url=%2F_next%2Fstatic%2Fmedia%2Ftrading-reward-banner-bunny.21cb8cfb.png&w=750&q=75 HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 2491056
cache-control: public,max-age=31536000,immutable
content-disposition: attachment; filename="trading-reward-banner-bunny.webp"
content-security-policy: script-src 'none'; frame-src 'none'; sandbox;
content-type: image/webp
date: Wed, 17 Apr 2024 05:42:30 GMT
last-modified: Tue, 19 Mar 2024 09:44:54 GMT
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept
x-content-type-options: nosniff
x-matched-path: /_next/static/media/trading-reward-banner-bunny.21cb8cfb.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::8hgxl-1713332550680-5432a8d9a397
content-length: 38754
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js | 76.76.21.61 | 200 OK | 253 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size253 kB (253067 bytes) Hashe2e4072bf968e7d85a02428347b68116 580f551cd588bd85637eae112dd99b4b348c018b 7b3b8b080cc9e21b118ffbc83768dd127b3ab0c4093fc6f51cc344d34b494da3
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421891
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="worker-chunks-bbaf4d77a2f64238.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:30 GMT
etag: W/"e2e4072bf968e7d85a02428347b68116"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::7mdk9-1713332550681-4b5094bec3bd
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:30 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true | 35.158.30.94 | | 0 B |
URL relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true IP35.158.30.94:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true HTTP/1.1
Host: relay.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cd91v/VpHyaFNSkhckddsg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
connection: upgrade
upgrade: websocket
sec-websocket-accept: bsEw3dBXe9/kM7DJaJwf9rS8Wu8=
date: Wed, 17 Apr 2024 05:42:30 GMT
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js | 76.76.21.61 | 200 OK | 253 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size253 kB (253067 bytes) Hashe2e4072bf968e7d85a02428347b68116 580f551cd588bd85637eae112dd99b4b348c018b 7b3b8b080cc9e21b118ffbc83768dd127b3ab0c4093fc6f51cc344d34b494da3
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421891
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="worker-chunks-bbaf4d77a2f64238.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:30 GMT
etag: W/"e2e4072bf968e7d85a02428347b68116"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/worker-chunks-bbaf4d77a2f64238.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::tc5s7-1713332550682-d401a74a72d0
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-334KNG3DMQ&l=dataLayer&cx=c | 142.250.147.97 | 200 OK | 97 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-334KNG3DMQ&l=dataLayer&cx=c IP142.250.147.97:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Hash08678c5af442ec69200475df16bc6713 51c1b10c8d7d82237e7f6f658b7591150c3ab957 57517a24e37d3150ccd77026169b1e31c4b43cef9c57eb342ffc2d636890ad3d
GET /gtag/js?id=G-334KNG3DMQ&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 17 Apr 2024 05:42:30 GMT
expires: Wed, 17 Apr 2024 05:42:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96605
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5185.17a9876281b49b94.js | 76.76.21.61 | 200 OK | 30 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5185.17a9876281b49b94.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash1cc2b2fc08b0a0772dcb49c0a2cc406e 02c4c094e825ca5343f5278f024f9ec2010298ce 6c8e7944580e21fe25821fd97a14dee32539407d22db0a6a3c64d39d4c72ae30
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5185.17a9876281b49b94.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421879
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5185.17a9876281b49b94.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:30 GMT
etag: W/"1cc2b2fc08b0a0772dcb49c0a2cc406e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/5185.17a9876281b49b94.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::phhwt-1713332550739-86145a9bf203
X-Firefox-Spdy: h2
|
|
| api.thegraph.com/subgraphs/name/pancakeswap/pottery | 172.64.147.225 | 200 OK | 3 B |
URL OPTIONS HTTP/2api.thegraph.com/subgraphs/name/pancakeswap/pottery IP172.64.147.225:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectthegraph.com FingerprintAD:37:9B:F1:15:0A:93:00:64:CE:AF:AB:3C:14:FB:F0:C5:09:42:51 ValidityWed, 27 Mar 2024 23:12:53 GMT - Wed, 26 Jun 2024 00:11:13 GMT
Hash344cb90c9cea24e3fd7d53c37a700afd 4460d93d41e542dbffba74b05bcfaf5bf88327d0 fa8b3050c745eb53dd2bea7ba537764269e8aca03015419f4a4327544640773a
OPTIONS /subgraphs/name/pancakeswap/pottery HTTP/1.1
Host: api.thegraph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: text/html; charset=utf-8
cf-ray: 875a17975e8a9980-CPH
cf-cache-status: DYNAMIC
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-headers: Content-Type, User-Agent
access-control-allow-methods: GET, OPTIONS, POST
set-cookie: __cf_bm=36PpccsAWm3X4ozWARf8fLwv3GGlscPdqKXba522.w8-1713332550-1.0.1.1-IGOwhvyRBLZanvH1tPENtYK70IEnkXqXFS0BsRKX7QCacUsm3_bVa8EQpwhY5TPUURMW.OL31jDkgAmPI9uXKg; path=/; expires=Wed, 17-Apr-24 06:12:30 GMT; domain=.thegraph.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/782.7a1117dfc6ca135a.js | 76.76.21.61 | 200 OK | 32 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/782.7a1117dfc6ca135a.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (13606) Hashd24c507d187cc68afbe7d66c0397aa21 04590d36571f2040bba6153ce0621615d936551d a49ec560399e0f40167794971f134d8fc8061cca587d8b7ae2df1fc533bbf321
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/782.7a1117dfc6ca135a.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421884
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="782.7a1117dfc6ca135a.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:30 GMT
etag: W/"d24c507d187cc68afbe7d66c0397aa21"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/782.7a1117dfc6ca135a.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lhhk8-1713332550865-970940c3a2a8
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/cmc.json | 104.26.3.169 | 200 OK | 414 kB |
URL GET HTTP/2tokens.pancakeswap.finance/cmc.json IP104.26.3.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjecttokens.pancakeswap.finance Fingerprint16:4E:75:1C:22:7A:65:1F:A3:EE:D9:84:E5:17:6B:94:18:D4:CB:75 ValidityTue, 02 Apr 2024 17:48:58 GMT - Mon, 01 Jul 2024 17:48:57 GMT
Size414 kB (413961 bytes) Hash2fe572f06d5051baa2ccd9f664963484 f0a0ce856c2e8356f0c2dad7b7ca5e215624fad5 2fe7a8899a8220c3c8019270ee0ce7d602526f2a0bd2311f8b04de6e715f4179
GET /cmc.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f63eedff26a5bbfc2fdea60fd05839a7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=po7bN8%2F7WxJPYleoZuJx4bsr9gVml%2F36XabFqlfoWJS5Z1xqr8JHBI0bk9zwsvKznhK8B1D3Lc%2FyW71pXrXnZXgs7wnE7HbQ883UeOhgVMGeoIzcs6PSZ1ebQ9%2FEREMxFdsjikW7eljLoE8Vpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 875a179e1d80653c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 29 kB |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash77e6c0c844fdd48432a58469d0e23238 4b0afc630206d367058e7b44441deececbd6e6d4 b86f3b333bfaeb40e45ce53805efd152f545ec08c8e6b86db5b3e2687c88908a
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 85
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1383-da8ddc1e8fa88ba8.js | 76.76.21.61 | 200 OK | 10 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1383-da8ddc1e8fa88ba8.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (8427) Hash81775f0243f7ae5c7c890580871eede4 06161a1b0242d78deb1e47eff177e7762d446650 613bef79874b81063b390dd2f2d37a432702a1742a5bdd43fa58ca4d389b960a
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1383-da8ddc1e8fa88ba8.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1383-da8ddc1e8fa88ba8.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"81775f0243f7ae5c7c890580871eede4"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1383-da8ddc1e8fa88ba8.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332551806-8c423e24c52e
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=351473598.1713332551>m=45je44f0v873867766z8834067533za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=338568352 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=351473598.1713332551>m=45je44f0v873867766z8834067533za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=338568352 IP142.250.74.163:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=351473598.1713332551>m=45je44f0v873867766z8834067533za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3lPl2l1&npa=1&z=338568352 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 05:42:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/pancakeswap-bnb-mm.json | 104.26.3.169 | 200 OK | 1.1 kB |
URL GET HTTP/2tokens.pancakeswap.finance/pancakeswap-bnb-mm.json IP104.26.3.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjecttokens.pancakeswap.finance Fingerprint16:4E:75:1C:22:7A:65:1F:A3:EE:D9:84:E5:17:6B:94:18:D4:CB:75 ValidityTue, 02 Apr 2024 17:48:58 GMT - Mon, 01 Jul 2024 17:48:57 GMT
Hashd529986f52ecb54d96bf7adb0cf8cb0f 20c3efadece24d29353de08f55b8fac3506d6d43 1e47cf1da6687cada17b4568f55a5202b7ca90b9ee5941da4addea8d83c1397a
GET /pancakeswap-bnb-mm.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"faf77b0d59ffb744af6dfc91e89864da"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YtDl26akgvyNSzt9YBHNWKRXNDOurbu3h0Nc4EyK%2BKYMDQqD95sAetLHbvdjDOVZemYdJA3EvZVqD0sAZo81n5P8DVip6aP2Y2PrcA%2B1%2F4bGx17AouTDc8HhBSFC3uVrchtpPq%2BRdMKMKedb0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 875a179e1d79653c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 9.2 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp Hash835880c74b2b75b4b6f5f0af0115438c 3cbb7c955c08ccbd8e4e0a2031bf8daa0754aafb 8c8d2bda4f39810c8650a74cece803ff55b40bd234f9ca35068b6155e0bc7555
GET /w3m/v1/getWalletImage/b6ee4efc-f53e-475b-927b-a7ded6211700?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 9194
cf-ray: 875a17a63b78be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 82466
cache-control: public, max-age=31536000
etag: "cf9TnuhjIqeWjX901zZxsJee5JUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=1360+0 c=8+34 v=2024.4.0 l=9194
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=gMS5Li2gSBKa55DQSUIFuPolBd4qhZREbcIW0xUgAoU-1713332552-1.0.1.1-GDLfamdLc1LwbAjrmJOEP0A9abQsuk28cwh3fDFbvaG52xW2amsGiRuxIkWFs.BreDReV39c3bZTp1jMYe8kiw; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/coingecko.json | 104.26.3.169 | 200 OK | 210 kB |
URL GET HTTP/2tokens.pancakeswap.finance/coingecko.json IP104.26.3.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjecttokens.pancakeswap.finance Fingerprint16:4E:75:1C:22:7A:65:1F:A3:EE:D9:84:E5:17:6B:94:18:D4:CB:75 ValidityTue, 02 Apr 2024 17:48:58 GMT - Mon, 01 Jul 2024 17:48:57 GMT
Size210 kB (210525 bytes) Hash1a456b5475b664c90b860d8a72e728dc 6fb67d2bb121c1dc10354873498524a0fb83f953 e4b5399f99da6974ab4fb4ed4290098469927abd953660a497feede17b8a2e05
GET /coingecko.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"48a02cbf567e574ebe81170ecee30139"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dJB4IVZ7y4q3wphj1IP84jXkjNlGI8bg6wXv9ViLbCkAFHi829RC6eaYxnUifTUAtXzKd1Nplk7Nyzw1AdiV%2BJJ87p4W4DvLN%2BctJORKrq%2B%2FFqhVJ0WmwtqGdGIf60YERjAcVfAEuF9bwLiXkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 875a179dfd67653c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8940-2680582ce3921897.js | 76.76.21.61 | 200 OK | 39 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8940-2680582ce3921897.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (11903) Hash4af0d04550602a4e4023aae8ef321f77 78e4304151cad34afe52345efeb22cdb312c879c 1669b1d79728b734d369c85406cfa634f6455c3487057db9c9a95d47335693aa
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/8940-2680582ce3921897.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8940-2680582ce3921897.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"4af0d04550602a4e4023aae8ef321f77"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/8940-2680582ce3921897.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::7mdk9-1713332551127-1dd0c55bdd36
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 2.1 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image Hash2052ea08b332c87388dc42097624cb20 8b82e1e2dd5a482ae90433c763b268b99f6cf093 11a824e4c63932ec7c2684c8c9554c84461efb5d731d15387d77bb5c3e78f9d5
GET /w3m/v1/getWalletImage/a7f416de-aa03-4c5e-3280-ab49269aef00?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 2090
cf-ray: 875a17a63b73be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 61513
cache-control: public, max-age=31536000
etag: "cfeV6YXTHd_vyfarpvxqg62GCGUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=1079+0 c=1+25 v=2024.4.0 l=2090
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=xckjMrwZcXygRdA6n0RbGtfIC9hTVYkFWnt1.vJmCRI-1713332552-1.0.1.1-rRE0AQzJUGf.VtleaCJOeKVBwkQ0MS0B3uphnsLcmfAjLD6RGkg0Y2NM4AQR.XLyT2VJAPbKPyKJFPQ8YeMzRw; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/4725dda0-4471-4d0f-7adf-6bbe8b929c00?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 3.8 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/4725dda0-4471-4d0f-7adf-6bbe8b929c00?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp Hashda70910749e573bddd422e3be5867a44 da34c9ed83957d53bc31a9b59fd320ce02288a3f bfbc9631cd59d2c9b3d7472e49a53ff4e9680ab19c92b8af870d4a068a2a0a71
GET /w3m/v1/getWalletImage/4725dda0-4471-4d0f-7adf-6bbe8b929c00?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 3798
cf-ray: 875a17a64b81be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 43753
cache-control: public, max-age=31536000
etag: "cfVY6bvtQgA-Z381nmE5duLVCtUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=287+0 c=10+31 v=2024.3.2 l=3798
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=Ff6k5dY5MheKtAkaqk7bl2Hk9zAYhNhjgeISK6u8KRo-1713332552-1.0.1.1-1zqiDa2mRlRC0me.K3vKCfqumr.mBGGsP7tkroInPlziJcYyI7YeE.xZlKM77brZbUF1PrmKoLjbXshMwwCE0A; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/swap-ff7a5593c1b1c0cf.js | 76.76.21.61 | 200 OK | 41 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/swap-ff7a5593c1b1c0cf.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (28018) Hashdf1663ca83ab2c523a8c83ed87e45060 3ac04eea90226bd62aa8722d0e7d87104fb1d39f 8bd83af489424128f7cf2fe8ff294afcf00ab30db9a9189005ea953a8f19c522
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/swap-ff7a5593c1b1c0cf.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421870
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="swap-ff7a5593c1b1c0cf.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"df1663ca83ab2c523a8c83ed87e45060"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/pages/swap-ff7a5593c1b1c0cf.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332551842-733caa5abdd3
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 5.1 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp Hash7cd3960a5002ec8ffd672267dbd184cf 9c353d573e5f9cb57df4068ced24b2455b6f3ddd 1562ed280e5486999bfa41e9eddf46996b078b54e14fff9748b427c793bc6969
GET /w3m/v1/getWalletImage/c39b3a16-1a38-4588-f089-cb7aeb584700?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 5054
cf-ray: 875a17a65b90be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 37818
cache-control: public, max-age=31536000
etag: "cfzxenqWecI6yJVG_C8-69sArsUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=291+0 c=0+15 v=2024.4.0 l=5054
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=rduRPObZbKl.xYt8JvhErTOFOumCo_ubAohip2jwqUo-1713332552-1.0.1.1-qFqFhgx619cE6ckPdc66iDxSeCnwJpj00I5EMMZPSratL1Ro3GFk1pHwEo5NpnZ_jjyr70sFwI5U.5BrczUq1g; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 7.3 kB |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashae9e7e15a9f305af825c8bb70eee5c67 c522ede6e881cb7dca3cb58f29658e432d66767f 9a093f8459333b9bf0d3c9aca381ee2f0bfa6a0a0967954dc889a35458a735b8
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 1416
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/pancakeswap-extended.json | 104.26.3.169 | 200 OK | 28 kB |
URL GET HTTP/2tokens.pancakeswap.finance/pancakeswap-extended.json IP104.26.3.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjecttokens.pancakeswap.finance Fingerprint16:4E:75:1C:22:7A:65:1F:A3:EE:D9:84:E5:17:6B:94:18:D4:CB:75 ValidityTue, 02 Apr 2024 17:48:58 GMT - Mon, 01 Jul 2024 17:48:57 GMT
Hash4cd5c7c42fe392bbbcb089bfd6c2fcfe e656f87d73358d6996c656643ac8ca1d62235fda 85bff99f144d96a85ccb3c737cfa70f9a5279c03f7bacefb336a83033a2f98e6
GET /pancakeswap-extended.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"f337df90a89a252279b03ca9ceaf71bd"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ce%2BvvRQVtJxk404G3H7ppmyyEJWWvCWgX8r00YODioJfgnFJWdzvR7GZ3ja6LLT92EKcunUj1GlPt7rK5JfuF9UBVtefLQWbD12fGH6mI0O5QGU05gYihNbO3q0i%2F20MI%2BGntf1Ey75QqXOR9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 875a179e1d82653c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:35 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/929.0e05e950c8fdb2a9.js | 76.76.21.61 | 200 OK | 5.0 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/929.0e05e950c8fdb2a9.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (6909), with CRLF, LF line terminators Hashbc4a822967dca9e3d6b3c29d46eaf56f 5c07ba1439afb2a2ee615c6081becb3b0f6c022c 76c1e86cbd7f17b37e291d64b12955ded42695d73f64551b1860f5bc5b44dc4a
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/929.0e05e950c8fdb2a9.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="929.0e05e950c8fdb2a9.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"bc4a822967dca9e3d6b3c29d46eaf56f"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/929.0e05e950c8fdb2a9.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549078-2299b14476bd
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:35 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| api.thegraph.com/subgraphs/name/pancakeswap/pottery | 172.64.147.225 | 200 OK | 116 B |
URL OPTIONS HTTP/2api.thegraph.com/subgraphs/name/pancakeswap/pottery IP172.64.147.225:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectthegraph.com FingerprintAD:37:9B:F1:15:0A:93:00:64:CE:AF:AB:3C:14:FB:F0:C5:09:42:51 ValidityWed, 27 Mar 2024 23:12:53 GMT - Wed, 26 Jun 2024 00:11:13 GMT
Hashb9ea965bceece5609f674e41b609d526 e3f0fe5c4799a649e2ae528cef2012a362b4e5ea 82f317a329661f41d173c2d721f2e7745ac53c8884e0b165e5f9d99d2aa0d02d
POST /subgraphs/name/pancakeswap/pottery HTTP/1.1
Host: api.thegraph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
content-type: application/json
Content-Length: 287
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: application/json
cf-ray: 875a1799589f9980-CPH
cf-cache-status: DYNAMIC
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-headers: Content-Type, User-Agent
access-control-allow-methods: GET, OPTIONS, POST
graph-attestable: true
set-cookie: __cf_bm=8GlIoemTnY.sofcR46mHtDkALVQ0wdIOth_nwzmO7e4-1713332550-1.0.1.1-I2NaiDD6YVuajPY9ApjK6I2T0Mq9Vg5ImFHg_sysziL57TIbB1a4cmAEAD4YTvbE.59EuCTgIPksoM2SJkLAvw; path=/; expires=Wed, 17-Apr-24 06:12:30 GMT; domain=.thegraph.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1972-9e91c3e6853df63a.js | 76.76.21.61 | 200 OK | 15 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1972-9e91c3e6853df63a.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (12206) Hashf48d620de69ab88820f7e9e05ae9500a 0361e49e3be4effe80f3c3ad796035641f38b286 5430085c62aed6e8a0f531b6ef9b0903f49c4b59ff23b07113c537b40b87f331
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1972-9e91c3e6853df63a.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1972-9e91c3e6853df63a.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"f48d620de69ab88820f7e9e05ae9500a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1972-9e91c3e6853df63a.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::hlxvp-1713332552638-73e752116791
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/css/8ab97594b6c016e8.css | 76.76.21.61 | 200 OK | 10 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/css/8ab97594b6c016e8.css IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (1411) Hash2afb49d6892e65c4154a498a99f55985 b00cff8cec278f92ad68c122692adc9c966c1b83 fa7381e752d8f8cf95e42e213c9bd02cd05701bcd537ce8b695541d8383e9e72
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/8ab97594b6c016e8.css HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 421853
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8ab97594b6c016e8.css"
content-encoding: br
content-type: text/css; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"2afb49d6892e65c4154a498a99f55985"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/css/8ab97594b6c016e8.css
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332552652-734d7e5df51d
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:39 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 78 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash447d4d6fd24a430fb5b9975c8d60feb7 b667546923a50aa77f951131f2c34b0a1fd8f03e 108916b2a061f45f52b42c76c2ae7988560ee175c68115c1d3830b6873cfcb32
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 649
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:35 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:39 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:39 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 50 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash2783788a70b51e8fb37890c500da3ef9 9f9d7d0215205f4d18e44ae5636bc1ef95331967 bd1040fd24c6c39cbf60e66bb72fdb93ec4ea6169d03871b17747c33deb5f3e5
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 52
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:35 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 7.6 kB |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash57e8017b3fe6f795ceb0f82f5b28e156 11902c88910c1615022a37c3e4676b2f597c23f2 bff528399bd76a602e75a39a118e3ea8e67a8fe8b93dea373721bb829d97362a
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 648
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:42 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:43 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:43 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 147 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashb81014d557e17a7e2dc5c001595917e5 df32f726ae43b6493bf7faa6a1a5624ee32ae4b2 f6876b1e19ae4ce27fb605b06539ec4ec45714a18bf557439f896398dd2b69d7
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 1865
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:39 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 50 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash22a4f63d19c7d332de7b12245d307f3b 2e60ab06b80abd8e77efd68280addd578964b259 8a5a98b998a97a34656a8699f1fafc8dfc2707d5e3d26a21d268ac470a1c2137
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 52
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:39 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1866-e72e60159ba8eed1.js | 76.76.21.61 | 200 OK | 14 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1866-e72e60159ba8eed1.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (5640) Hash87db549cda1723529f9dd114926526b8 228404ee3857db527e42152b0f6c5c456bb2c322 648171548c3f43a03fd1e2686905dee45c048aa70640c61cd67a4c456d4a5ad7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1866-e72e60159ba8eed1.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
age: 418824
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1866-e72e60159ba8eed1.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"87db549cda1723529f9dd114926526b8"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1866-e72e60159ba8eed1.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332551785-f32f798536f4
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:49 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/data/7wdl_r9hf_FLBj0uuqI-h/swap.json?showTradingReward=true | 76.76.21.61 | 200 OK | 18 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/data/7wdl_r9hf_FLBj0uuqI-h/swap.json?showTradingReward=true IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hash9d7935490bde4bbb429aad0d6c48644a f4d590ea381ee3cea00bb017c40dfdf168571697 2a001ea13b3b9492bfad1643c98f901c21914bbf5dbac3c340936d9413eef037
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/data/7wdl_r9hf_FLBj0uuqI-h/swap.json?showTradingReward=true HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
purpose: prefetch
x-middleware-prefetch: 1
x-nextjs-data: 1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
date: Wed, 17 Apr 2024 05:42:30 GMT
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /swap
x-middleware-skip: 1
x-robots-tag: noindex
x-vercel-id: arn1::7mdk9-1713332550737-1473db36e918
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:49 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 0 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 17 Apr 2024 05:42:51 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 78 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash379b5fbd1b666b0bd85eb867c1b677f8 53ed2b1f194da076d8653759e95ccdc98979ca20 c62a41cdcaa90a45660aba2b3732605eced9b4abdb57c3a60244ee6bf22c6aca
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 649
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:48 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bsc-dataseed1.defibit.io/ | 99.83.204.86 | 200 OK | 176 B |
URL POST HTTP/2bsc-dataseed1.defibit.io/ IP99.83.204.86:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectdefibit.io FingerprintF7:D5:85:A1:FD:D2:03:6C:59:FA:82:F2:19:D2:77:B3:DF:8C:23:24 ValidityWed, 12 Jul 2023 00:00:00 GMT - Sat, 10 Aug 2024 23:59:59 GMT
Hash645562c6c08c66153fa693b7039cacdb 9ed37a40e0e18ffac249a14c38c32dbb0e7e77d0 9c31d9d9eb0ff1d326998565939b70533d99ecb003fbd5904a02597b9e0c3bb3
POST / HTTP/1.1
Host: bsc-dataseed1.defibit.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Content-Type: application/json
Content-Length: 52
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:36 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/love-butter.png | 76.76.21.61 | 200 OK | 27 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/love-butter.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 685 x 702, 8-bit colormap, non-interlaced Hash7010643de5f4efbf411c2fa7d4cd6925 8ebc6b09f4aff6f1d2f692d855bc901ddb8c02a7 7a538d1301f92e126744f6083b24ddcad98a19eaec4efe708c8118e412f3e71f
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/love-butter.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="love-butter.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "7010643de5f4efbf411c2fa7d4cd6925"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/love-butter.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549506-3f2e95c724e2
content-length: 26974
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/513-cb67b7bfca541548.js | 76.76.21.61 | 200 OK | 32 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/513-cb67b7bfca541548.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (15832) Hash00f9034327c821f36df94e4dffa6e969 6775e405b0d693f689f6f437b5d8b194aca68d5d 96a1f3682f1a419cfa08483f6c21024b56eedb0ba156f961d3b14ef8c1388a69
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/513-cb67b7bfca541548.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="513-cb67b7bfca541548.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"00f9034327c821f36df94e4dffa6e969"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/513-cb67b7bfca541548.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332547377-4159d59e9876
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5569.88bab7f1b25d6814.js | 76.76.21.61 | 200 OK | 485 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/5569.88bab7f1b25d6814.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Size485 kB (485014 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/5569.88bab7f1b25d6814.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="5569.88bab7f1b25d6814.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"18dd22e9c60551b05b6c6d7f32c4ac5a"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/5569.88bab7f1b25d6814.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549330-d5e4f1c2acec
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/right-bunny.png | 76.76.21.61 | 200 OK | 85 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/right-bunny.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 449 x 448, 8-bit/color RGBA, non-interlaced Hasha2b244656ccca76f768d8166d61e7ec1 0b45add2e2fa6d1860a2a1b88f34b1c835eea3f7 3593770784fd3994e2464b6152c1cdf44a3b2d2a53fdeb1e403f40d925ee9d11
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/right-bunny.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="right-bunny.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "a2b244656ccca76f768d8166d61e7ec1"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/right-bunny.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::qnhwn-1713332549903-9062655581e8
content-length: 85271
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4253-ece81cd4224dfe83.js | 76.76.21.61 | 200 OK | 367 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4253-ece81cd4224dfe83.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Size367 kB (366595 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4253-ece81cd4224dfe83.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4253-ece81cd4224dfe83.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"6b95044fdd2e3177e2dddb81e433471b"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4253-ece81cd4224dfe83.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::f746r-1713332547372-03e316d7bb2d
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1518-807be149c1b04211.js | 76.76.21.61 | 200 OK | 11 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1518-807be149c1b04211.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10590) Hash3f46977d9b0661718797f9f6a81def97 7827f12721ec5a28d8fc5164f18ad9457c59b6a7 099d9417752b9ce255dfb29a959d0dc91a2baaa6ac71b8d9e408e7ff87044ba8
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1518-807be149c1b04211.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1518-807be149c1b04211.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"3f46977d9b0661718797f9f6a81def97"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1518-807be149c1b04211.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332551775-3fa625b9c4a1
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4568.12d0e84276b3ab94.js | 76.76.21.61 | 200 OK | 95 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4568.12d0e84276b3ab94.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7599a7fbffe112eafa5ea6b3daac5555 a0f403c0745334943ac74eb2abdebf4fad395258 d3d10f50ae487f97f98735a0f66da19fa81af04305542a4b8fd7f6baa3ba017b
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4568.12d0e84276b3ab94.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4568.12d0e84276b3ab94.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"7599a7fbffe112eafa5ea6b3daac5555"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4568.12d0e84276b3ab94.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nqvdh-1713332551318-ad9b889e757e
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/chains/56.png | 104.26.2.169 | 200 OK | 1.2 kB |
URL GET HTTP/3assets.pancakeswap.finance/web/chains/56.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 48 x 48, 8-bit colormap, non-interlaced Hash241ddcd7ff9541b1839703882d91d404 5b6ada17f54077b5e020d91af0c8ebe99b06bb88 8b7f54e9045d2beca6b4d124b97c84b9c2e84d14c709b6f3b160fae209ff08e0
GET /web/chains/56.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 1158
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2eba283c17774595a0733544bc896fba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qRSGbuQ6OfDheWvDiNx1H%2FiToKc8Zj%2FeGcmzviPUu0oCFzi3dLhZx2hcprBXPpCtfYXliLffkYCyaO%2B5aarSbt8eTEV6OVP%2FT4p%2B9hLNH00AU%2BNGu5QSneUQzow3mDxh%2BLK%2FNTJJox0QyPIPSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 6872
accept-ranges: bytes
server: cloudflare
cf-ray: 875a1799be2d9527-LHR
alt-svc: h3=":443"; ma=86400
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/194-5e7c1b96d58fcb23.js | 76.76.21.61 | 200 OK | 30 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/194-5e7c1b96d58fcb23.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (8150) Hash357cd0451a39ed1efc362856dda2f215 9178ea74dc8ad8049b139372e8760d199ca3af4e ef0ea32d9c019a5f4d2b43a0196548528574f768155a602a98333a0e6c2991d1
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/194-5e7c1b96d58fcb23.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421870
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="194-5e7c1b96d58fcb23.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"357cd0451a39ed1efc362856dda2f215"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/194-5e7c1b96d58fcb23.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332552648-a8d930a1faae
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v15/nKKZ-Go6G5tXcraVGwA.woff2 | 142.250.147.94 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/kanit/v15/nKKZ-Go6G5tXcraVGwA.woff2 IP142.250.147.94:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19388, version 1.0 Hashf816f16f297c801aaf01ff43c9fcd563 2e9e2c80bc5aa5f01f75cd486baa1769f53dea5e ae7b918efe7cd287651e014ed269c923e1a925c8eee1a474ad11184f04659d3e
GET /s/kanit/v15/nKKZ-Go6G5tXcraVGwA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 05:49:29 GMT
expires: Sat, 12 Apr 2025 05:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 20 Jul 2023 20:53:09 GMT
content-type: font/woff2
age: 431579
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/900-011ae1c0fe9f9296.js | 76.76.21.61 | 200 OK | 8.0 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/900-011ae1c0fe9f9296.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (8014), with no line terminators Hashcca4b92f68f40a1a4f477d4ebd1e2a2f 42d762815164a81acf8f9ba5233c3cf47a5f6572 88a2af421a2d9d5c6e309f0ef39e90aed4ef3b53a70c417cf961c782a1da914d
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/900-011ae1c0fe9f9296.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="900-011ae1c0fe9f9296.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: W/"e75f525b1cebd7a66b61d6c6c82fdd83"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/900-011ae1c0fe9f9296.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::qnhwn-1713332549079-1f66fbf6acab
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4633-9ad00cc3d5f1a63f.js | 76.76.21.61 | 200 OK | 9.7 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4633-9ad00cc3d5f1a63f.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10055), with no line terminators Hash7258fa6c3e2b193bdd9e7f26fafe2ab0 1b3c0cba7a9d9f84d3b285f092147f3f47eefe6b 2b1ad5db5ec11a213730ad91ff313473a8e7196b0a89fbd9749428af80e68d94
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4633-9ad00cc3d5f1a63f.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4633-9ad00cc3d5f1a63f.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"204b1c198c841940c37ea60195d94ec0"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4633-9ad00cc3d5f1a63f.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::tc5s7-1713332552643-e1de80e490a7
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/194-5e7c1b96d58fcb23.js | 76.76.21.61 | 200 OK | 30 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/194-5e7c1b96d58fcb23.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (8150) Hash357cd0451a39ed1efc362856dda2f215 9178ea74dc8ad8049b139372e8760d199ca3af4e ef0ea32d9c019a5f4d2b43a0196548528574f768155a602a98333a0e6c2991d1
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/194-5e7c1b96d58fcb23.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421870
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="194-5e7c1b96d58fcb23.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"357cd0451a39ed1efc362856dda2f215"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/194-5e7c1b96d58fcb23.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::f746r-1713332551817-bc0d82fdc6f7
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4568.12d0e84276b3ab94.js | 76.76.21.61 | 200 OK | 95 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4568.12d0e84276b3ab94.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash7599a7fbffe112eafa5ea6b3daac5555 a0f403c0745334943ac74eb2abdebf4fad395258 d3d10f50ae487f97f98735a0f66da19fa81af04305542a4b8fd7f6baa3ba017b
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4568.12d0e84276b3ab94.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/quote-worker.4ecf382979bc0cbb.js
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4568.12d0e84276b3ab94.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"7599a7fbffe112eafa5ea6b3daac5555"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4568.12d0e84276b3ab94.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::tc5s7-1713332551346-fe657098a31c
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=undefined | 142.250.147.97 | 404 Not Found | 0 B |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=undefined IP142.250.147.97:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gtm.js?id=undefined HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
date: Wed, 17 Apr 2024 05:42:29 GMT
content-type: text/html; charset=UTF-8
server: Google Tag Manager
content-length: 1580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7444-360c3f79697d7d4b.js | 76.76.21.61 | 200 OK | 2.5 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7444-360c3f79697d7d4b.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (2587), with no line terminators Hash4de8a53fb41ebd759027d91f2ec64781 3299bcc68e0d15a9685ff8ac6d49a484fa15611c 6ede75d2417932635664704622abb242b024e5a7f5bf177ab3b3cb4f4f7c2df0
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7444-360c3f79697d7d4b.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7444-360c3f79697d7d4b.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"cf3d137988a48807f06a3e8663fb24c4"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/7444-360c3f79697d7d4b.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::rc95s-1713332551777-d4743d645903
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/logo.png | 76.76.21.61 | 200 OK | 23 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/logo.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 512 x 512, 8-bit colormap, non-interlaced Hash64b883944b59c73896ec40af9f94aab3 e0dfeea62f1ba1942c99d1e6cf14c2decb023d08 39c08d280e7f4636908c7648d8c779fa7b01a90ba04d869a94e461d4637de199
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /logo.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421880
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="logo.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: "64b883944b59c73896ec40af9f94aab3"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /logo.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332552110-b3974d52beb8
content-length: 22919
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8530-9c4fcb9d578d963e.js | 76.76.21.61 | 200 OK | 11 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8530-9c4fcb9d578d963e.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (4050) Hash68dcf23721f19ea1fb86125a3e460c23 0af59ca6b61c514ce78739e65850da61477192af 28bf4662823d0406a5bff6969b8a4103eeceaf4e9698259dcb309bf35c18e0d7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/8530-9c4fcb9d578d963e.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421870
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8530-9c4fcb9d578d963e.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"68dcf23721f19ea1fb86125a3e460c23"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/8530-9c4fcb9d578d963e.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nqvdh-1713332552648-4d5aaa658ed4
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1732.580bc0b12da6139f.js | 76.76.21.61 | 200 OK | 189 B |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1732.580bc0b12da6139f.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashfd09ac22cb7386ceb9e1b8b399b15faa 1d8e92e7b6f424aed8bdc8df5fbe31dad3fbf091 a7d1082561fac45f18a5a72224aeca09ea3d6ddec479f42ea60621dc6c94b685
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1732.580bc0b12da6139f.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1732.580bc0b12da6139f.js"
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "193e391c62b77e9bf00ad62c66275408"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1732.580bc0b12da6139f.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549328-0b4a12db4e0a
content-length: 189
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 7.2 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image Hash342152b7fdcb21b38fb77d6b55dab77b c98e9cc318eef9dbe98df17fe6c3afc699dbee33 a1962f56716c3fc8e93e593dd611f7b45a8632bacf8df45b56f9dcc5b3c10958
GET /w3m/v1/getWalletImage/9f259366-0bcd-4817-0af9-f78773e41900?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 7170
cf-ray: 875a17a65b95be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 64847
cache-control: public, max-age=31536000
etag: "cftQTt3un0HlQqBazMK6bKNWLiUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=1167+0 c=2+52 v=2024.4.0 l=7170
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=2eobuSk_003gN_NscnYCJxxdUQurP8XEVmIOSKx5p4U-1713332552-1.0.1.1-1nluUnVLuX.MyOA1_veaP18nafoPdeNy2jw1s3mx6bHPlwDF0USeKVyAMDcdmn2.r6eqSwzIMAJJxWmffoC_Sw; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true | 35.158.30.94 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true IP35.158.30.94:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectrelay.walletconnect.com FingerprintA3:38:A5:E6:60:04:20:E0:86:C9:9C:9E:6A:D7:35:A4:D4:04:A2:A5 ValidityMon, 07 Aug 2023 00:00:00 GMT - Thu, 05 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWtldzZMU1pxYmlwdlkxUUw3RjQ5a2dUZXpTQ1hzcnZHNmpZRGp3UEpqS1R6NCIsInN1YiI6IjVlNzZmZjA0OTQ1YmFhM2EwMzY1ZDE5Y2NiNjJmYjZiNTdlNGVhYjY3MTU5ODgwZDAzNWU4MTNlNDU1YWExMzUiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.5Kop_hIGER6CgFQh7VobvZfP05OxnCr42TDXkT_Oi424Ilyjhsupk_nJh047Q6Oci5eMjdGZNeog0kQVKglWDQ&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true HTTP/1.1
Host: relay.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cd91v/VpHyaFNSkhckddsg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
connection: upgrade
upgrade: websocket
sec-websocket-accept: bsEw3dBXe9/kM7DJaJwf9rS8Wu8=
date: Wed, 17 Apr 2024 05:42:30 GMT
|
|
| fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2 | 142.250.147.94 | 200 OK | 11 kB |
URL GET HTTP/2fonts.gstatic.com/s/kanit/v15/nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2 IP142.250.147.94:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 10572, version 1.0 Hash8a0a6eaf18306910de756b986bbef9b2 2eeca7d47e919a37d7ba91d4ecfec47da2019721 825df5cc06c5d4e5ace9ecc77ce4e06d83425e333ee13a35b0190df2e6a56d16
GET /s/kanit/v15/nKKU-Go6G5tXcr5KPxWoVaF5NQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 12 Apr 2024 05:15:39 GMT
expires: Sat, 12 Apr 2025 05:15:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 20 Jul 2023 20:50:56 GMT
content-type: font/woff2
age: 433610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1201-a3716d89b6132791.js | 76.76.21.61 | 200 OK | 49 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1201-a3716d89b6132791.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1201-a3716d89b6132791.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1201-a3716d89b6132791.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"f7dc214249405a1eeeb55d065d129dbd"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1201-a3716d89b6132791.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::hlxvp-1713332547377-c7548b053536
X-Firefox-Spdy: h2
|
|
| pancake-trading-fee-rebate-api.pancakeswap.com/api/v1/campaign/status/0/type/rb | 76.76.21.241 | 500 Internal Server Error | 56 B |
URL GET HTTP/2pancake-trading-fee-rebate-api.pancakeswap.com/api/v1/campaign/status/0/type/rb IP76.76.21.241:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subjectpancake-trading-fee-rebate-api.pancakeswap.com FingerprintA5:FC:37:2C:1A:5E:1C:05:39:EA:D0:56:25:28:0B:6C:A7:EF:C0:F3 ValiditySun, 31 Mar 2024 15:51:36 GMT - Sat, 29 Jun 2024 15:51:35 GMT
File typeASCII text, with no line terminators Hashced264a25e238805638049938600c61e 59d7ec157d8e2855acd2d263daad03b7f7d1b931 d40479ff3a56a1e2b42d9a74ca92ed7f6d8a14f038cbe11a1ab134e41889e610
GET /api/v1/campaign/status/0/type/rb HTTP/1.1
Host: pancake-trading-fee-rebate-api.pancakeswap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 500 Internal Server Error
access-control-allow-headers: Accept, Content-Type, Origin
access-control-allow-methods: GET, HEAD, POST, PUT, PATCH, DELETE, OPTIONS
access-control-allow-origin: *
access-control-max-age: 86400
cache-control: public, max-age=0, must-revalidate
content-type: text/plain; charset=utf-8
date: Wed, 17 Apr 2024 05:42:35 GMT
pragma: no-cache
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-error: FUNCTION_INVOCATION_FAILED
x-vercel-id: arn1::652qx-1713332550304-46523322cae7
content-length: 56
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-334KNG3DMQ>m=45je44f0v873867766z8834067533za200&_p=1713332549326&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=351473598.1713332551&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713332551&sct=1&seg=0&dl=https%3A%2F%2Fpay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app%2Ftrading-reward&dt=PancakeSwap&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=4390 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-334KNG3DMQ>m=45je44f0v873867766z8834067533za200&_p=1713332549326&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=351473598.1713332551&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713332551&sct=1&seg=0&dl=https%3A%2F%2Fpay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app%2Ftrading-reward&dt=PancakeSwap&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=4390 IP216.239.34.36:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-334KNG3DMQ>m=45je44f0v873867766z8834067533za200&_p=1713332549326&_gaz=1&gcd=13l3lPl2l1&npa=1&dma_cps=sypham&dma=1&cid=351473598.1713332551&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713332551&sct=1&seg=0&dl=https%3A%2F%2Fpay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app%2Ftrading-reward&dt=PancakeSwap&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=4390 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
date: Wed, 17 Apr 2024 05:42:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7875-b8f3deb476768b58.js | 76.76.21.61 | 200 OK | 9.9 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7875-b8f3deb476768b58.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10256), with no line terminators Hash83af67f017a6d9d43436459d60831a28 ad0e34bd547f4e9ff13a3c4e256f71a9ee29bea6 021e89806703bddf486b34140fc422b4f8fd1354ed3be598cca1a81377577488
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7875-b8f3deb476768b58.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7875-b8f3deb476768b58.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"af4e09b7ba3a0b033118dab436393b6e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/7875-b8f3deb476768b58.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332551814-ceaf12b6946d
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6074-ef2e749f44da4494.js | 76.76.21.61 | 200 OK | 40 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6074-ef2e749f44da4494.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/6074-ef2e749f44da4494.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="6074-ef2e749f44da4494.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"38e37311abaa0b892e39e5a64d491c4e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/6074-ef2e749f44da4494.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332551813-e424cd0fa6e0
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4861-3efb5f77e6bf6644.js | 76.76.21.61 | 200 OK | 14 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4861-3efb5f77e6bf6644.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (14258) Hash2e5f13e529de38f4c7a898034d048c61 de7104d674d9ae064d85726165f7b8eb14ed28b1 64cee8b66ce8ba35aefd2b129fd35cb40711119d777a296802ffcfff6e6e68cb
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4861-3efb5f77e6bf6644.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4861-3efb5f77e6bf6644.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"2e5f13e529de38f4c7a898034d048c61"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4861-3efb5f77e6bf6644.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nqvdh-1713332551777-b7ef0945fc7c
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7444-360c3f79697d7d4b.js | 76.76.21.61 | 200 OK | 2.5 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7444-360c3f79697d7d4b.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeASCII text, with very long lines (2587), with no line terminators Hash4de8a53fb41ebd759027d91f2ec64781 3299bcc68e0d15a9685ff8ac6d49a484fa15611c 6ede75d2417932635664704622abb242b024e5a7f5bf177ab3b3cb4f4f7c2df0
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7444-360c3f79697d7d4b.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7444-360c3f79697d7d4b.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"cf3d137988a48807f06a3e8663fb24c4"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/7444-360c3f79697d7d4b.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::rc95s-1713332552642-f00b1fe84454
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 2.6 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image Hashd62bfd6a0d4e300d8e50b60fbe10eab0 251de0bd2dba5194b0dc337e371b017f673d2b40 9407c0251bd7b695a38698d04bbb15514ed472e11797aef7793b9acb2b04fcff
GET /w3m/v1/getWalletImage/7e1514ba-932d-415d-1bdb-bccb6c2cbc00?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 2632
cf-ray: 875a17a64b85be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 67817
cache-control: public, max-age=31536000
etag: "cfmeYviP6kCNFgjEWLRBgPUJnDUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=21+0 c=0+17 v=2024.3.2 l=2632
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=b5TlmpJxY_CWFj2hKpUfOCl2NV5Sp_4K7SYgSG9rnUE-1713332552-1.0.1.1-yB5sO6imrrxPNNeqsacTqej8o7MwOFfuMc7OhFdtCGJoWFrDKxgyTSIzzP3INNauQNaPZOQrDz_u4o1e8m0p0Q; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/right-bunny.png | 76.76.21.61 | 200 OK | 85 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/right-bunny.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 449 x 448, 8-bit/color RGBA, non-interlaced Hasha2b244656ccca76f768d8166d61e7ec1 0b45add2e2fa6d1860a2a1b88f34b1c835eea3f7 3593770784fd3994e2464b6152c1cdf44a3b2d2a53fdeb1e403f40d925ee9d11
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/right-bunny.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="right-bunny.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "a2b244656ccca76f768d8166d61e7ec1"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/right-bunny.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::zvs4k-1713332549505-c37201c6e582
content-length: 85271
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/favicon.ico | 76.76.21.61 | 200 OK | 19 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/favicon.ico IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeMS Windows icon resource - 6 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel Hashfca50d530ea4525965eb6e11edde9601 9a975c80755a5deca6a0635e580c6dd5b57596a4 e11b366176c2f300801c5229aae56ebc008ccb5ccfd217c0aae0ebe4ae009f02
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="favicon.ico"
content-encoding: br
content-type: image/vnd.microsoft.icon
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"fca50d530ea4525965eb6e11edde9601"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /favicon.ico
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::f746r-1713332552112-385a0962a756
X-Firefox-Spdy: h2
|
|
| relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true | 3.74.89.141 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1relay.walletconnect.com/?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true IP3.74.89.141:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectrelay.walletconnect.com FingerprintA3:38:A5:E6:60:04:20:E0:86:C9:9C:9E:6A:D7:35:A4:D4:04:A2:A5 ValidityMon, 07 Aug 2023 00:00:00 GMT - Thu, 05 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?auth=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJkaWQ6a2V5Ono2TWttc1htQThheTFUWDEzeXZrbkxIZmlVY0pqV0twbU5tbk1zcFZOSmtaQXRHQyIsInN1YiI6IjI1NmI5ZDc3MTIyOTBiNDA5OTQ0ZDc0NDZhMzZiZWM4OGJmMDFlZjE2YTAzYzcxNWYyMmRlNTJlYjU1NmZmZGQiLCJhdWQiOiJ3c3M6Ly9yZWxheS53YWxsZXRjb25uZWN0LmNvbSIsImlhdCI6MTcxMzMzMjU1MCwiZXhwIjoxNzEzNDE4OTUwfQ.Wu0Ju0Nx_jvzRRb_yJIlQRjAAtrADCqJyvcyMn_fh75xTBKhmqA9HsAfDVLebZ0bXBwCQ82qprg6fkE4c8JmCw&projectId=e542ff314e26ff34de2d4fba98db70bb&ua=wc-2%2Fjs-2.8.6%2Flinux-firefox-96.0.0%2Fbrowser%3Apay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app&useOnCloseEvent=true HTTP/1.1
Host: relay.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YO0v8Ytw3PdLBpxmc6dRdw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
connection: upgrade
upgrade: websocket
sec-websocket-accept: FOG0grtpopBvLr8nYHiNxI9lkCY=
date: Wed, 17 Apr 2024 05:42:29 GMT
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/9878-87543759ad1104c7.js | 76.76.21.61 | 200 OK | 44 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/9878-87543759ad1104c7.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (44384) Hash83aa61490e88a069a7f142e22b94fe81 87332f484b36613be852da32c12b8c6e3956fcf4 ad1458cfbd92e767d869d9d709b5f8bf0e6fbca5691d6d4b850ab2209f543c4f
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/9878-87543759ad1104c7.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421886
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="9878-87543759ad1104c7.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"83aa61490e88a069a7f142e22b94fe81"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/9878-87543759ad1104c7.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::phhwt-1713332547371-0f639f297b4d
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getDesktopListings?projectId=e542ff314e26ff34de2d4fba98db70bb&page=1&entries=9&version=2 | 104.18.26.46 | 200 OK | 6.9 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getDesktopListings?projectId=e542ff314e26ff34de2d4fba98db70bb&page=1&entries=9&version=2 IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (7634), with no line terminators Hash60b91996618dc7eb312ba928a7e1c408 2fdd2884d5dead88b86c42ec5e83c5fddae2eaac ff7ad4613fa8c85a87814fcd8c62f8c3bbbcc23aaacd956f3288d7171e4133bb
GET /w3m/v1/getDesktopListings?projectId=e542ff314e26ff34de2d4fba98db70bb&page=1&entries=9&version=2 HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=43200, s-maxage=21600
x-robots-tag: noindex
set-cookie: __cf_bm=mKjvauWp5EAZ5AHL0U1XcV0wcW1mP3jr85HjScTUB9w-1713332551-1.0.1.1-QbAlDy5AOBq91IbQPhoHeiV7UsB4KtFI21haHlqevmeSsNtFxjk9oCNN0o5SJdLtpOlWQCiQ2yyhvpxP3a.kiw; path=/; expires=Wed, 17-Apr-24 06:12:31 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 875a179edf8ebe3d-CPH
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 9.7 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image Hash2c5be8f0d595a9248edba92d0419c9a7 422f1ca635998f8cdaeec9e7b37e200d0d5842ea 9584c8da5e38495a93fa58ed0efe855fd33a41aa972bcd33ad1d867828964517
GET /w3m/v1/getWalletImage/fbd441cc-e861-46dc-48ae-a04228ddb500?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 9660
cf-ray: 875a17a63b7dbe4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 61524
cache-control: public, max-age=31536000
etag: "cfFJ943IWAd-AliTnsJ2QbJY_MUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=336+0 c=5+39 v=2024.3.2 l=9660
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=o1cb9FOhAUDPrsmcnnSUDMOVCKLnioJwluX.Q4MnEMY-1713332552-1.0.1.1-fFwJf7eWbKaHQpi731gPRbJ6Zvp6voh1lOOXA4nEI3AVpowxLQfjmAZkGzDMGasi9Lwgc2ImTbak0w4AC6Zjrg; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| www.walletlink.org/rpc | 104.18.37.8 | 101 Switching Protocols | 0 B |
IP104.18.37.8:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerCloudflare, Inc. Subjectwalletlink.org FingerprintB8:73:73:A6:43:5F:26:A6:7B:B4:63:F2:19:C1:AE:68:20:D1:2A:EE ValiditySun, 10 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rpc HTTP/1.1
Host: www.walletlink.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lWhkSHD48437NmgaADxubA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Wed, 17 Apr 2024 05:42:31 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Td4CV2s6qPlAAoPhOL6Vy1xAUKY=
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=2cySeMwkKRe_1Df8.z8rkkEWml8R8ptoRxpZDnQoJ5E-1713332551-1.0.1.1-ZZZC4yBW9qJdTQIwSoyVNDLOJt5LhLDdSgSEVNDaGy.O4czvrH6oGQQiSLDLn8Jx6iUPI4nCXrK9ZTT3wfHYRw; path=/; expires=Wed, 17-Apr-24 06:12:31 GMT; domain=.walletlink.org; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 875a179dcfe092e0-CPH
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6403.387680d93afc97d3.js | 76.76.21.61 | 200 OK | 138 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6403.387680d93afc97d3.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Size138 kB (137476 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/6403.387680d93afc97d3.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421884
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="6403.387680d93afc97d3.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"ce54b50eb8bf9356a45496ff19c44645"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/6403.387680d93afc97d3.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332551319-df65d437ac25
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4861-3efb5f77e6bf6644.js | 76.76.21.61 | 200 OK | 14 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4861-3efb5f77e6bf6644.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (14258) Hash2e5f13e529de38f4c7a898034d048c61 de7104d674d9ae064d85726165f7b8eb14ed28b1 64cee8b66ce8ba35aefd2b129fd35cb40711119d777a296802ffcfff6e6e68cb
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4861-3efb5f77e6bf6644.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4861-3efb5f77e6bf6644.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"2e5f13e529de38f4c7a898034d048c61"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4861-3efb5f77e6bf6644.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332552642-837003a9197b
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7875-b8f3deb476768b58.js | 76.76.21.61 | 200 OK | 9.9 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/7875-b8f3deb476768b58.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10256), with no line terminators Hash83af67f017a6d9d43436459d60831a28 ad0e34bd547f4e9ff13a3c4e256f71a9ee29bea6 021e89806703bddf486b34140fc422b4f8fd1354ed3be598cca1a81377577488
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/7875-b8f3deb476768b58.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 0
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="7875-b8f3deb476768b58.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"af4e09b7ba3a0b033118dab436393b6e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/7875-b8f3deb476768b58.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::nqvdh-1713332552645-85233ef8413e
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/2967-cd798e78634293e1.js | 76.76.21.61 | 200 OK | 9.9 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/2967-cd798e78634293e1.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (9960), with no line terminators Hash0c1e0355ce6e2fa82e007d311b15eb41 56c3ef3bfde23b87731da2bb162459dab01d2803 26804931c069a5df761153a6b216bf5ddad2181d285a2ac792259e060f7ea787
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/2967-cd798e78634293e1.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="2967-cd798e78634293e1.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"2a443106da36d0d5da53e97a3f7551d8"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/2967-cd798e78634293e1.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::xlgc7-1713332547377-534ab5293cf8
X-Firefox-Spdy: h2
|
|
| assets.pancakeswap.finance/web/wallets/binance.png | 104.26.2.169 | 200 OK | 1.6 kB |
URL GET HTTP/2assets.pancakeswap.finance/web/wallets/binance.png IP104.26.2.169:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectassets.pancakeswap.finance Fingerprint62:58:8A:23:51:75:94:A4:7B:AD:60:8B:1A:7B:66:06:34:B6:98:0B ValidityWed, 27 Mar 2024 10:44:32 GMT - Tue, 25 Jun 2024 10:44:31 GMT
File typePNG image data, 150 x 150, 8-bit colormap, non-interlaced Hash355630229f4891e998c71d378b7a4e16 0a2c961f6fefb268075675fa3cab150c100157e9 820f2729d566b9d78993e53ec403b1b84def82ea1a181adce24ed558f7d58c5e
GET /web/wallets/binance.png HTTP/1.1
Host: assets.pancakeswap.finance
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:30 GMT
content-type: image/png
content-length: 1588
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5c6735d127234cb2d01c5a96a1eb48c8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mb%2FOF0BWP5dbwBlkvn6d4D550hiTpVxFX8XrbnHNsGrDuuVC0UNFuahRkLH3Asx05R1oMW5SYEXKJWZIGm%2Fpc0PPFY939yP%2FpbJZMYbTKAP7RHno%2Ft8JKYhviJlC5JBggbIcUfHGsfwWXgUnWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 550
accept-ranges: bytes
server: cloudflare
cf-ray: 875a17975a1c63a1-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1518-807be149c1b04211.js | 76.76.21.61 | 200 OK | 11 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/1518-807be149c1b04211.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10590) Hash3f46977d9b0661718797f9f6a81def97 7827f12721ec5a28d8fc5164f18ad9457c59b6a7 099d9417752b9ce255dfb29a959d0dc91a2baaa6ac71b8d9e408e7ff87044ba8
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/1518-807be149c1b04211.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="1518-807be149c1b04211.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"3f46977d9b0661718797f9f6a81def97"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/1518-807be149c1b04211.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332552638-75643d31d2a5
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4633-9ad00cc3d5f1a63f.js | 76.76.21.61 | 200 OK | 9.7 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/4633-9ad00cc3d5f1a63f.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (10055), with no line terminators Hash7258fa6c3e2b193bdd9e7f26fafe2ab0 1b3c0cba7a9d9f84d3b285f092147f3f47eefe6b 2b1ad5db5ec11a213730ad91ff313473a8e7196b0a89fbd9749428af80e68d94
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/4633-9ad00cc3d5f1a63f.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421880
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="4633-9ad00cc3d5f1a63f.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"204b1c198c841940c37ea60195d94ec0"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/4633-9ad00cc3d5f1a63f.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::czdtw-1713332551805-0a79d4d88529
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8530-9c4fcb9d578d963e.js | 76.76.21.61 | 200 OK | 11 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/8530-9c4fcb9d578d963e.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (4050) Hash68dcf23721f19ea1fb86125a3e460c23 0af59ca6b61c514ce78739e65850da61477192af 28bf4662823d0406a5bff6969b8a4103eeceaf4e9698259dcb309bf35c18e0d7
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/8530-9c4fcb9d578d963e.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421870
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="8530-9c4fcb9d578d963e.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:31 GMT
etag: W/"68dcf23721f19ea1fb86125a3e460c23"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/8530-9c4fcb9d578d963e.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::p4pbx-1713332551833-4a751ebd0cf0
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 2.8 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp Hashf5c89ff82dee2a99c7fd3d8c2572cadb f508f5771e1d44c1b018f9b76c0059bfaf661cfb cb9fb4000086474f84dcae9a54dd2862d09878bc505f1d4b5525755a5723eca9
GET /w3m/v1/getWalletImage/73f6f52f-7862-49e7-bb85-ba93ab72cc00?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 2762
cf-ray: 875a17a64b89be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 65325
cache-control: public, max-age=31536000
etag: "cfRMNMx7h0m2-_fAD9P7SygyPPUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=20+0 c=0+17 v=2024.3.2 l=2762
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=lQygNJyLykhj0Lsi5WpFgdmRX8b7JolkWFJlfUWsmk0-1713332552-1.0.1.1-Wx20_uQ06UBAbxaBaVonhqyFpnFSeZIcKkM3ok4oVT43ZQDxVIFmneCevgGZjAt.dEAMCLNxSzGKSsT0p3BTUw; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6074-ef2e749f44da4494.js | 76.76.21.61 | 200 OK | 40 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/6074-ef2e749f44da4494.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/6074-ef2e749f44da4494.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Cookie: _ga_334KNG3DMQ=GS1.1.1713332551.1.0.1713332551.60.0.0; _ga=GA1.1.351473598.1713332551
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421881
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="6074-ef2e749f44da4494.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:32 GMT
etag: W/"38e37311abaa0b892e39e5a64d491c4e"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/6074-ef2e749f44da4494.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::c8x9t-1713332552644-f16b4b5bf5f7
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/trading-reward-3eb08c7660aead0d.js | 76.76.21.61 | 200 OK | 43 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/trading-reward-3eb08c7660aead0d.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typeJavaScript source, ASCII text, with very long lines (18464) Hashb8bd0836e622e821949fe95d7587a566 f012e070054147cd51559db36f79aae7a6705737 22c50b86b122cd58bb5df23bbbfbe37115abeeb34f251cadb46c4162aa446d64
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/trading-reward-3eb08c7660aead0d.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421876
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="trading-reward-3eb08c7660aead0d.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"b8bd0836e622e821949fe95d7587a566"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/pages/trading-reward-3eb08c7660aead0d.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::rnhcl-1713332547378-bdcfab744537
X-Firefox-Spdy: h2
|
|
| explorer-api.walletconnect.com/w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=e542ff314e26ff34de2d4fba98db70bb | 104.18.26.46 | 200 OK | 9.3 kB |
URL GET HTTP/2explorer-api.walletconnect.com/w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=e542ff314e26ff34de2d4fba98db70bb IP104.18.26.46:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerGoogle Trust Services LLC Subjectwalletconnect.com FingerprintED:B4:3C:64:2E:D4:9E:75:2A:0F:E4:F1:85:B7:CD:B6:A8:91:DE:37 ValidityTue, 27 Feb 2024 02:22:47 GMT - Mon, 27 May 2024 02:22:46 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp Hashf8d4c3c7b0a8ffc1da0f3fddeb9df5f0 e9656a24390cdddef52d3190e7059dedbef85d16 32efe5b98531569d4ee92ffd791b6c3ad191a5178b224377fc427918ae4e2caf
GET /w3m/v1/getWalletImage/204b2240-5ce4-4996-6ec4-f06a22726900?projectId=e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: explorer-api.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:32 GMT
content-type: image/webp
content-length: 9300
cf-ray: 875a17a63b76be4e-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 40712
cache-control: public, max-age=31536000
etag: "cfHSK7haDWQDA9lEEikk-9BEcPUG7FeV1c8ZwDJoU7DQ"
expires: Thu, 17 Apr 2025 05:42:32 GMT
vary: Accept, Accept-Encoding
cf-bgj: imgq:86,h2pri
cf-images: internal=ok/- q=0 n=441+0 c=4+28 v=2024.3.2 l=9300
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
x-robots-tag: noindex
x-wc-r2-status: HIT
set-cookie: __cf_bm=fK.jmdLB0z0XFaJweIu9lF.MZAHT2XnbYFlNmxZt_24-1713332552-1.0.1.1-P4TQXq5kxv4lJBQy6eV8P6da3iRNBivdmFEpygegffdtDYbwfwh6fWzTegMRBgr0qghcApLN6F7PSjWDAnlQUw; path=/; expires=Wed, 17-Apr-24 06:12:32 GMT; domain=.walletconnect.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/_app-aacc090177271f7f.js | 76.76.21.61 | 200 OK | 1.8 MB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/_next/static/chunks/pages/_app-aacc090177271f7f.js IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
Size1.8 MB (1802226 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-aacc090177271f7f.js HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
age: 421888
cache-control: public,max-age=31536000,immutable
content-disposition: inline; filename="_app-aacc090177271f7f.js"
content-encoding: br
content-type: application/javascript; charset=utf-8
date: Wed, 17 Apr 2024 05:42:27 GMT
etag: W/"14b773105b3bd616382e95a0a609a3dd"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /_next/static/chunks/pages/_app-aacc090177271f7f.js
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lhhk8-1713332547370-d1b00876538b
X-Firefox-Spdy: h2
|
|
| pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/love-butter.png | 76.76.21.61 | 200 OK | 27 kB |
URL GET HTTP/2pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/images/trading-reward/love-butter.png IP76.76.21.61:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerLet's Encrypt Subject*.vercel.app FingerprintAF:CF:A8:04:27:73:53:77:D1:D5:CD:E4:60:09:23:4A:DE:CA:82:C4 ValidityMon, 15 Apr 2024 01:56:22 GMT - Sun, 14 Jul 2024 01:56:21 GMT
File typePNG image data, 685 x 702, 8-bit colormap, non-interlaced Hash7010643de5f4efbf411c2fa7d4cd6925 8ebc6b09f4aff6f1d2f692d855bc901ddb8c02a7 7a538d1301f92e126744f6083b24ddcad98a19eaec4efe708c8118e412f3e71f
Analyzer | Verdict | Alert | OpenPhish | phishing | Crypto/Wallet | PhishTank | phishing | Other | Quad9 DNS | malicious | Sinkholed |
GET /images/trading-reward/love-butter.png HTTP/1.1
Host: pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 36384
cache-control: public, immutable, max-age=31536000
content-disposition: inline; filename="love-butter.png"
content-type: image/png
date: Wed, 17 Apr 2024 05:42:29 GMT
etag: "7010643de5f4efbf411c2fa7d4cd6925"
referrer-policy: strict-origin-when-cross-origin
server: Vercel
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-matched-path: /images/trading-reward/love-butter.png
x-robots-tag: noindex
x-vercel-cache: HIT
x-vercel-id: arn1::lrr7f-1713332549903-b8a0ab5c79c7
content-length: 26974
X-Firefox-Spdy: h2
|
|
| verify.walletconnect.com/e542ff314e26ff34de2d4fba98db70bb | 3.79.176.2 | 200 OK | 0 B |
URL GET HTTP/2verify.walletconnect.com/e542ff314e26ff34de2d4fba98db70bb IP3.79.176.2:443
Requested byhttps://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/trading-reward CertificateIssuerAmazon Subjectverify.walletconnect.com FingerprintAF:A5:B3:2A:56:4F:A2:53:AF:7F:63:AD:1B:CA:9C:F3:24:76:E3:42 ValidityMon, 05 Feb 2024 00:00:00 GMT - Wed, 05 Mar 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e542ff314e26ff34de2d4fba98db70bb HTTP/1.1
Host: verify.walletconnect.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pay8-2v-6bis3visv-ekontetevi-gmailcom.vercel.app/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 05:42:31 GMT
content-type: text/html; charset=utf-8
content-length: 190
content-security-policy: frame-ancestors https://*.pancakeswap.finance https://pancakeswap.finance
x-csrf-token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJleHAiOjE3MTMzMzYxNTF9.t_H4btWjpWPiE3yxOAZmZaBy53uuwV0pLyCd2kpW7Jc
X-Firefox-Spdy: h2
|
|