Report - n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/

Report Overview

Submitted URL
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
IP
212.71.124.190
ASN
#24951 EveryWare AG
Submitted
2024-05-08 17:12:18
Access
public
Website Title
Uniswap Interface
Final URL
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/#/swap
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
tokens.coingecko.com	143111	2014-03-26	2020-11-25	2024-04-26	980 B	2.2 MB	104.21.74.223
app.tryroll.com	305318	2017-12-17	2019-05-29	2024-03-25	960 B	33 kB	104.18.11.70
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app	unknown	2020-05-21	2022-08-23	2023-11-05	4.5 kB	1.5 MB	212.71.124.188
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2024-05-07	338 B	942 B	143.204.53.97
raw.githubusercontent.com	35802	2014-02-06	2014-03-01	2024-05-07	2.2 kB	22 kB	185.199.109.133
static.optimism.io	292168	2015-05-19	2021-07-07	2024-04-19	1.0 kB	58 kB	185.199.110.153
www.gemini.com	67446	1994-02-14	2015-01-27	2024-04-29	988 B	10 kB	143.204.55.100
mainnet.infura.io	19321	2016-04-15	2016-08-23	2024-05-08	4.7 kB	2.9 kB	44.217.56.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet
2024-05-08	medium	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	Crypto/Wallet

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/	3.0 kB	2023-04-19	2024-05-08
Pretty URL n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/ IP 212.71.124.188 ASN #24951 EveryWare AG Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-19 20:47:24 Last Seen2024-05-08 19:12:20 Times Seen7 Hash 744e3a975230645b0357a64e59724ff3 6c21df16e68b2d8ea81a7211372eea7eb7ec73a9 8f7bed824c5f142a43e7fc7a3e1e9e8dbb79944c48a7b6b0c023aca4c8cf4f94 Loading...

	unknown	1.2 kB	2023-04-13	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 06:55:25 Last Seen2024-05-19 08:39:02 Times Seen624 Hash 8fa8e73c03ccc7442389e683956f520b 88bc476a7e72dbe8d1c8015c020743ed0db5b349 36f0055ed3688c8bde77f94d9b2cd3ea80a393087946c85541753447a2356ecf Loading...

	unknown	1.4 kB	2023-04-13	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-13 06:55:26 Last Seen2024-05-19 08:39:02 Times Seen628 Hash 3c6c44d510f1c570bc75408cd9d34acc 1f30e3eb128014facddd10367765a5b562741c17 4b3b599147e1ab82a96b220d5d1f1df37ec7babb04b707e58cbeaffc99506f16 Loading...

	unknown	31 kB	2023-04-06	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-06 22:00:16 Last Seen2024-05-19 08:39:02 Times Seen617 Hash 210b269f4defa2ec028e1f3101e8a8e9 33f126e12c70b65c9d881c535693be1234ad76c1 72a857efb2b1acae4d6c595d8524ed1161b0fd72f26d580ea765cbf6e9bf6627 Loading...

	unknown	22 kB	2023-04-19	2024-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 20:47:24 Last Seen2024-05-09 00:48:59 Times Seen56 Hash e84374fa6380b1531dee07af35677047 04a926a12e6e937b436d9804b8e9fda4719a89bf 87724214d9357c2d6faf318aa94324d10ffed204daeff75bc0a7d8a66d39916c Loading...

	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/4.806c3d88.chunk.js	2.2 MB	2023-03-12	2024-05-08
Pretty URL n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/4.806c3d88.chunk.js IP 212.71.124.188 ASN #24951 EveryWare AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 08:58:16 Last Seen2024-05-08 19:12:20 Times Seen17 Hash 2189a790b4a056249fbc977d69991928 6dcc79f448d2e2203a36b2e449f76d3704e51e72 8cd0ad8856e00db507c48270b21ea1ea2ae5d9ad4c373a2bd111cc792ce9da1e Loading...

	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/main.b50380e6.chunk.js	696 kB	2023-03-08	2024-05-08
Pretty URL n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/main.b50380e6.chunk.js IP 212.71.124.188 ASN #24951 EveryWare AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:22:53 Last Seen2024-05-08 19:12:20 Times Seen18 Hash 2a74e58a16e82e1497487c91c415717a 9677c54dd235f5ef4170ba36aa3a3869116d1440 1351c88f03be1a198751d43b070443667c701e0353cfee7d41b0e4578e1d927e Loading...

	unknown	18 kB	2023-04-19	2024-05-09
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-19 20:47:24 Last Seen2024-05-09 00:48:59 Times Seen56 Hash 24a1aeae70d272aafd40bef37a4e2220 040bbaa19144ccd321a03f1516c97cf6a3a8a800 7819da99222aab6513a029a5dff810b373344e383d5265615a5f2d1babab612c Loading...

	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/sandbox%20eval%20code	147 B	2023-04-11	2024-05-20
Pretty URL n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 01:09:59 Times Seen350882 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-20
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-20 01:10:00 Times Seen350367 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/17.59933f10.chunk.js	35 kB	2023-03-07	2024-05-08
Pretty URL n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/17.59933f10.chunk.js IP 212.71.124.188 ASN #24951 EveryWare AG Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:46 Last Seen2024-05-08 19:12:20 Times Seen49 Hash fd1fb474b588af440b1d2a541eeede95 a77f6fae71c1222e12ec4c6308d5d9c7825a1ece 6f43c52aa53ba4e4decb76a0887e4ee133308f66e94f1c106660ddf07e692dbd Loading...

HTTP Transactions (30)

URL IP Response Size

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/

212.71.124.188

200 OK

2.4 kB

URL User Request GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
HTML document, ASCII text, with very long lines (4591), with no line terminators
Size
2.4 kB (2368 bytes)
Hash
95f3102dbd4fddaa2e0a6d587081ca72
245557aeec467ca11db504d98965138dfffd783f
d1a9615bfcdc8034ead5081c74e9fda1499ce263c80f95707a94f7247816a279

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET / HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:50 GMT
content-type: text/html
content-length: 2368
content-encoding: gzip
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 62f2ee27-1dab-db5b-85fc-b360716930ec
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/css/4.2efb9cd0.chunk.css

212.71.124.188

200 OK

911 B

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/css/4.2efb9cd0.chunk.css
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
ASCII text, with very long lines (5282)
Size
911 B (911 bytes)
Hash
52c0faf9d06bef555ce68e7089b597d2
ea1ef3f5d4fefe6836d10077f23c07ed59fa7d48
f73b7523c0040fbc8fd199e1d8ed6b525f91a39958c398f90b566630adeb8ff9

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/css/4.2efb9cd0.chunk.css HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:51 GMT
content-type: text/css
content-length: 911
content-encoding: gzip
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 520b6a4f-c97b-e24e-a6c8-ac48a8ae0b4b
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/media/Inter-roman.var.b65534c5.woff2

212.71.124.188

200 OK

228 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/media/Inter-roman.var.b65534c5.woff2
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
Web Open Font Format (Version 2), TrueType, length 227688, version 1.0
Size
228 kB (227688 bytes)
Hash
6718c2681ffa562474407218ac0b08ae
03d67f11d4c6bcdd6182f0bcebb26d11e8c13dd3
d2d2d11234d0d74c0ed3e9727ef07ac8422cbd5b356296b0f87f679c9f74ce83

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/media/Inter-roman.var.b65534c5.woff2 HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/css/4.2efb9cd0.chunk.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:51 GMT
content-type: font/woff2
content-length: 227688
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 738a4040-998b-4ffb-e720-e89e349b7e22
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/4.806c3d88.chunk.js

212.71.124.188

200 OK

648 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/4.806c3d88.chunk.js
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65462)
Size
648 kB (647469 bytes)
Hash
2189a790b4a056249fbc977d69991928
6dcc79f448d2e2203a36b2e449f76d3704e51e72
8cd0ad8856e00db507c48270b21ea1ea2ae5d9ad4c373a2bd111cc792ce9da1e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/js/4.806c3d88.chunk.js HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:51 GMT
content-type: application/javascript
content-length: 647469
content-encoding: gzip
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 8d38b930-6d3b-8a4f-0b64-f405e67e0849
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/main.b50380e6.chunk.js

212.71.124.188

200 OK

184 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/main.b50380e6.chunk.js
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
184 kB (183530 bytes)
Hash
2a74e58a16e82e1497487c91c415717a
9677c54dd235f5ef4170ba36aa3a3869116d1440
1351c88f03be1a198751d43b070443667c701e0353cfee7d41b0e4578e1d927e

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/js/main.b50380e6.chunk.js HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:51 GMT
content-type: application/javascript
content-length: 183530
content-encoding: gzip
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: ae2c69cd-f39a-3f10-bbb7-6ee26274b0c8
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/17.59933f10.chunk.js

212.71.124.188

200 OK

8.4 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/js/17.59933f10.chunk.js
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
ASCII text, with very long lines (34925)
Size
8.4 kB (8371 bytes)
Hash
fd1fb474b588af440b1d2a541eeede95
a77f6fae71c1222e12ec4c6308d5d9c7825a1ece
6f43c52aa53ba4e4decb76a0887e4ee133308f66e94f1c106660ddf07e692dbd

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/js/17.59933f10.chunk.js HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:52 GMT
content-type: application/javascript
content-length: 8371
content-encoding: gzip
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 9fb8fdc9-0580-0f5c-9533-4152dfb3752e
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/favicon.png

212.71.124.188

200 OK

2.7 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/favicon.png
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
PNG image data, 128 x 128, 8-bit colormap, non-interlaced
Size
2.7 kB (2668 bytes)
Hash
e131d513b9331f61ff8849ba30fbd46d
844e7fe85719dd5c9af6ce5065b84dfdc71bec07
5a1e84a589476959d369ebd49d985edc282f2e3798b610f4c48dad3528801287

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /favicon.png HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:52 GMT
content-type: image/png
content-length: 2668
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: bdce51da-567c-76a8-1c83-a1a32f1ae819
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
81b17a7ecc4b3c75b83aa7253577676e
e75f02d1f2f71e6095bd5378cb5d41aab504270c
7e3aa1550d19861bb1639ab989baf8bc877cf98b6eb6e7ba0f969a1200e5590f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 08 May 2024 17:11:53 GMT
Last-Modified: Wed, 08 May 2024 15:41:34 GMT
Server: ECAcc (ska/F6CC)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BKA2Dpb9HQLXd0i3DBd1NvICYgfP11v3a52fc7Vk0IrrMeUo4WEhTA==
Age: 5419

raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json

185.199.109.133

200 OK

5.5 kB

URL GET HTTP/2
raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JSON text data
Size
5.5 kB (5483 bytes)
Hash
7d4f56d350ef214f65e7e81014c00644
93e222f46e07b9f47f7d722e2ae5f0a6b2724445
e0b02368d0e9adf89fb7ddffa630d971425fae4d728591c33d08ce9eeedcc4aa

HTTP Headers

GET /SetProtocol/uniswap-tokenlist/main/set.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"5149ee7dba1b66d008a59843d67e4fa7fa504817cbc243f490264d98abaa7d0e"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 9EC4:3299A9:246383:25D1AF:663BB259
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715188313.020214,VS0,VE122
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 0e44f6097d8e83ab7a764ffe1f8c2152b5700bd8
expires: Wed, 08 May 2024 17:16:53 GMT
source-age: 0
content-length: 5483
X-Firefox-Spdy: h2

static.optimism.io/optimism.tokenlist.json

185.199.110.153

200 OK

28 kB

URL GET HTTP/2
static.optimism.io/optimism.tokenlist.json
IP
185.199.110.153:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectstatic.optimism.io
FingerprintDC:E5:8F:61:5D:F5:AF:69:76:8B:65:52:17:E2:ED:B3:81:96:00:F7
ValiditySun, 10 Mar 2024 11:41:21 GMT - Sat, 08 Jun 2024 11:41:20 GMT

File type
JSON text data
Size
28 kB (28196 bytes)
Hash
f68504113aedcf54d0eccacd0c1c69ca
fe124c8f30c596824f67220b7d4c2bc25d35a1bc
6b5b0454cdd210e432acde6cc34cad0e2d1ad2564b46a07afc51aea6ffb5531d

HTTP Headers

GET /optimism.tokenlist.json HTTP/1.1
Host: static.optimism.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Wed, 08 May 2024 16:54:06 GMT
access-control-allow-origin: *
etag: W/"663bae2e-3c15b"
expires: Wed, 08 May 2024 17:15:43 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 210A:2D639E:2ED196:2FEB47:663BB258
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410028-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715188313.025835,VS0,VE121
vary: Accept-Encoding
x-fastly-request-id: 750bceb155f8590d69bf261925367d6c73c0f310
content-length: 28196
X-Firefox-Spdy: h2

raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json

185.199.109.133

200 OK

3.8 kB

URL GET HTTP/2
raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JSON text data
Size
3.8 kB (3844 bytes)
Hash
4fc8ff11a1aacaa8d673690ce171efa6
fba1d5afc24cd1cfb1130919fcb76e6592ef8340
414648afaa14fe736635bd028b45a87bcb3ea8ba078fead51b5ef0f320b06997

HTTP Headers

GET /compound-finance/token-list/master/compound.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"e0f4798cabc5703161b931b5d659e3f78169d6818f71ec1ffb7b58d0ff42feec"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 963A:38ECB3:2330EF:24A122:663BB258
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-cache-hits: 0
x-timer: S1715188313.012279,VS0,VE147
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 9473bdae37dbed60fd6a661619b6ad8dde52f2fc
expires: Wed, 08 May 2024 17:16:53 GMT
source-age: 0
content-length: 3844
X-Firefox-Spdy: h2

raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json

185.199.109.133

200 OK

3.8 kB

URL GET HTTP/2
raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JSON text data
Size
3.8 kB (3844 bytes)
Hash
4fc8ff11a1aacaa8d673690ce171efa6
fba1d5afc24cd1cfb1130919fcb76e6592ef8340
414648afaa14fe736635bd028b45a87bcb3ea8ba078fead51b5ef0f320b06997

HTTP Headers

GET /compound-finance/token-list/master/compound.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"e0f4798cabc5703161b931b5d659e3f78169d6818f71ec1ffb7b58d0ff42feec"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 963A:38ECB3:2330EF:24A122:663BB258
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1715188313.355242,VS0,VE1
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 8cd9f5a92b96b3bda7a48440a7846d269ab114a8
expires: Wed, 08 May 2024 17:16:53 GMT
source-age: 0
content-length: 3844
X-Firefox-Spdy: h2

raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json

185.199.109.133

200 OK

5.5 kB

URL GET HTTP/2
raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json
IP
185.199.109.133:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
JSON text data
Size
5.5 kB (5483 bytes)
Hash
7d4f56d350ef214f65e7e81014c00644
93e222f46e07b9f47f7d722e2ae5f0a6b2724445
e0b02368d0e9adf89fb7ddffa630d971425fae4d728591c33d08ce9eeedcc4aa

HTTP Headers

GET /SetProtocol/uniswap-tokenlist/main/set.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"5149ee7dba1b66d008a59843d67e4fa7fa504817cbc243f490264d98abaa7d0e"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 9EC4:3299A9:246383:25D1AF:663BB259
content-encoding: gzip
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1715188313.361931,VS0,VE1
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 863eb3ebdcbebe68db7aa895ccad5a1814e86a84
expires: Wed, 08 May 2024 17:16:53 GMT
source-age: 0
content-length: 5483
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/media/logo.4a50b488.svg

212.71.124.188

200 OK

8.1 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/static/media/logo.4a50b488.svg
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
SVG Scalable Vector Graphics image
Size
8.1 kB (8119 bytes)
Hash
742edb097a191c4a04a0d63d935b117d
5b28e49d770074a217c98e1d5a766677aea8c6bc
f34534c13f4659b8c81936b849eb0d3211ffc5d7de0d277fc2fe2328193bad89

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /static/media/logo.4a50b488.svg HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:53 GMT
content-type: image/svg+xml
content-length: 8119
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 74001339-9466-ee26-90ac-f9d332c63e57
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

static.optimism.io/optimism.tokenlist.json

185.199.110.153

200 OK

28 kB

URL GET HTTP/2
static.optimism.io/optimism.tokenlist.json
IP
185.199.110.153:443
ASN
#54113 FASTLY

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectstatic.optimism.io
FingerprintDC:E5:8F:61:5D:F5:AF:69:76:8B:65:52:17:E2:ED:B3:81:96:00:F7
ValiditySun, 10 Mar 2024 11:41:21 GMT - Sat, 08 Jun 2024 11:41:20 GMT

File type
JSON text data
Size
28 kB (28196 bytes)
Hash
f68504113aedcf54d0eccacd0c1c69ca
fe124c8f30c596824f67220b7d4c2bc25d35a1bc
6b5b0454cdd210e432acde6cc34cad0e2d1ad2564b46a07afc51aea6ffb5531d

HTTP Headers

GET /optimism.tokenlist.json HTTP/1.1
Host: static.optimism.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
x-origin-cache: HIT
last-modified: Wed, 08 May 2024 16:54:06 GMT
access-control-allow-origin: *
etag: W/"663bae2e-3c15b"
expires: Wed, 08 May 2024 17:15:43 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 210A:2D639E:2ED196:2FEB47:663BB258
accept-ranges: bytes
date: Wed, 08 May 2024 17:11:53 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-hel1410028-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1715188313.380575,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 19e906c7bee4340f3139cb723bffa49823f3e995
content-length: 28196
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

143.204.55.100

200 OK

4.3 kB

URL GET HTTP/2
www.gemini.com/uniswap/manifest.json
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.gemini.com
Fingerprint6B:29:B6:42:24:08:08:01:D6:F6:A7:C6:FE:56:2F:B5:B5:03:4B:7B
ValiditySun, 05 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
4.3 kB (4337 bytes)
Hash
b034284ab9535168717532552b008c0d
7425578661330afb6eb2e0d314db131588c56312
7a6d672068899e0d7095b09a6285720fee23d08893e89f282ba6c755f2909dcd

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
content-length: 4337
accept-ranges: bytes
access-control-allow-origin: *
cache-status: "Netlify Edge"; hit
content-encoding: gzip
netlify-vary: cookie=__next_preview_data:presence|__prerender_bypass:presence
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-nf-request-id: 01HX52RNDDR2YEM0TZ790EMQF2
x-xss-protection: 1; mode=block
cache-control: public,max-age=0,must-revalidate
date: Wed, 08 May 2024 17:11:53 GMT
etag: "f503faddf44b41be0ff10dfddbf8df6a-ssl-df"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6pchjPZqI5c6SNz57OF8BGYvCTWcfe-E3vKccB3Xp5q0ZeGzkT9iig==
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

143.204.55.100

200 OK

4.3 kB

URL GET HTTP/2
www.gemini.com/uniswap/manifest.json
IP
143.204.55.100:443
ASN
#16509 AMAZON-02

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.gemini.com
Fingerprint6B:29:B6:42:24:08:08:01:D6:F6:A7:C6:FE:56:2F:B5:B5:03:4B:7B
ValiditySun, 05 Nov 2023 00:00:00 GMT - Tue, 03 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
4.3 kB (4337 bytes)
Hash
b034284ab9535168717532552b008c0d
7425578661330afb6eb2e0d314db131588c56312
7a6d672068899e0d7095b09a6285720fee23d08893e89f282ba6c755f2909dcd

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 4337
accept-ranges: bytes
access-control-allow-origin: *
cache-status: "Netlify Edge"; hit
content-encoding: gzip
netlify-vary: cookie=__next_preview_data:presence|__prerender_bypass:presence
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-nf-request-id: 01HX52RNDDR2YEM0TZ790EMQF2
x-xss-protection: 1; mode=block
cache-control: public,max-age=0,must-revalidate
date: Wed, 08 May 2024 17:11:53 GMT
etag: "f503faddf44b41be0ff10dfddbf8df6a-ssl-df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jgrDUAC7jP-Wu9TmChP83-4x0-jgn_nfejtkXgwDdkLDIvN5QncxYA==
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

0 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

90 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
content-type: application/json
Content-Length: 1006
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 17:11:53 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

0 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

90 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
content-type: application/json
Content-Length: 1072
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 17:11:53 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/images/512x512_App_Icon.png

212.71.124.188

200 OK

387 kB

URL GET HTTP/2
n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/images/512x512_App_Icon.png
IP
212.71.124.188:443
ASN
#24951 EveryWare AG

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerLet's Encrypt
Subjectboundary.dfinity.network
FingerprintCF:9C:29:B6:12:B8:8A:05:1C:5C:7F:B6:88:DD:92:E3:04:F0:AE:D0
ValidityFri, 08 Mar 2024 15:04:24 GMT - Thu, 06 Jun 2024 15:04:23 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
387 kB (386611 bytes)
Hash
87e1ff3cd8b01195164e4a54807468a0
c00846cd185ce838814895d9db4e10cfa5339996
814824e1f29a34016526c9a1005799fafd1c0cfdd2a456e7485743a83b37b949

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet

HTTP Headers

GET /images/512x512_App_Icon.png HTTP/1.1
Host: n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 17:11:53 GMT
content-type: image/png
content-length: 386611
x-ic-streaming-response: false
x-ic-canister-id: n3dcj-maaaa-aaaad-qal3q-cai
x-request-id: 31ce5baa-ab76-a0ff-7e46-310b66dcfca7
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie,X-Ic-Canister-Id
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range,X-Request-Id,X-Ic-Canister-Id
access-control-max-age: 600
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

0 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

90 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
content-type: application/json
Content-Length: 66
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 17:11:54 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

0 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 17:12:08 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

44.217.56.73

200 OK

90 B

URL OPTIONS HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
44.217.56.73:443
ASN
#14618 AMAZON-AES

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerAmazon
Subject*.infura.io
FingerprintB2:26:99:27:1E:F7:F1:16:75:FF:75:DA:E9:8A:5E:7A:F1:CD:CC:72
ValidityWed, 29 Nov 2023 00:00:00 GMT - Fri, 27 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
content-type: application/json
Content-Length: 66
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Wed, 08 May 2024 17:12:08 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

tokens.coingecko.com/uniswap/all.json

104.21.74.223

200 OK

1.1 MB

URL GET HTTP/2
tokens.coingecko.com/uniswap/all.json
IP
104.21.74.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerGoogle Trust Services LLC
Subjecttokens.coingecko.com
FingerprintDD:A2:A5:8F:98:90:F3:B3:6D:E4:78:80:6E:2A:2D:8F:70:10:0C:12
ValidityThu, 14 Mar 2024 13:41:34 GMT - Wed, 12 Jun 2024 13:41:33 GMT

File type

Size
1.1 MB (1099725 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/all.json HTTP/1.1
Host: tokens.coingecko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-type: application/json; charset=UTF-8
x-amz-id-2: UX+rT4pGEYJwGNfL+7tG/Ku4taalRLoSOtDqp80qq188S87k2UmwuK+deyuYRXFNvhzKdgvZwIU=
x-amz-request-id: 9JY1PT3VC6RZEXH2
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 08 May 2024 17:02:44 GMT
etag: W/"0b11778a37362e7458560c8acc697213"
x-amz-server-side-encryption: AES256
x-amz-version-id: YQN.jAuvKZzsF.yCkAoWabh_aqq3cuHt
cache-control: max-age=1800
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a5f0EMd6KNQquZ5H%2FdaOrk0P1uXR2C8rz8%2FBoA7uz69D7pSMLcH%2FRJYbUIBQtKgH%2FzScuLUc8vEdsJsECwPLea7yFrbB2xlbz6XXWZnO56JDm%2F8qXMGD9ZNungY8ev7RDnOv0ZBWcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b124e8c1e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

app.tryroll.com/tokens.json

104.18.11.70

200 OK

16 kB

URL GET HTTP/2
app.tryroll.com/tokens.json
IP
104.18.11.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerCloudflare, Inc.
Subjecttryroll.com
Fingerprint11:DC:79:B2:33:2B:71:1F:B2:A8:D8:DE:69:51:AD:2A:A3:CC:5A:B5
ValiditySat, 27 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
16 kB (16054 bytes)
Hash
104f5b7f1d6822ffbaada8722ac32ccd
38014137db553f0486d91406a5e4bc96368f1c7a
d0c2be4e059bb158e7576b4f4ada95cc4ffc517bd427aa992535acbb5ab80cd2

HTTP Headers

GET /tokens.json HTTP/1.1
Host: app.tryroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"3eb6-OAFBN9tVPwSG2RQGpeS8ljaPHHo"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-expose-headers: Authorization
cf-cache-status: MISS
expires: Wed, 08 May 2024 21:11:53 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b124c2aa61bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

tokens.coingecko.com/uniswap/all.json

104.21.74.223

200 OK

1.1 MB

URL GET HTTP/2
tokens.coingecko.com/uniswap/all.json
IP
104.21.74.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerGoogle Trust Services LLC
Subjecttokens.coingecko.com
FingerprintDD:A2:A5:8F:98:90:F3:B3:6D:E4:78:80:6E:2A:2D:8F:70:10:0C:12
ValidityThu, 14 Mar 2024 13:41:34 GMT - Wed, 12 Jun 2024 13:41:33 GMT

File type

Size
1.1 MB (1099725 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/all.json HTTP/1.1
Host: tokens.coingecko.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:54 GMT
content-type: application/json; charset=UTF-8
x-amz-id-2: UX+rT4pGEYJwGNfL+7tG/Ku4taalRLoSOtDqp80qq188S87k2UmwuK+deyuYRXFNvhzKdgvZwIU=
x-amz-request-id: 9JY1PT3VC6RZEXH2
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 08 May 2024 17:02:44 GMT
etag: W/"0b11778a37362e7458560c8acc697213"
x-amz-server-side-encryption: AES256
x-amz-version-id: YQN.jAuvKZzsF.yCkAoWabh_aqq3cuHt
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FzSoZWgmhqxI3cgPQQaVEb08vI%2F3Y3sYTZ%2B6KiZsXRAZO9WuK3BCZABOzS4K66jjgzTsFH%2BdKKxEKiXoKjOLm46mKnu2STLRB%2B0hEMyigxcv3AsPmy0R42Mgr8oyTHWK1G2nZ7Prgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880b124c2fd756a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

app.tryroll.com/tokens.json

104.18.11.70

200 OK

16 kB

URL GET HTTP/2
app.tryroll.com/tokens.json
IP
104.18.11.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Certificate
IssuerCloudflare, Inc.
Subjecttryroll.com
Fingerprint11:DC:79:B2:33:2B:71:1F:B2:A8:D8:DE:69:51:AD:2A:A3:CC:5A:B5
ValiditySat, 27 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
16 kB (16054 bytes)
Hash
104f5b7f1d6822ffbaada8722ac32ccd
38014137db553f0486d91406a5e4bc96368f1c7a
d0c2be4e059bb158e7576b4f4ada95cc4ffc517bd427aa992535acbb5ab80cd2

HTTP Headers

GET /tokens.json HTTP/1.1
Host: app.tryroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app/
Origin: https://n3dcj-maaaa-aaaad-qal3q-cai.raw.ic0.app
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 17:11:53 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"3eb6-OAFBN9tVPwSG2RQGpeS8ljaPHHo"
strict-transport-security: max-age=15724800; includeSubDomains
access-control-expose-headers: Authorization
cf-cache-status: HIT
age: 0
expires: Wed, 08 May 2024 21:11:53 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 880b124e7d601bfe-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations