Report - ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/

Report Overview

Submitted URL
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
IP
193.118.59.140
ASN
#21859 ZEN-ECN
Submitted
2023-02-07 13:31:58
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.215.56.181
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-13T08:10:39Z	350 B	984 B	54.230.80.227
api.uniswap.org	429987	2021-09-18T21:15:47Z	2023-03-13T12:07:42Z	554 B	545 B	54.230.111.83
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	407 B	78 kB	172.217.21.168
api.coinbase.com	13452	2015-06-05T12:29:43Z	2023-03-13T09:20:56Z	459 B	24 kB	104.18.4.43
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	826 B	470 B	216.239.32.36
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.8 kB	4.9 kB	54.230.245.39
tokenlist.arbitrum.io	unknown	2022-06-01T10:11:58Z	2023-03-13T06:49:45Z	1.9 kB	160 kB	35.92.15.165
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.0 kB	2.1 kB	142.250.74.131
celo-org.github.io	unknown	2022-07-16T05:35:57Z	2023-03-13T12:07:46Z	466 B	4.3 kB	185.199.108.153
raw.githubusercontent.com	35802	2014-03-01T08:08:08Z	2023-03-13T05:09:05Z	1.5 kB	14 kB	185.199.110.133
extendedtokens.uniswap.org	unknown	2022-08-31T16:49:23Z	2023-03-13T07:05:29Z	2.7 kB	214 kB	104.18.22.54
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	72 kB	34.120.237.76
www.gemini.com	67446	2015-01-27T11:25:57Z	2023-03-13T06:49:45Z	2.5 kB	7.0 kB	54.230.111.117
tokens.uniswap.org	404844	2020-08-15T11:00:19Z	2023-03-13T06:49:45Z	2.7 kB	145 kB	104.17.96.13
bridge.arbitrum.io	295578	2020-11-04T20:09:54Z	2023-03-13T06:49:45Z	4.2 kB	86 kB	76.76.21.142
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
api.coinmarketcap.com	22085	2015-03-06T17:05:54Z	2023-03-13T07:27:34Z	4.3 kB	188 kB	54.230.111.46
tokens.coingecko.com	143111	2020-11-25T11:43:42Z	2023-03-13T06:49:45Z	449 B	1.1 kB	172.67.164.11
app.tryroll.com	305318	2019-05-29T03:07:10Z	2023-03-13T06:49:45Z	439 B	525 B	104.18.11.70
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app	unknown	2022-12-19T13:35:13Z	2023-02-07T04:34:53Z	14 kB	2.6 MB	193.118.59.140
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.4 kB	93.184.220.29
static.optimism.io	292168	2021-07-07T18:53:36Z	2023-03-13T06:49:45Z	454 B	13 kB	185.199.109.153
unsupportedtokens.uniswap.org	unknown	2022-08-31T16:50:07Z	2023-03-13T07:05:30Z	1.8 kB	139 kB	104.18.23.54
mainnet.infura.io	19321	2016-08-23T17:27:48Z	2023-03-13T07:42:34Z	2.8 kB	1.8 kB	52.202.226.109

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-07 13:32:35	low	Client IP	Internal IP	ET HUNTING [TW] Internet Computer Domain Observed
2023-02-07 13:32:35	low	Client IP	Internal IP	ET HUNTING [TW] Internet Computer Domain Observed
2023-02-07 13:32:36	low	Client IP	193.118.59.140	ET HUNTING [TW] Internet Computer HTTP Request Observed

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet
2023-02-06	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Crypto/Wallet

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/4.b1e23b7c.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/fonts/Inter-roman.var.woff2	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/main.83546463.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/25.a2bc9e5a.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/16.481ccb7d.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/10.fcd211a5.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/1.94ff0b95.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/7.e81f5bbd.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/0.04e925c4.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/service-worker.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/12.f357624d.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/5.95a29d57.chunk.js	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/index.html	Phishing
2023-02-07	medium	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 22:10:39 Times Seen37347455 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/	5.5 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/ IP 193.118.59.140 ASN #21859 ZEN-ECN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 5fb061be5707fc4ff60de573ba60a518 b265cd62df361871658afb1f9ff6e021650108be 4247c001b622f343112e15fe07bc07af249b64cf3cd702e886d40e585403c650 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/25.a2bc9e5a.chunk.js	44 kB	2023-03-08	2023-03-26
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/25.a2bc9e5a.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:50 Last Seen2023-03-26 06:47:02 Times Seen2 Hash 165970aa04934fa485ad3bbfd8f0fffd 041051bc5c8bde3874afbd42bec951bbaf7a4817 a2672ad8304f84b66ec09f1a58c81663e0f514a482df11c33a049068154dfd36 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/10.fcd211a5.chunk.js	12 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/10.fcd211a5.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 799eae7eab55a9121b63cf4804f48148 f1b3d287291f21e3b70e2244866b20bb5e2c00ae e0cdebfeec343e6354e264ed251d8054be697015d6fc3d84df08ae2f83429371 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/7.e81f5bbd.chunk.js	35 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/7.e81f5bbd.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash e7eacb7e57e51af949107effba89d04d b0d15daa5c0283124d69246c42e51ac4f159fdea 8e1fbee10672e6d3276ff4acd2a06ea9ea25f698b6269fb9354a75b4d20d7a04 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/5.95a29d57.chunk.js	147 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/5.95a29d57.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 6c0b9acbbc93962dcb6c28f8793f085a f8947f8aa3f33db8c0c7faa99d468d5f48d69bc7 56b58d6d4a6c9e81186ef737aaaf22e0574907cb9bfe7aa0eca34ed35baa9e5b Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/main.83546463.chunk.js	1.5 MB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/main.83546463.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 4e68a8a5bcee762e1689475512bc3e6b a3cbd2413f080b44a9849e993265d485fdcc7e1a da6c9fb9d329f379c394249c190c915cb4a6b88e13f2bc48dc6c62c1f51b061e Loading...

	www.googletagmanager.com/gtag/js?id=G-KDP9B6W4H8	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-KDP9B6W4H8 IP 172.217.21.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 31ef03f3aaf2985a1432f785b00dac6c 658d9278876fc4f311b0ef54713c46b1d417d6b2 6684618605f4270f0577b3d1ec8a067bce444b2a8c8ecf00c4a04248ca9e71c1 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/16.481ccb7d.chunk.js	11 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/16.481ccb7d.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash e2ef61874a8982ef6a9a79177ebe36e1 d1cf0a4a1732cfa825b4799c0d05f6869f433059 f350cb7cf999fbae620de922e430e92eff9d757f770a16664d973e02e03b5c1d Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/1.94ff0b95.chunk.js	591 B	2023-03-08	2023-03-26
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/1.94ff0b95.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:30:50 Last Seen2023-03-26 06:47:02 Times Seen2 Hash 011f77f18efbdd2f89a78f7d4b99ee41 2ebccf78b731d91fc80d4052b7a5f5661d843138 a550d2eade4073b11f98d1985bb29f20c3ae6e251cec286ead4387d716c80fa4 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/0.04e925c4.chunk.js	9.6 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/0.04e925c4.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash 00459bd62def83d083a13918004e892f c4e254e5e9cdc71fb37cefa515388f0c4330174a 3c969edac20301ea3886dab715c96aeb87bafa1e0480a655b6044f0a8c6cc068 Loading...

	ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/12.f357624d.chunk.js	40 kB	2023-03-13	2023-03-13
Pretty URL ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/12.f357624d.chunk.js IP 147.75.33.214 ASN #54825 PACKET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:04:21 Last Seen2023-03-13 19:04:21 Times Seen1 Hash dd8feb138a02c7ea497581546015b8de 92c97e00357ea23477accb1e6d6cca16e5c98978 40b8e5b1641534615d0b201ef1bcc4cc2b42e31333508afc69f8d8f7d6a34bf8 Loading...

HTTP Transactions (114)

URL IP Response Size

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/

193.118.59.140

301 Moved Permanently

169 B

URL HTTP/1.1
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
IP
193.118.59.140:0
ASN
#21859 ZEN-ECN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
8c2170ef3ddebf996718575917956e9c
618ab5fab7445b7797272607a22c0d307465857f
31976ec4fe4abdf91d242f8bacfc9f6cf16acc46d13d0de6e32a2da88076cc55

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

NIDS	Severity	Alert
suricata	low	ET HUNTING [TW] Internet Computer HTTP Request Observed

HTTP Headers

GET / HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.21.3
Date: Tue, 07 Feb 2023 13:31:46 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7412
Expires: Tue, 07 Feb 2023 15:35:18 GMT
Date: Tue, 07 Feb 2023 13:31:46 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18576
Expires: Tue, 07 Feb 2023 18:41:22 GMT
Date: Tue, 07 Feb 2023 13:31:46 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 12:34:08 GMT
content-type: application/json
age: 3458
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15133
Expires: Tue, 07 Feb 2023 17:43:59 GMT
Date: Tue, 07 Feb 2023 13:31:46 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 4rYvqkj3uT4xsp+AdLG7ww09dwy/yd3z5OLgp8j25TiOoyJySKeNQRv6/Cx7aAuqd3SHMMJwFcQ=
x-amz-request-id: 5JE294XFDKWYA9R0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 12:45:34 GMT
age: 2772
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 13:31:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/4.b1e23b7c.chunk.js

147.75.33.214

200 OK

1.4 MB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/4.b1e23b7c.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (65462)
Size
1.4 MB (1415212 bytes)
Hash
f5246e54c31a9f25d394da5746092f71
735724c0c8b0c168bef5981a5c6c4027e3467ba0
97937aad2e22ff627fb9f85f3a12fed5f095ad6fa8ed5a50fc3ceef9f8167a1f

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/4.b1e23b7c.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:46 GMT
content-type: application/javascript
content-length: 1415212
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 13:14:52 GMT
age: 1015
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4498
Expires: Tue, 07 Feb 2023 14:46:45 GMT
Date: Tue, 07 Feb 2023 13:31:47 GMT
Connection: keep-alive

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/fonts/Inter-roman.var.woff2

147.75.33.214

200 OK

228 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/fonts/Inter-roman.var.woff2
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
Web Open Font Format (Version 2), TrueType, length 227688, version 1.0\012- data
Size
228 kB (227688 bytes)
Hash
6718c2681ffa562474407218ac0b08ae
03d67f11d4c6bcdd6182f0bcebb26d11e8c13dd3
d2d2d11234d0d74c0ed3e9727ef07ac8422cbd5b356296b0f87f679c9f74ce83

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /fonts/Inter-roman.var.woff2 HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:47 GMT
content-type: font/woff2
content-length: 227688
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.215.56.181

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.56.181:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pe7H/Eckb6HRatKYOW8MNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: M/8MxuIxsuGyx0Iiz5QfVr2IS08=

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/main.83546463.chunk.js

147.75.33.214

200 OK

363 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/main.83546463.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
363 kB (362860 bytes)
Hash
1cd76168f48f009f717fce81b1a67bc6
78b7478af44ac43dcc7f5d5a469ee3b1efc9c1f0
285301544dc4e07b525dffddbe4fecde652ccf6ba0c36166b84d53bcaee58a38

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/main.83546463.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:48 GMT
content-type: application/javascript
content-length: 362860
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-KDP9B6W4H8

172.217.21.168

200 OK

77 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-KDP9B6W4H8
IP
172.217.21.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (19467)
Size
77 kB (77072 bytes)
Hash
b191368ab6bcf0850e20abbe11846648
77da0a9663d2070acc14f5e43ae17e337c54a536
8020466f2f346da48996732034f50836d7a785a76f468be2f2ec655e2700673d

HTTP Headers

GET /gtag/js?id=G-KDP9B6W4H8 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 13:31:48 GMT
expires: Tue, 07 Feb 2023 13:31:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77072
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 07 Feb 2023 14:10:07 GMT
Date: Tue, 07 Feb 2023 13:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 07 Feb 2023 14:10:07 GMT
Date: Tue, 07 Feb 2023 13:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 07 Feb 2023 14:10:07 GMT
Date: Tue, 07 Feb 2023 13:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 07 Feb 2023 14:10:07 GMT
Date: Tue, 07 Feb 2023 13:31:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2299
Expires: Tue, 07 Feb 2023 14:10:07 GMT
Date: Tue, 07 Feb 2023 13:31:48 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12682 bytes)
Hash
59419fb1cf4689bed183d0e9a6aed782
47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a
e6009407bd61bee1ae16ec30ea5914be77c56ee65dfb30595b10a1cedc6798c9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12682
x-amzn-requestid: d858d90a-b1ca-401c-8e00-8ccd9c0a7504
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78mUEsfIAMFreg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1748e-2783de3e3de9c520246bf06e;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:43:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _D5bI_flPN8fUn6aTGqO76FRSDwwC379nkVCBptmZkALErIVFCZfpA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
age: 56189
etag: "47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12967 bytes)
Hash
8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:57:37 GMT
age: 30851
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10788 bytes)
Hash
d29e7077f69b88a0108efeb7a2efe7e9
1958f83edeb8c6b68f17cead3fb5714f44e619eb
371f02a5b36ac3e52cc6c4e78f0980107a0f92105e79ee53278089ae5ff6de93

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10788
x-amzn-requestid: 8e1c8026-1eea-4eb0-810e-7ea43ed11f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyymWEsSoAMFykg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddcaf5-20fc23b535fa86f56a34fbae;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:03:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nb86Kj6pqD3DFzCeTNtTGNXsNfHLvu4kgYq6qmhu2Ygya462lBl0lg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 05:13:55 GMT
age: 29873
etag: "1958f83edeb8c6b68f17cead3fb5714f44e619eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11205 bytes)
Hash
aa6c416b3a87ded887c9dcf7c51e5dd0
45f4ef9e68591c00669043abe96959bead8f17ae
9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
age: 56189
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4227 bytes)
Hash
eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ovhdLaEGaDSC8X0F9VamLw0KyBPWkxfYg5pssOT8NOZP4IBtNk6Gfw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:55:19 GMT
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
age: 56189
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13390 bytes)
Hash
75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: e7653b49-3160-42e3-8292-8ae32604f775
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpc8KEoPoAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da0eb4-68fd76a95ffa656318bedff6;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 07:03:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KaitXsesZ9mJducJ54ChzQGfb-2-hEN4W_QojGMKXYEji4xsjNdWCA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 09:07:41 GMT
age: 15847
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/10.a1f12a4a.chunk.css

147.75.33.214

200 OK

803 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/10.a1f12a4a.chunk.css
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (2436)
Size
803 B (803 bytes)
Hash
ec8fa874343ce334dabe716b4a3b71a0
8dad943e80cb80f53d877e464f4c14940bd0aebb
37128a41c0aac60b5fda0604f030606a5e53d61f8a11c2422f3e9bd30586a74f

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/css/10.a1f12a4a.chunk.css HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: text/css
content-length: 803
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/7.67316611.chunk.css

147.75.33.214

200 OK

312 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/7.67316611.chunk.css
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (402)
Size
312 B (312 bytes)
Hash
7efbc0832d13888ca20fac8e3a0e73af
d2f7d4eb23890647b2a99718bdba25ed90b5337c
f65b944c68e13e36420aa3ee07bbc151f1f508d53fa1da589571e4e177a9c028

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/css/7.67316611.chunk.css HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: text/css
content-length: 312
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/25.a2bc9e5a.chunk.js

147.75.33.214

200 OK

10 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/25.a2bc9e5a.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (44079)
Size
10 kB (10266 bytes)
Hash
323298662250d718a5c593899bf8f333
3b48969ed99ae13bffa90c6dcf5b26280ebd3fcd
ad064cc2cde882de5cf8fa5e011bc2a94092f65d0a96c6301c1816c5326e8780

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/25.a2bc9e5a.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 10266
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/0.ec99b6b4.chunk.css

147.75.33.214

200 OK

214 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/0.ec99b6b4.chunk.css
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text
Size
214 B (214 bytes)
Hash
c9dad3e74293a82771fdafa7f5f2e3da
501bfad484d61db719534afd87ed1acfd7e0d25b
81aed330640f833cb35f8c0a9a99bad6b559e87f2f6b507fc0f7e8c4538097d5

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/css/0.ec99b6b4.chunk.css HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: text/css
content-length: 214
content-encoding: gzip
ic-certificate: certificate=:2dn3o2R0cmVlgwGDAYMBgwJIY2FuaXN0ZXKDAYMBggRYIKmWczC8BT+k/16vuI6ac7HdtAcFE4IXYbZIf06AcyUsgwGCBFggSdyj3FLD/wEe55REh0fk5PBgCuw0D+3/oCccb9xvPTKDAYIEWCAc2bvtndtTBDFAi8ILwLo/tHtbK0/eePkAYbMTvzFgfIMBggRYIB2idCSdUr9QPoLOdVeWVwbSNP9VRaDj+HtvNgojzyzfgwGDAYMBggRYIIg89NP/MlZVPsfipQNJ+Pd42M11tDXwRyWNZBHv0Bn+gwGDAYIEWCB7nlUpDWiYh0d4JLnQrN8qbhqkZRHTOrONkUY06dX8eoMBggRYIJsJvYKATbNyYuQqh36WogcTgjIm1dqbIdHA/hLDqeHXgwGCBFggvw6KXi0/lpXeQSJ+HXLWlg/MYZG6w9uUhPMk3Je4s1ODAkoAAAAAAMAIhgEBgwGDAYMBgwJOY2VydGlmaWVkX2RhdGGCA1gg/aE2mvXLpCAPClJb8ElTts5th2jg+qlJzD8uOcQgMYeCBFggg8Vr8U3ePSjeZsaStfydl+ndmFtq1ysP5vhOio3z3LKCBFggJyv6NPvgzbyTBlVv7VQ9i2XmCC2kaDMqpXwsP/gI3yCCBFgg/hQgHawItwGsxeqsD13wtZ4ooq2cZXxFiE7YA+otFLGCBFggN7dMWqf3CZYkDRb8sdXlpq1UoNKXlAUQlRUxZhugXayCBFggtBt4B0k6TbeS8H/3nmK+CKSwdWqxrb46uQBL4MzRW6OCBFggze3tjTAZW7X1vNRRp4VnStCh3mpEOurZRTDDE5FMwxKCBFgggcZ9PL02AjfVckRnRUXooQabTWD22qvHtqgygVmRVJGCBFgg4qWsCIc/DcT6s0bV33Xto25RFDIIN1s3YoSfv1nFeuOCBFggXdzsLI0k3EjbuHXuDpl0COYS9//LioD/IujjdxeQOKGDAYIEWCDMV4EJ/F295ZHPecs/pjJs3M3Z+ojqJ1ksqIiCQ2av44MCRHRpbWWCA0nY35ielsHjoBdpc2lnbmF0dXJlWDCGF289Rlm6AROAoR6yhsuDSfs3q4ozmYHIOvohj5opv/41sFEhVBu2ihQUzM5dophqZGVsZWdhdGlvbqJpc3VibmV0X2lkWB38fRWyfflrPphzFGOirxPW5Dz0JtDLSHpxIAkVAmtjZXJ0aWZpY2F0ZVkB5dnZ96JkdHJlZYMBggRYIFUVZNWcVemWiVn6tQCJhKW7CF+VHnYfKpySN8zmQ2VcgwGDAkZzdWJuZXSDAYIEWCAKBZFpLnN1JJBfJHTkxCZg83yawvYYvwo4ClqQ7c+YIYMBggRYIECknTuRua2sF4AGYOsyXLx589Oe0fRA2+N4Xzmioyy9gwGDAlgd/H0Vsn35az6YcxRjoq8T1uQ89CbQy0h6cSAJFQKDAYMCT2NhbmlzdGVyX3Jhbmdlc4IDWBvZ2feBgkoAAAAAAMAAAAEBSgAAAAAAz///AQGDAkpwdWJsaWNfa2V5ggNYhTCBgjAdBg0rBgEEAYLcfAUDAQIBBgwrBgEEAYLcfAUDAgEDYQCQU7VC3I11gjetooDcUFhGwyewxDt+JsDub3cpzevUNjnZWcEP4aoFhiJDfX7DSpIANd/VXeT0CTe0xBngK1F+sremqn9CZENSIC+PTGfnJsqPFoq1iHZCYdvMOlyBE5OCBFgg6kO6OJIsCqjYpkV9Wiujz6y93yaWchIvHP94gKTl8q6DAkR0aW1lggNJp7+2gOTm7p8XaXNpZ25hdHVyZVgwgjcSn7VQF9GHwdvxhDLrar+FSHu/PX2G6ppbSoOH7HCGqEid73ZzvLjDSwLMD71g:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/16.481ccb7d.chunk.js

147.75.33.214

200 OK

3.3 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/16.481ccb7d.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (10878)
Size
3.3 kB (3329 bytes)
Hash
1d98f5f6208a68d51a830ee5b7a444b1
74721ff0ebc93ab52148cb6b28d2c7d465a91996
a7cd5a6d9d911ce306e28ae2e6734a2d4caf930f359876f1669727b47be014bf

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/16.481ccb7d.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 3329
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/10.fcd211a5.chunk.js

147.75.33.214

200 OK

3.9 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/10.fcd211a5.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (11920)
Size
3.9 kB (3906 bytes)
Hash
fb710aa6d40ccdfb16661af40662f2ca
3ac1e296899bee851fd1e2bf0ccbe83fce60949d
91faa1ea5deeb977da8fc9d5882f609d1622ffb590ca8ef7704c9c55e3ffc44b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/10.fcd211a5.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 3906
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/1.94ff0b95.chunk.js

147.75.33.214

200 OK

363 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/1.94ff0b95.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (546)
Size
363 B (363 bytes)
Hash
60b19ab212e7625ed0a989ae19b2818b
3cc3bc1dc0c735b6f676d2ab9bd0304d88725a3c
e73a873ef7c864d1bcc738730d5579ba74f4ddf9c550eb5bd777adec6a98c764

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/1.94ff0b95.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 363
content-encoding: gzip
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAYMBggRYIHnI2MipUZFccV+866P7HJNSJgxzG7lB5XE/dli+GAE9gwGCBFgg2Y9ipoawk0Td/gSSxuEksjBzy36WF4grMVYgm6NJwJuDAYMBgwGCBFggIUAXip+SZU10SyvKg6ete1UFuNV/H+fnZcX69C6FqoODAYIEWCD3DdzOUvqYEhSW80GDfQwYwytWzbqIVTXOsisMAX5OSoMBgwGCBFggNo/gD7ly5LyC2edTuzzLRoemBm2T4/8Pn7Et3qCI9MSDAYMCWB4vc3RhdGljL2pzLzEuOTRmZjBiOTUuY2h1bmsuanOCA1ggpVDS6t5Ac7EfmNGYW7KfIMOubiUc7ChurUOH1xbID6SCBFggS1wG0SnNfr9Q2ePiGdNfi9479pAQgkZHjzQTIzi5opiCBFggXe7bg0sC8EyzDZwBkxhsHPMUPigNAa7wsuk5mMP4vZSCBFggw+LuoAnOUBo5X+buVvkeNmMTNO7b0sl/AsRzeVPt9bmCBFggqFwr226UmfduYZSOAp269hmqGMuVEYUQ1VdepqScdmOCBFggIuNRyujokMPtufU+eJ6obnQZyFQNcLe66lpNB0ntuDc=:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/1.da6c4158.chunk.css

147.75.33.214

200 OK

88 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/css/1.da6c4158.chunk.css
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text
Size
88 B (88 bytes)
Hash
22e9aa43e8a46b13b347989cdd43d245
20f0be3bd7ebf3a2eba68943f96c7dc8fdf0b506
b9dde4d0187db79e5c7fcc7d75b489bf02f5cda1e776900017e40fb5a6db0f41

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/css/1.da6c4158.chunk.css HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: text/css
content-length: 88
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/7.e81f5bbd.chunk.js

147.75.33.214

200 OK

10 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/7.e81f5bbd.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (34561)
Size
10 kB (10167 bytes)
Hash
e21ddb2ee492a2755a50f7488e6a4135
44a6a423d9f9fbf02c4f7e79b633e20bb851d4ac
361b777b7876d246cc4fadf405202cd520ee3c852dc3eca4cfe76044adce04c4

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/7.e81f5bbd.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 10167
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/0.04e925c4.chunk.js

147.75.33.214

200 OK

3.5 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/0.04e925c4.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (9576)
Size
3.5 kB (3454 bytes)
Hash
747dacc2c8e6a4d4d3aa07ccd8dbb42d
6c8c10ced95a4e502a0b3cd166134395af5abff3
6b6260d424844e029f83076ee5745ec9e2b65225f05f6724a4270f8555755bc8

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/0.04e925c4.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/javascript
content-length: 3454
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/images/512x512_App_Icon.png

147.75.33.214

200 OK

387 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/images/512x512_App_Icon.png
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
387 kB (386611 bytes)
Hash
87e1ff3cd8b01195164e4a54807468a0
c00846cd185ce838814895d9db4e10cfa5339996
814824e1f29a34016526c9a1005799fafd1c0cfdd2a456e7485743a83b37b949

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /images/512x512_App_Icon.png HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.0.1675776758.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: image/png
content-length: 386611
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
e8fa618613237de0ea5ed413b83b3192
e02a0f16f7983c037d6941740b46b90ea172ca09
fb7a1a7624e5c67c31717104a50ff957eae500fc5581e669c622a588eaa0e459

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4328
Cache-Control: max-age=112621
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:49 GMT
Etag: "63e156cb-117"
Expires: Wed, 08 Feb 2023 20:48:50 GMT
Last-Modified: Mon, 06 Feb 2023 19:36:43 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 279

celo-org.github.io/celo-token-list/celo.tokenlist.json

185.199.108.153

200 OK

3.6 kB

URL HTTP/2
celo-org.github.io/celo-token-list/celo.tokenlist.json
IP
185.199.108.153:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
3.6 kB (3557 bytes)
Hash
708c178dd8d480375296d468928827fb
d468dfcd42fee329cb0dd519c55f09792befedbb
19290040eefd7f9db8cf43dc073dbfc6ded0eb1f18f1dd253281b0c539f12c22

HTTP Headers

GET /celo-token-list/celo.tokenlist.json HTTP/1.1
Host: celo-org.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 05 Dec 2022 21:56:47 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"638e691f-4c1e"
expires: Fri, 03 Feb 2023 15:41:10 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: D446:0A63:B2DDCE:E90408:63DD28D3
accept-ranges: bytes
date: Tue, 07 Feb 2023 13:31:49 GMT
via: 1.1 varnish
age: 58
x-served-by: cache-bma1624-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675776710.702295,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 50b53712db908a8c82e14abfdb2447a6ddfadef6
content-length: 3557
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-KDP9B6W4H8&gtm=45je3210&_p=737366426&cid=1849692250.1675776759&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675776758&sct=1&seg=0&dl=https%3A%2F%2Fish45-jyaaa-aaaag-abcda-cai.raw.ic0.app%2F&dt=Uniswap%20Interface&en=Not%20Installed&_fv=1&_nsi=1&_ss=1&_ee=1&ep.storage=none&ep.storeGac=false&ep.event_category=Service%20Worker&ep.non_interaction=true

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-KDP9B6W4H8&gtm=45je3210&_p=737366426&cid=1849692250.1675776759&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675776758&sct=1&seg=0&dl=https%3A%2F%2Fish45-jyaaa-aaaag-abcda-cai.raw.ic0.app%2F&dt=Uniswap%20Interface&en=Not%20Installed&_fv=1&_nsi=1&_ss=1&_ee=1&ep.storage=none&ep.storeGac=false&ep.event_category=Service%20Worker&ep.non_interaction=true
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-KDP9B6W4H8&gtm=45je3210&_p=737366426&cid=1849692250.1675776759&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675776758&sct=1&seg=0&dl=https%3A%2F%2Fish45-jyaaa-aaaag-abcda-cai.raw.ic0.app%2F&dt=Uniswap%20Interface&en=Not%20Installed&_fv=1&_nsi=1&_ss=1&_ee=1&ep.storage=none&ep.storeGac=false&ep.event_category=Service%20Worker&ep.non_interaction=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
date: Tue, 07 Feb 2023 13:31:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
91417021f1b12aa57aaf46a17aa8a062
733a2f6ca17408178919bac8341eb097baff1af3
98881bdd737ea5d055b655d77f6b8978532aa47f06d8d42a3a3f936413f72efc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2262
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:49 GMT
Last-Modified: Tue, 07 Feb 2023 12:54:07 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278

static.optimism.io/optimism.tokenlist.json

185.199.109.153

200 OK

12 kB

URL HTTP/2
static.optimism.io/optimism.tokenlist.json
IP
185.199.109.153:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
12 kB (11950 bytes)
Hash
aad1af47c5cf2ebac42c42cff912a1b3
93c5dc8f55af584353fe025f41f18ffad44ad247
dc5d636b7cc1d37521e3764f0f5b1a3271db40a5888c2215da13b3aa121d5003

HTTP Headers

GET /optimism.tokenlist.json HTTP/1.1
Host: static.optimism.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: GitHub.com
content-type: application/json; charset=utf-8
last-modified: Mon, 30 Jan 2023 22:36:43 GMT
access-control-allow-origin: *
etag: W/"63d8467b-19151"
expires: Tue, 07 Feb 2023 01:46:01 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 7264:C141:C29B71:CA0D34:63E1AC25
accept-ranges: bytes
date: Tue, 07 Feb 2023 13:31:49 GMT
via: 1.1 varnish
age: 202
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675776710.720166,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: e2f42b919954dfabe0ec482a4c626ff91ea246e0
content-length: 11950
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
fc6b857defa4f5c9fdc9ae6d0ce58808
a38c1ac18baf8ea568c876ed6de36dfb8901531a
e4c2848a51cc6e9431ffa2a4166a6ea73d31a073c32ef3f1ed3b48348ed18b3e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2599
Cache-Control: max-age=134645
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:49 GMT
Etag: "63e1b393-118"
Expires: Thu, 09 Feb 2023 02:55:54 GMT
Last-Modified: Tue, 07 Feb 2023 02:12:35 GMT
Server: ECS (amb/6B85)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
a00d75d9081df978c4ffc748f3e070d1
564c284443f28c959296529453b7df0731b4e9d0
e4f8e8611d0cd0421a171b0eeb1b45d2f5ed97cd637534e9384c7af8e5faa245

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3379
Cache-Control: max-age=104112
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:49 GMT
Etag: "63e13942-117"
Expires: Wed, 08 Feb 2023 18:27:01 GMT
Last-Modified: Mon, 06 Feb 2023 17:30:42 GMT
Server: ECS (amb/6BB5)
X-Cache: HIT
Content-Length: 279

raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json

185.199.110.133

200 OK

5.5 kB

URL HTTP/2
raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json
IP
185.199.110.133:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
5.5 kB (5480 bytes)
Hash
9c6b7de2cc9d7546c79a7f3b605f13b7
00fc6b595c7eb4b1f03f42993cc25c503cbe84c9
f83c0f73ef74723f674ed3dac81551df44dd2519e12e756f6678e4cd30bf378d

HTTP Headers

GET /SetProtocol/uniswap-tokenlist/main/set.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"79969d78cebdbe6daf60b7b85742855c7790193c8346171b77eada4bfbcfa9d0"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 7516:2717:1ECDCA:2EFD20:63E252C5
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Feb 2023 13:31:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675776710.652347,VS0,VE102
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: b16e632fae1837420f1401d8f0d32e60bb5bd7af
expires: Tue, 07 Feb 2023 13:36:49 GMT
source-age: 0
content-length: 5480
X-Firefox-Spdy: h2

raw.githubusercontent.com/The-Blockchain-Association/sec-notice-list/master/ba-sec-list.json

185.199.110.133

200 OK

2.5 kB

URL HTTP/2
raw.githubusercontent.com/The-Blockchain-Association/sec-notice-list/master/ba-sec-list.json
IP
185.199.110.133:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
2.5 kB (2513 bytes)
Hash
296e816aa38f6c2d69fa4afdcf6e8aab
c27d49c07948a625010bbe20f20bd5d00ff6d17e
65c365fa499e7ceba4d2bc711237133c5bd5fb900114147302e097c9d75ea0d1

HTTP Headers

GET /The-Blockchain-Association/sec-notice-list/master/ba-sec-list.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"cd2dc15eb651e55c6ea6a8afe8994f65144c05370cc94561dc54b0bc0e83772c"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: BBFE:2C3E:18E6F9:286806:63E252C5
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Feb 2023 13:31:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675776710.668709,VS0,VE93
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 081309fba2f7d60d7546a77447133490eb71275f
expires: Tue, 07 Feb 2023 13:36:49 GMT
source-age: 0
content-length: 2513
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1p5/QyUFqntHjcc

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1p5/QyUFqntHjcc
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
be2ded2e43c0bae944917a55f7ceccd2
f2a3220385ab2331765d970aed7d077e5dc80c15
f7252c4f72cf0d6668ba6abeb2b539a774fd1b38419d97d6dad949702802d9c6

HTTP Headers

POST /s/gts1p5/QyUFqntHjcc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 13:31:49 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json

185.199.110.133

200 OK

3.8 kB

URL HTTP/2
raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json
IP
185.199.110.133:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
3.8 kB (3844 bytes)
Hash
06a2a23189dc5281c3e2850dabde6250
badd1976ac9cbd7fa3e79569fdd5900a8d4d601a
6adb761bdd2c660777d60bf05e7d8eba9474527168d6147d1c1099f92db9196c

HTTP Headers

GET /compound-finance/token-list/master/compound.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"e0f4798cabc5703161b931b5d659e3f78169d6818f71ec1ffb7b58d0ff42feec"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 8F82:4B5D:3BF6E9:4E70F9:63E252C5
content-encoding: gzip
accept-ranges: bytes
date: Tue, 07 Feb 2023 13:31:49 GMT
via: 1.1 varnish
x-served-by: cache-bma1666-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675776710.639677,VS0,VE199
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 1d1b6733efbe93b13d6db4a8811df479d757bd41
expires: Tue, 07 Feb 2023 13:36:49 GMT
source-age: 0
content-length: 3844
X-Firefox-Spdy: h2

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
92f8e1c752382d4ec842d623c5c23dfc
b52835d6edbf8374b6d0701b37426a0bd4cb9bf8
84c1af44c9c4142e7bcace928b9fcd0b1c6a73bb348bab57e220906f391b664f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143242
Date: Tue, 07 Feb 2023 13:31:49 GMT
Etag: "63e1df4f-1d7"
Expires: Thu, 09 Feb 2023 05:19:11 GMT
Last-Modified: Tue, 07 Feb 2023 05:19:11 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7czmsRsVZgWse3R3ULOS5X983uAPoOcQtuPg6V2NLsD181wXpla6qA==

www.gemini.com/uniswap/manifest.json

54.230.111.117

200 OK

4.1 kB

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
54.230.111.117:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
4.1 kB (4064 bytes)
Hash
aa4d72e49649cdc5a5c525fb55263535
6e8eca921737b2637df7542856c34107f301590e
20cd236efb6d4b93ea3e755e7dbeb577526be2fad25c6c2873bb703a7898de93

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 4064
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-encoding: br
date: Tue, 07 Feb 2023 00:13:10 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-nf-request-id: 01GRP16N95CTE6HYS735Y5DGN6
x-xss-protection: 1; mode=block
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bTohN7Ndb-thqxovNHN20GnKfbEITe3MLF_5d7QJROxNqKqi-Slm3w==
age: 47920
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/favicon.png

147.75.33.214

200 OK

2.7 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/favicon.png
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2668 bytes)
Hash
e131d513b9331f61ff8849ba30fbd46d
844e7fe85719dd5c9af6ce5065b84dfdc71bec07
5a1e84a589476959d369ebd49d985edc282f2e3798b610f4c48dad3528801287

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /favicon.png HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.0.1675776758.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: image/png
content-length: 2668
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/service-worker.js

147.75.33.214

200 OK

20 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/service-worker.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (19998 bytes)
Hash
80c3ca5f115aece45e2afbdacdc202b5
bc1ec845be236b72b1f51b165c531a865265f022
507fb34e404f795080204cdf59e4f021461e44d02695b44810f71c4dac8d338a

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /service-worker.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU4Njg3JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.0.1675776758.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/javascript
content-length: 19998
content-encoding: gzip
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAYMBgwGCBFggJrv7tYYsmxyaEaN1I+bQXD55emyxFPyNeZVossKVd9CDAYIEWCCsMepagBfM/sCziTUbZTTIwl9Nc0z2n7ZDVbgcgvDhLoMBggRYIECdksoWVZCQqfKEocELszREMLHYJzj65Ie6sQ/NoROPgwGCBFgg/ZkWgiBaMNm34cYXhOxGUIZLokjSnBj/gss9u07fMl2DAYMBggRYINGFT0FKiml4ks4JMcgOlstT/2sK2/h9gLBzOdm+/ZVagwGDAlIvc2VydmljZS13b3JrZXIuanOCA1ggxxAr5Pg61gnS0Mh1/qC2pZ9QPDPto3hr+WFE64JBqM6CBFggp8yCAqJTV3+PHwmk/skXKGiEtZlqdomeDE6sYSuiMrGCBFgg258iCqDWfKUYbk43mSgd3s+D3aDqN62ydHTGNrZQOyKCBFgg0yaWpoDob1z8yPm3GLc5TeitqeeFHqNX6tnBe4zLAsCCBFggIuNRyujokMPtufU+eJ6obnQZyFQNcLe66lpNB0ntuDc=:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

304 Not Modified

0 B

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 06 Feb 2023 16:58:44 GMT
If-None-Match: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: no-store
x-cf-ipfs-cache-status: hit
set-cookie: __cf_bm=__Off0e9ChdA6nW9zrqykAfTYV0ewGKGGvmYbDnvyys-1675776710-0-AfsJieEHKoBo+5UP+MzPofE/XG0WxtzHnlOt1wJ5OB4Lev7EYB7R85RPcgEf92nF3TRud0VE6D7FH0XYn8hRzXI=; path=/; expires=Tue, 07-Feb-23 14:01:50 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
cf-ray: 795c7cf6c86eb527-OSL
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5e1f3e5abc81b76086a8468597ed33a1
c6031c9a26dfd5ce3029ba80a6aa2849922ba0a0
8e76220dc491f88ef641d325c5bc06d2cae493e4f36b41ebf488b934301fe43a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147210
Date: Tue, 07 Feb 2023 13:31:50 GMT
Etag: "63e1d6ef-1d7"
Expires: Thu, 09 Feb 2023 06:25:20 GMT
Last-Modified: Tue, 07 Feb 2023 04:43:27 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OSQH32Emkk6OYsRF_wU0iwzNOFTQOsmVWaTkb9whz25cRHv3wkYHOg==
Age: 6113

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5e1f3e5abc81b76086a8468597ed33a1
c6031c9a26dfd5ce3029ba80a6aa2849922ba0a0
8e76220dc491f88ef641d325c5bc06d2cae493e4f36b41ebf488b934301fe43a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 13:31:50 GMT
Last-Modified: Tue, 07 Feb 2023 11:57:37 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yKWomOJTyQjNeUovDpVq1rBPLEMmX5d8y0a-Knb9bbXqHOkD_KJLag==
Age: 5653

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5e1f3e5abc81b76086a8468597ed33a1
c6031c9a26dfd5ce3029ba80a6aa2849922ba0a0
8e76220dc491f88ef641d325c5bc06d2cae493e4f36b41ebf488b934301fe43a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=147289
Date: Tue, 07 Feb 2023 13:31:50 GMT
Etag: "63e1d6ef-1d7"
Expires: Thu, 09 Feb 2023 06:26:39 GMT
Last-Modified: Tue, 07 Feb 2023 04:43:27 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 3kTHbsvRD98xZkcWUennpEdQClsmjofUHNSIpuSBHdwXMaTiR0qEdw==
Age: 6192

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5e1f3e5abc81b76086a8468597ed33a1
c6031c9a26dfd5ce3029ba80a6aa2849922ba0a0
8e76220dc491f88ef641d325c5bc06d2cae493e4f36b41ebf488b934301fe43a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 13:31:50 GMT
Last-Modified: Tue, 07 Feb 2023 13:30:18 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jt6Rko_DXD150vA2Bsbr32u1ST76obUD3Y_XOZoWHPyPJMSJwNsc6w==
Age: 93

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a799d5ee7c7328bfe9b8d498ff9ab048
e7bc3ffa6534683f6d857c81ecc47568d009e5a8
f47b03c32ade91073ecc3e2ee176df65ecc5ecfa4c4d86cc1ac4a14e6de770bd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130280
Date: Tue, 07 Feb 2023 13:31:50 GMT
Etag: "63e1acae-1d7"
Expires: Thu, 09 Feb 2023 01:43:10 GMT
Last-Modified: Tue, 07 Feb 2023 01:43:10 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rqKOf08z-vhhnS13Lj-RsDotkFAbNi8i6k7ItptplDPP0YJFeHUXiw==

www.gemini.com/uniswap/manifest.json

54.230.111.117

304 Not Modified

0 B

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
54.230.111.117:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "e6702264272ea85d23df038f01604fed-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
cache-control: public, max-age=0, must-revalidate
date: Tue, 07 Feb 2023 13:31:50 GMT
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GRP16NN702NKVHP9V8A7BS08
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dOjIKsCDyv0rYReaBNlMrAXQRj3fOncuwkciYf4qActma98jQs8ETw==
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

54.230.111.117

304 Not Modified

0 B

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
54.230.111.117:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "e6702264272ea85d23df038f01604fed-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: public, max-age=0, must-revalidate
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GRP16NN702NKVHP9V8A7BS08
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qx6rTXViaRPH61mowdruPutu_H4JyWu6c1s2Qu3BAwGFFWQCVhRSRA==
X-Firefox-Spdy: h2

unsupportedtokens.uniswap.org/

104.18.23.54

200 OK

7.9 kB

URL HTTP/2
unsupportedtokens.uniswap.org/
IP
104.18.23.54:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
7.9 kB (7900 bytes)
Hash
51706aab2fea117c8d09f954689d6ac7
5d2d507be2269804430c0834bc9108d5a54436cd
05da0ab2f53bd62eb39290e2ffd71fc7f7ac3b1b60a8ded475f1189449397ecc

HTTP Headers

GET / HTTP/1.1
Host: unsupportedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYY9ttooJrg78Wx; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/unsupportedtokens.uniswap.org/
x-ipfs-root: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
x-ipfs-roots: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
content-encoding: gzip
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hfqvxTif9p63tPhlpeqAVIe4GfRiKClW4foCDHoWirMhmJ7shkIraMrdq9X2M82JN33qiBmq3cvns4mNjCTmaGsGxOTJU4pHd1iHmi7DNzmmqBEzRxZDjEqURuWFjE4Jfc0%2F0JTuiZ0xvmOjBoqT"}],"group":"cf-nel","max_age":604800}, {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=j0MtbzpDMZtB2vxpLwuqekM0EJZhQu9qSyq6ooXfmZ8-1675776710-0-AbZCODlz2TLm3Y-EQfsMNBk5lopZywjLBtVtAotposZCl_YSj6qMWQPZ3nKgerKsv9HPDKxjJfLA9bl31Vb8bM1oUb_mKl7LC20nkqiD0CD3"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; connect-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=j0MtbzpDMZtB2vxpLwuqekM0EJZhQu9qSyq6ooXfmZ8-1675776710-0-AbZCODlz2TLm3Y-EQfsMNBk5lopZywjLBtVtAotposZCl_YSj6qMWQPZ3nKgerKsv9HPDKxjJfLA9bl31Vb8bM1oUb_mKl7LC20nkqiD0CD3; report-to cf-csp-endpoint
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf4fa72b51b-OSL
X-Firefox-Spdy: h2

unsupportedtokens.uniswap.org/

104.18.23.54

200 OK

7.9 kB

URL HTTP/2
unsupportedtokens.uniswap.org/
IP
104.18.23.54:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
7.9 kB (7899 bytes)
Hash
f6e6b3448fafaf3492d26c88f0128b3d
d1d50812b61f0fabf89b9d8c0507d7dd848e345d
3431e63f04368e28e0df57d6bec7379e2e65591e45e2608c2a7232c25c9db02c

HTTP Headers

GET / HTTP/1.1
Host: unsupportedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh"
last-modified: Tue, 07 Feb 2023 13:31:49 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYY9ttooJrg78Wx; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:49 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/unsupportedtokens.uniswap.org/
x-ipfs-root: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
x-ipfs-roots: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CSYnDSaC14K9UPCmWTAyF4ctiPfEu9b%2F0HOp2AaqwNKBcdvtDv2fVJhCapvCwyx1l6QN2uv41Db1%2BeqIne4%2Ff3GVdbCmb0mUuiqxXBZh5ZllBjv5f09Tkl1102%2Bj%2FE%2FVSuHyWOV6j8PJMV9IZaq2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf3d92bb51b-OSL
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.202.226.109

200 OK

0 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.202.226.109:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.202.226.109

200 OK

0 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.202.226.109:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
access-control-max-age: 86400
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

200 OK

30 kB

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
30 kB (29481 bytes)
Hash
26a5128b9d92143a5a459da7e9519897
0ffd016382afb2a7e0f7133fc130e21cb18e6249
2b2513038deeb03017f91f10ad2f1573d39c5b9cba316447479ab7f4a0d8fb71

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
cf-ray: 795c7cf80a4bb527-OSL
access-control-allow-origin: *
age: 73986
cache-control: max-age=60, stale-while-revalidate=86400, stale-if-error=86400
etag: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
last-modified: Mon, 06 Feb 2023 16:58:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipns/tokens.uniswap.org/
x-ipfs-root: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
x-ipfs-roots: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
set-cookie: __cf_bm=4p1iocB9xDQQcOSbmVDYFB9Va8P7y0X6MstDVmL5tWk-1675776710-0-ATwPMqA9KmldjJjZagFrjenlugKEAfvKKnTqsjl0EOvmWOB730t4HpI+l365201Z5nh3DKpNZrUwle7O1U70H78=; path=/; expires=Tue, 07-Feb-23 14:01:50 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

304 Not Modified

0 B

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 06 Feb 2023 16:58:44 GMT
If-None-Match: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: no-store
x-cf-ipfs-cache-status: hit
set-cookie: __cf_bm=3Z.A34C69LzY4Tbi78RHmefAtMg8J4iRgSmTUt6Swsk-1675776710-0-Adj6VA/nPpFGwzdNlMEfZ1yJ8MbDeJuDjaSsfcJ8XzHRKU/GUNI/o28bo9PryxkoeUlzo5Hdo5qcEFTVHG+I4o4=; path=/; expires=Tue, 07-Feb-23 14:01:50 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
cf-ray: 795c7cf88b1ab527-OSL
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.202.226.109

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.202.226.109:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
content-type: application/json
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Content-Length: 64
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.202.226.109

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.202.226.109:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
content-type: application/json
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

api.coinbase.com/v2/exchange-rates?currency=ETH

104.18.4.43

200 OK

20 kB

URL HTTP/2
api.coinbase.com/v2/exchange-rates?currency=ETH
IP
104.18.4.43:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
20 kB (19534 bytes)
Hash
76736ebe754d132364ff2be89c2dddf0
1085d22a26a6e5d01fdecb71221a9c4ba0b4cc18
27f4ab41adc6f7501330cb28b75e7e8ff81a6b6f7dd7fde96b8c6a64e2bd04c9

HTTP Headers

GET /v2/exchange-rates?currency=ETH HTTP/1.1
Host: api.coinbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/json; charset=utf-8
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-origin: *
access-control-expose-headers: 
access-control-max-age: 7200
cache-control: max-age=30, public, s-maxage=30, stale-while-revalidate=30
content-disposition: attachment; filename=response.json
content-encoding: gzip
content-security-policy: default-src 'self' https://www.coinbase.com; child-src 'self' https://www.coinbase.com https://fast.wistia.net https://*.online-metrix.net https://*.wpstn.com https://netverify.com https://platform.twitter.com https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://cdn.plaid.com/link/ https://*.doubleclick.net/ blob:; connect-src 'self' https://www.coinbase.com https://api.coinbase.com https://*.online-metrix.net https://api.cloudinary.com https://ott9.wpstn.com/live https://api.amplitude.com/ https://api2.amplitude.com/ https://d3907m2cqladbn.cloudfront.net/ https://exceptions.coinbase.com https://assets.coinbase.com/ https://sessions.coinbase.com/ https://dynamic-assets.coinbase.com/ https://events-service.coinbase.com/amp static.coinbase.com wss://ws.coinbase.com wss://ws.coinbase.com:443 https://www.coinbase.com/api; font-src 'self' https://www.coinbase.com https://assets.coinbase.com/ https://card.coinbase.com/ static.coinbase.com; img-src 'self' data: https://www.coinbase.com https://images.coinbase.com https://d3907m2cqladbn.cloudfront.net/ https://static-assets.coinbase.com/ https://dynamic-assets.coinbase.com/ https://exceptions.coinbase.com https://coinbase-uploads.s3.amazonaws.com https://s3.amazonaws.com/app-public/ https://maps.gstatic.com https://ssl.google-analytics.com https://www.google.com https://maps.googleapis.com https://csi.gstatic.com https://www.google-analytics.com https://res.cloudinary.com https://secure.gravatar.com https://i2.wp.com https://*.online-metrix.net https://assets.coinbase.com/ https://hexagon-analytics.com https://cb-brand.s3.amazonaws.com https://googleads.g.doubleclick.net https://stats.g.doubleclick.net/r/collect https://card.coinbase.com/ blob: static.coinbase.com https://www.facebook.com/tr; media-src 'self' https://www.coinbase.com blob:; object-src 'self' data: blob: https://www.coinbase.com https://cdn.siftscience.com https://*.online-metrix.net https://www.gstatic.com https://www.google.com/recaptcha/api/ https://recaptcha.net/recaptcha/; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.coinbase.com https://fast.wistia.com/assets/external/E-v1.js https://cdn.siftscience.com https://*.google-analytics.com https://www.google.com https://www.gstatic.com https://*.online-metrix.net https://code.jquery.com https://chart.googleapis.com https://maps.googleapis.com https://maps.gstatic.com https://netverify.com https://ajax.cloudflare.com https://cdn.plaid.com/link/v2/stable/ https://www.googletagmanager.com/gtag/js https://www.googletagmanager.com/gtm.js https://www.googleadservices.com https://googleads.g.doubleclick.net https://recaptcha.net https://assets.coinbase.com/ https://card.coinbase.com/ static.coinbase.com; style-src 'self' 'unsafe-inline' https://www.coinbase.com https://assets.coinbase.com/ https://card.coinbase.com/ static.coinbase.com; report-uri /csp-report
etag: W/"d44f44e6fd899136dd27230fac4daddd"
expect-ct: enforce, max-age=86400, report-uri="https://coinbase.report-uri.io/r/default/ct/reportOnly"
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
trace-id: 1886392112856395087
vary: Origin,Accept-Encoding
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: DENY
x-permitted-cross-domain-policies: none
x-powered-by: Proof-of-Work
x-request-id: 9f925130-2a58-4d4c-a231-acb22f5619e6
x-xss-protection: 1; mode=block
cf-cache-status: BYPASS
set-cookie: cb_dm=ff905851-decd-4c2a-a8d7-b109d5a93130; Path=/; Domain=coinbase.com; Expires=Mon, 07 Feb 2033 13:31:49 GMT; HttpOnly; Secure
__cf_bm=_o77AFW1M.7VgOGGsOQgTxKXs8NWSq3DwqsZtRd1PIA-1675776709-0-ATvFNfW/Ne6pk/FztG56tvibbOfZAnkeQzqSxjHx+kadjz8rSYmy4Jv9SjqgbRtklw3kCD0sujXSrl9loXlwSZc=; path=/; expires=Tue, 07-Feb-23 14:01:49 GMT; domain=.coinbase.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 795c7cf3df59b52d-OSL
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.202.226.109

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.202.226.109:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
content-type: application/json
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
vary: Origin, Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/media/nftArt3.2a32e731.png

147.75.33.214

200 OK

60 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/media/nftArt3.2a32e731.png
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
PNG image data, 270 x 270, 8-bit/color RGBA, non-interlaced\012- data
Size
60 kB (59546 bytes)
Hash
11162996c8b44816d0a919937b40da0c
770a0c54fe672358b0b61108644e136607d3d3ab
2f755523af2b9096a73422d9746a1678fb66d7286d775ff910fafd064594f345

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/media/nftArt3.2a32e731.png HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzU5ODAzJTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.1.1675776759.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: image/png
content-length: 59546
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAYIEWCCilYfVhm3+FULT9ICE5mw9Vnsa0+ySktWvO3nhvzcm5IMBggRYIEP1wf13o4w/M+49cJV/OhGM5hJOaJ4/XdLsIP5yoVgSgwGCBFggoiq+LPGqL+SanjgBsQZe8CmfTuqOq6dBuflfizZNzvWDAYIEWCBoXyNfYi+WYNYA13OtCNqgEZ2yZ8qMmtximV9pmFLNa4MBggRYIIuNBBDOY8G8cAgzKtWeGhDZ+fglznZ778a4LQKbM6mUgwGDAlgiL3N0YXRpYy9tZWRpYS9uZnRBcnQzLjJhMzJlNzMxLnBuZ4IDWCAvdVUjryuQlqc0Itl0ahZ4+2bXKG13X/kQ+v0GRZTzRYIEWCDroYMwz8DzhcqI2TG5jGpXQ0KClhCQuk/c4f3uNI5yMg==:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

54.230.111.117

304 Not Modified

0 B

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
54.230.111.117:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "e6702264272ea85d23df038f01604fed-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: public, max-age=0, must-revalidate
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GRP16NN702NKVHP9V8A7BS08
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bOoRl4Rut6kVj3IYxgjYzb7_KzZgSsPteYnhFziUM8rIp7iyfjkprw==
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/12.f357624d.chunk.js

147.75.33.214

200 OK

6.6 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/12.f357624d.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (39617)
Size
6.6 kB (6638 bytes)
Hash
5df5bb44813b5a1c047da30630e9053d
c0818bc6993141329176a57de715828e73961ab6
cf71fb3a1fb25af0e35e42824a30acd1769352a0bdb4158a27aa469067919c3c

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/12.f357624d.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzYwMDg0JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.1.1675776760.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/javascript
content-length: 6638
content-encoding: gzip
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

api.uniswap.org/v1/amplitude-proxy

54.230.111.83

409 Conflict

30 B

URL HTTP/2
api.uniswap.org/v1/amplitude-proxy
IP
54.230.111.83:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
504a341f40609478b7944e7027f9d2d8
1e788353409b8a5407bc5b17f6eff7bb89be6f81
d23cfc2d7fadc545782890757788e10a03f1530e6bc831da887eaf7adb67aed3

HTTP Headers

OPTIONS /v1/amplitude-proxy HTTP/1.1
Host: api.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-origin-application
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 409 Conflict
content-type: application/json
content-length: 30
date: Tue, 07 Feb 2023 13:31:50 GMT
x-amzn-requestid: 8b91a8fd-84f6-4187-963e-ba4964c03f28
x-amzn-errortype: ForbiddenException
x-amz-apigw-id: f-HfEE1liYcFXWg=
x-amzn-trace-id: Root=1-63e252c6-3d34da7a6d5a47f173ab434d
x-cache: Error from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LaND2XGH7MaZ0MWXYvyZlXl1J6uB8fZhoXM4Kg_31KHhnJ4JJ5rv2g==
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

94 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
94 B (94 bytes)
Hash
d1027e7e20b6d34a4ca044656cc18113
4c37bcec4cc923df993621ee3e6dbe1ca7022172
500b4801d965054a5f68b2bb34535ffc7855a1c34b43f08ebd5a823bf28a6215

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::7zzx2-1675776710425-06d6bc32e0fb
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

103 kB

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
103 kB (103161 bytes)
Hash
76bbb23508c16b9ea472f6280e76c37e
02ed841359f79fdfe0faee86f6df85b531156dc5
4d4746c5e37a9ef44d20adee45245e526acdb1b926d696ae888c4e9372f15649

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ljtj4SLeGz1s9RRo%2BfdsRj4Y4JwyjBWpAEQ6qL7j2cDk65NP6E8JwoFO17THAFeCP%2F8S1xlIDz5JPKYpp%2B8on%2B7QJbNi9MbUOXmBzxkY%2FrFhaRH%2BwvNAk%2BwgMCxm%2B8RPPdrGdnyluVUipFUw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf6afc31c02-OSL
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/5.95a29d57.chunk.js

147.75.33.214

200 OK

41 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/static/js/5.95a29d57.chunk.js
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
ASCII text, with very long lines (65462)
Size
41 kB (40989 bytes)
Hash
8b68cf6f8af8f4d2d076752adccd260c
3635250c9239bf4f1e47bc54fe7b9bab78b241c9
7763c6044e9cbb08451f2ab77e8c76d0651a08ef1cc28c61e369ee8dba7045f9

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/5.95a29d57.chunk.js HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzYwMDg0JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.1.1675776760.0.0.0; _ga=GA1.1.1849692250.1675776759
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/javascript
content-length: 40989
content-encoding: gzip
ic-certificate: certificate=:2dn3o2R0cmVlgwGDAYMBgwJIY2FuaXN0ZXKDAYMBggRYIKmWczC8BT+k/16vuI6ac7HdtAcFE4IXYbZIf06AcyUsgwGCBFggSdyj3FLD/wEe55REh0fk5PBgCuw0D+3/oCccb9xvPTKDAYIEWCAc2bvtndtTBDFAi8ILwLo/tHtbK0/eePkAYbMTvzFgfIMBggRYIB2idCSdUr9QPoLOdVeWVwbSNP9VRaDj+HtvNgojzyzfgwGDAYMBggRYIIg89NP/MlZVPsfipQNJ+Pd42M11tDXwRyWNZBHv0Bn+gwGDAYIEWCB7nlUpDWiYh0d4JLnQrN8qbhqkZRHTOrONkUY06dX8eoMBggRYIJsJvYKATbNyYuQqh36WogcTgjIm1dqbIdHA/hLDqeHXgwGCBFggvw6KXi0/lpXeQSJ+HXLWlg/MYZG6w9uUhPMk3Je4s1ODAkoAAAAAAMAIhgEBgwGDAYMBgwJOY2VydGlmaWVkX2RhdGGCA1gg/aE2mvXLpCAPClJb8ElTts5th2jg+qlJzD8uOcQgMYeCBFggg8Vr8U3ePSjeZsaStfydl+ndmFtq1ysP5vhOio3z3LKCBFggJyv6NPvgzbyTBlVv7VQ9i2XmCC2kaDMqpXwsP/gI3yCCBFgg/hQgHawItwGsxeqsD13wtZ4ooq2cZXxFiE7YA+otFLGCBFggN7dMWqf3CZYkDRb8sdXlpq1UoNKXlAUQlRUxZhugXayCBFggtBt4B0k6TbeS8H/3nmK+CKSwdWqxrb46uQBL4MzRW6OCBFggze3tjTAZW7X1vNRRp4VnStCh3mpEOurZRTDDE5FMwxKCBFgggcZ9PL02AjfVckRnRUXooQabTWD22qvHtqgygVmRVJGCBFggC95eJyNzKwe2XeMfprCPFzhTwSF0brAV73WG3zPPNNGCBFggXdzsLI0k3EjbuHXuDpl0COYS9//LioD/IujjdxeQOKGDAYIEWCDMV4EJ/F295ZHPecs/pjJs3M3Z+ojqJ1ksqIiCQ2av44MCRHRpbWWCA0mH4dbbmcHjoBdpc2lnbmF0dXJlWDCVuCGZXmnpa2cF79YhHdIyLr/Cb5yoYl+EfqZXG2MC7Bm/ZgA7FDnsZe3AhIVE03JqZGVsZWdhdGlvbqJpc3VibmV0X2lkWB38fRWyfflrPphzFGOirxPW5Dz0JtDLSHpxIAkVAmtjZXJ0aWZpY2F0ZVkB5dnZ96JkdHJlZYMBggRYIFUVZNWcVemWiVn6tQCJhKW7CF+VHnYfKpySN8zmQ2VcgwGDAkZzdWJuZXSDAYIEWCAKBZFpLnN1JJBfJHTkxCZg83yawvYYvwo4ClqQ7c+YIYMBggRYIECknTuRua2sF4AGYOsyXLx589Oe0fRA2+N4Xzmioyy9gwGDAlgd/H0Vsn35az6YcxRjoq8T1uQ89CbQy0h6cSAJFQKDAYMCT2NhbmlzdGVyX3Jhbmdlc4IDWBvZ2feBgkoAAAAAAMAAAAEBSgAAAAAAz///AQGDAkpwdWJsaWNfa2V5ggNYhTCBgjAdBg0rBgEEAYLcfAUDAQIBBgwrBgEEAYLcfAUDAgEDYQCQU7VC3I11gjetooDcUFhGwyewxDt+JsDub3cpzevUNjnZWcEP4aoFhiJDfX7DSpIANd/VXeT0CTe0xBngK1F+sremqn9CZENSIC+PTGfnJsqPFoq1iHZCYdvMOlyBE5OCBFgg6kO6OJIsCqjYpkV9Wiujz6y93yaWchIvHP94gKTl8q6DAkR0aW1lggNJp7+2gOTm7p8XaXNpZ25hdHVyZVgwgjcSn7VQF9GHwdvxhDLrar+FSHu/PX2G6ppbSoOH7HCGqEid73ZzvLjDSwLMD71g:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/index.html

147.75.33.214

200 OK

3.5 kB

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/index.html
IP
147.75.33.214:0
ASN
#54825 PACKET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7817), with no line terminators
Size
3.5 kB (3501 bytes)
Hash
073b6ad9dbc97a6154646fa78db7ea6f
e9f03baece4e1ba3b3e1a8855de9128e53502e85
0780a13aa0f701449825b46c1c3c452ea5c9c5e9c11a7164fac2cfb792b458ce

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /index.html HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/service-worker.js
Connection: keep-alive
Cookie: AMP_0000000000=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjA5MjFhY2NlLTE2YTgtNDI0YS1hMzEzLTM3MTUxMTc4MDk2NCUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjc1Nzc2NzYwMzcyJTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY3NTc3Njc1ODY3MSU3RA==; _ga_KDP9B6W4H8=GS1.1.1675776758.1.1.1675776760.0.0.0; _ga=GA1.1.1849692250.1675776759; AMP_MKTG_0000000000=JTdCJTdE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: text/html
content-length: 3501
content-encoding: gzip
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAYMBgwGDAYMBgwGDAYIEWCCr+zudM7kJ2gRT4x7UVgoubAosWhg3L5je8H4DyqUO0oMBggRYIFT/jVM+oRg9ldbICnd5aiuE/37rktY3o4yDdlGOaJkYgwGCBFgg7WPfzTkqHkMGfeXrZ3If/kus44FqPNQ7XI+TPgWlnaiDAYIEWCCeBKIxEtq7XhIeRLoPlEEzdg2Gg/uI8pDB5oezQbsPvoMBgwJLL2luZGV4Lmh0bWyCA1ggnQQ7qJPnkBFnwUMbfKVaZhiYjwjbQu72DgdYqFINUl2CBFggl9pUbmVPc1hKXdrE7zXhYSO24kCZxJXFCY5eVjzTcCuCBFggTbk/NLNxHUVoQgeHuETD7Ftl1+3JpFai8fh3BODhRRiCBFggOPFXqjy5OD/52ELaeBohNAoiwo+Oj9FemcUHz3Sc5HaCBFggXuXtK/1BWyYDHuKuKkPzXZATpwtFWerXjq7pDPaTUh+CBFggoSYteDkVR3RnKwYnQzAy1BP4TgyGQbi161Pf0KqzdCaCBFgg0yaWpoDob1z8yPm3GLc5TeitqeeFHqNX6tnBe4zLAsCCBFggIuNRyujokMPtufU+eJ6obnQZyFQNcLe66lpNB0ntuDc=:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

54.230.111.117

304 Not Modified

0 B

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
54.230.111.117:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "e6702264272ea85d23df038f01604fed-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: public, max-age=0, must-revalidate
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GRP16NN702NKVHP9V8A7BS08
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XYRrsrRdsGh3b5K7yQxrP1nCVGIUIP6lyj9d9xX3MvoLXT5_-wiliQ==
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

304 Not Modified

0 B

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 06 Feb 2023 16:58:44 GMT
If-None-Match: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 13:31:50 GMT
cache-control: no-store
x-cf-ipfs-cache-status: hit
set-cookie: __cf_bm=K50bRSr8MBU4VAqEQd6ry0UlSsZt1nF_PwF4j_lWdVw-1675776710-0-ATn0q89nH5lFCOj+vcNBgxQRqT7CBqrDDkqOEVHg9Kxp0B5qt5DIRts2fCTSOYzYRhqrCF9HREgn++MHfmBLw5w=; path=/; expires=Tue, 07-Feb-23 14:01:50 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
cf-ray: 795c7cfa9e22b527-OSL
X-Firefox-Spdy: h2

tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json

35.92.15.165

200 OK

80 kB

URL HTTP/2
tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
IP
35.92.15.165:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
80 kB (79532 bytes)
Hash
cb45b3e5c456a78939375a3e2c5e36b3
5eae0735813a334d9fe587c43be905c7cc27f2ba
7004cdbec2e1b3ef41ebdd0619c77620a61a186d2964b410c86a8b86a97ed53f

HTTP Headers

GET /ArbTokenLists/arbed_arb_whitelist_era.json HTTP/1.1
Host: tokenlist.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
access-control-request-method: GET
content-type: application/json
etag: "rpppko1pd8"
last-modified: Tue, 07 Feb 2023 13:31:36 GMT
server: Caddy
content-length: 79532
date: Tue, 07 Feb 2023 13:31:50 GMT
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

80 kB

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65442)
Size
80 kB (79626 bytes)
Hash
6b9a85deb14c336cc2dfb4f3c11b5140
ccce9ac92b8b23b667e1ddd25d06e1097e561e9b
52f5e049917fece669e062ca169b7720e92bed149bfe5a595eaa38bd82f99f91

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::7zzx2-1675776710720-2aac68274b21
X-Firefox-Spdy: h2

unsupportedtokens.uniswap.org/

104.18.23.54

200 OK

117 kB

URL HTTP/2
unsupportedtokens.uniswap.org/
IP
104.18.23.54:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
117 kB (116926 bytes)
Hash
70b1454a60a6c1af9751907bdc2588b8
690486ae1a94a54bc5866abacfe42ea234ce4f60
ae885db2222f1c16a61fd7c2af6cffc728132d2a9a27e4643625c036d3b01b46

HTTP Headers

GET / HTTP/1.1
Host: unsupportedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/unsupportedtokens.uniswap.org/
x-ipfs-root: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
x-ipfs-roots: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=70oj1RrBLWx0zRlExdm6kGN%2F2%2FPnPGaEHdw%2B%2B14rrWyK%2BQf%2Fl10Dm4M5QhOKjNbwoJXcUJRpBIv9ZxJWsooNjEFznNPEvLH7DjxDaU6NSgmNqogDK8ZgxaB4cBBnoEz3wpU8pP8Hq7U%2BZtZOiPWi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf82ed4b51b-OSL
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

88 kB

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type
data
Size
88 kB (87541 bytes)
Hash
b168a5c817aeaf4b619cb6c980ca9bdf
d60262128e0aff9a3b3da423e934946c88cf0ea3
527c41eb9c3cd62ab3bdd0f8b9b23c25dc9f42f208b25a8f609019188093408e

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:50 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 58
x-request-id: 273017d3-f093-4484-a72b-2b3438f6ab34
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ssc6vGNOeOZhQG8L3bnnG3iDwfrMTg64K55AsZqA5CaXZPVLlJF1qg==
X-Firefox-Spdy: h2

tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json

35.92.15.165

200 OK

80 kB

URL HTTP/2
tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
IP
35.92.15.165:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
80 kB (79532 bytes)
Hash
cb45b3e5c456a78939375a3e2c5e36b3
5eae0735813a334d9fe587c43be905c7cc27f2ba
7004cdbec2e1b3ef41ebdd0619c77620a61a186d2964b410c86a8b86a97ed53f

HTTP Headers

GET /ArbTokenLists/arbed_arb_whitelist_era.json HTTP/1.1
Host: tokenlist.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
access-control-request-method: GET
content-type: application/json
etag: "rpppko1pd8"
last-modified: Tue, 07 Feb 2023 13:31:36 GMT
server: Caddy
content-length: 79532
date: Tue, 07 Feb 2023 13:31:50 GMT
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

200 OK

109 kB

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
109 kB (109057 bytes)
Hash
21517312b165cd28a7c2938d2bd3313e
51f9aef4e0bfe4c0ebfc83e5673af2a3044f117e
62b5ae0be2b8dd2f212868910920f73b9715308b55f3b06b5c9d08e903240ff7

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
cf-ray: 795c7cf9ed31b527-OSL
access-control-allow-origin: *
age: 73986
cache-control: max-age=60, stale-while-revalidate=86400, stale-if-error=86400
etag: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
last-modified: Mon, 06 Feb 2023 16:58:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipns/tokens.uniswap.org/
x-ipfs-root: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
x-ipfs-roots: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
set-cookie: __cf_bm=ZhQXj4AyQifM8pD_m7g9TtwevHoAdTLqcfGjVFfhq60-1675776710-0-AUEeAB6BOsNndzoLqJ8Oe2QRZUtQEeCmDol23X+1v7sUcPQrsBA/T7YRWJzDskj+i3mTb/C8meKfe21jv4t4KKQ=; path=/; expires=Tue, 07-Feb-23 14:01:50 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

90 kB

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type
data
Size
90 kB (89929 bytes)
Hash
7e6d577e5cb38b9ab6c263e36f5ff2cb
0e32745e8910771ba0faefea9b8345bba59e6878
6d0e5b98484fd53e9aa20d382e805aa70bd5a9f0a5dc5cd7911d7025d1df475d

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:50 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 69
x-request-id: 85c52e00-9db0-4adf-824c-e3269cada0ee
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H8xxzCoEbM7fLbxtRJx7IiasdaHWKJGvMLOrr_395KZrOVpkwCog4Q==
X-Firefox-Spdy: h2

tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json

35.92.15.165

304 Not Modified

0 B

URL HTTP/2
tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
IP
35.92.15.165:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ArbTokenLists/arbed_arb_whitelist_era.json HTTP/1.1
Host: tokenlist.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 07 Feb 2023 13:31:36 GMT
If-None-Match: "rpppko1pd8"
TE: trailers

HTTP/2 304 Not Modified
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
access-control-request-method: GET
etag: "rpppko1pd8"
server: Caddy
date: Tue, 07 Feb 2023 13:31:51 GMT
X-Firefox-Spdy: h2

tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json

35.92.15.165

304 Not Modified

0 B

URL HTTP/2
tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
IP
35.92.15.165:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ArbTokenLists/arbed_arb_whitelist_era.json HTTP/1.1
Host: tokenlist.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Tue, 07 Feb 2023 13:31:36 GMT
If-None-Match: "rpppko1pd8"
TE: trailers

HTTP/2 304 Not Modified
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
access-control-request-method: GET
etag: "rpppko1pd8"
server: Caddy
date: Tue, 07 Feb 2023 13:31:51 GMT
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

103 kB

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
103 kB (102615 bytes)
Hash
ef35d0b383d762ffec102b6e84f47288
0c362c093d381f653452d60d8026014280cc75dc
fb8c988af733ae3bd27ce0a2c086386873c4b8ad9c4a85b933028207ee357a61

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qoNE4LaLM%2FaJyXYDeBehCOcDX5R1mqeG7n%2FTAC3wY6Z80mh0BGNlDo2cGl9BxxQtK%2BaTeonSQqKlNrGwwr02s3vdDb1%2BDstscq3WnkKALuHtsu2LWU0sd4I4JYDhYbWTs1C2O7YfIr4baiPT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf9ec1c1c02-OSL
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::r8nvc-1675776710240-8502f7dd9130
X-Firefox-Spdy: h2

tokens.coingecko.com/uniswap/all.json

172.67.164.11

200 OK

0 B

URL HTTP/2
tokens.coingecko.com/uniswap/all.json
IP
172.67.164.11:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /uniswap/all.json HTTP/1.1
Host: tokens.coingecko.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json; charset=UTF-8
x-amz-id-2: iyNk7aojTDSrllKkHk52xib/eJRBGpLo8HYp4aAx4oYnqG7hotdcnAlh6V7ww3O6r2Q3U7XqfMU=
x-amz-request-id: SYVPT34HWG6KJRNB
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 07 Feb 2023 12:08:06 GMT
etag: W/"159df5b69c558944257e00b339e09c17"
x-amz-server-side-encryption: AES256
x-amz-version-id: 7tbUDm4bkiqw7EITJRogAdiulle24TNi
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LOpWcBHs3uvcSKU8LbwRovN8bvIRb0qbpkrRaIdwVm9YJBgEBkpKxcIYDYazCzrpNp6TNbE%2F2TPdZu%2BCb%2FbBNgZucIDwXDHk7gmZ1UemUs2%2FA3FI%2FFQLQ4DbXBZwgq8tojokRoSkqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c7cf41a4eb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

0 B

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TIBal01a0uTbKxFAhLjWMwXBAlbLHGyBtCPG9XsbAHoRQO2jxvI8nUTdSjoXu3sToTC4qvm5E9O9Cg95tTZHYpp%2Fs5Zr1xJWcPXM0qvNnmiKVEY7%2BuiM128zV6lgiUH%2FK4LtpBXZ3whOrH3V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf99bd41c02-OSL
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::sfvlw-1675776710476-f00e1f4386fe
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:51 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 61
x-request-id: 436ace5b-d1a7-4e39-9978-3637b61e8451
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lN1txk6hTV4UYQv-v7XOfXqU1cPI1XpxUBtpkN-VTLERRzugvu1oNg==
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:52 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 67
x-request-id: 33866c73-461b-4421-b4d1-7caebeaf79fc
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VU3jXZzGGhe-FKtcUvhCRLMQwT9ccdTu9Q9a7Zro3g2D9fAIBwj3cQ==
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:51 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::gmv67-1675776711134-71d8d72199a9
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::sfvlw-1675776710668-172045ecc81d
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

0 B

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:49 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYY9ttooJrg78Wx; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:49 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5g6uvU4fJcXZa75214T5lAwFN4BjsX9aMDspv0yw2bS2jBGZWPmyGelZHJ2KHmcPckuNPIznHrXrPHpnKiLKV9Wak6aGwtvM0GPNZOW3SjpuZbA22ICW8aUTIxQvaPIgvmR4m48R4lGzxShT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf3bc781c02-OSL
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:50 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 81
x-request-id: 47b38756-ee61-4949-b64c-395ca6824842
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6_MXVfzii20tYwzUc3iAGROrTTy78H2lKiTD1MTIfVZj30i9g59IgA==
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:50 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::7zzx2-1675776710809-50ef3b54eb6f
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:49 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::7zzx2-1675776709685-ffffd1afb41d
X-Firefox-Spdy: h2

unsupportedtokens.uniswap.org/

104.18.23.54

200 OK

0 B

URL HTTP/2
unsupportedtokens.uniswap.org/
IP
104.18.23.54:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: unsupportedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/unsupportedtokens.uniswap.org/
x-ipfs-root: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
x-ipfs-roots: Qmc2KUxUDeZNR4dqpHgzqvjWuayL4UPmKFxjLEXHcp1fyh
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EmGRhPnL%2BT9Y3%2FHkO5jeZz%2FFgoUApZPKcnu9q3uVgrHBBvxTgbbkETh5VPIaZEKcGhiCvuZE6JfbG1H5%2FUICdmbb6kqRufTIWd%2FSSFlZCE4Zevkg57fofZYe%2BqynGKk6RVA2WFIklYMeY9PoUF%2FV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf6acc6b51b-OSL
X-Firefox-Spdy: h2

tokens.uniswap.org/

104.17.96.13

200 OK

0 B

URL HTTP/2
tokens.uniswap.org/
IP
104.17.96.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: tokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/json
cf-ray: 795c7cf3fcd7b527-OSL
access-control-allow-origin: *
age: 73985
cache-control: max-age=60, stale-while-revalidate=86400, stale-if-error=86400
etag: W/"QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR"
last-modified: Mon, 06 Feb 2023 16:58:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: hit
x-ipfs-path: /ipns/tokens.uniswap.org/
x-ipfs-root: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
x-ipfs-roots: QmdsjPFqu87Kqv52e2YoxfSGg9xzfNiyynoumRMzW19czR
set-cookie: __cf_bm=EBTa36TdRZu0.hsoGffa48g5gt9zXuPOlTrpRl.GYxY-1675776709-0-AWlfJXinWxlZGXad4QeOhp8i7AImTz8p6T8va7CZ7KFbW3b+1Z33y385J9ksUDRXBamm8DWThAVMIcPpQxddsvI=; path=/; expires=Tue, 07-Feb-23 14:01:49 GMT; domain=.tokens.uniswap.org; HttpOnly; Secure; SameSite=None
cloudflare-web3-deprecation: This hostname will be deprecated on January 15th, 2023. If you are the site administrator, please refer to https://developers.cloudflare.com/web3/reference/migration-guide
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

0 B

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9ghsVi4dCkF3Kah4%2BxYGafh2Cz%2BS1ntPm%2FFZO0RHvJdfHBKCtTGspTIU1udNQkTwxNhvvgP9ri7PPklvYw9uNAm26ipU1Wj%2B3SccmJc3G%2F6oHGmyTu4OdpcUOsywzHLHP4%2BDXfYBHL%2BV1Bi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf99bd11c02-OSL
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:51 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 60
x-request-id: a722880d-a21a-42af-b59c-c6958de326bc
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KH7oKeMG3noEdqpkFrV15O1nt7XEQLusC6DeMn4UuNNunnnx8etC3w==
X-Firefox-Spdy: h2

extendedtokens.uniswap.org/

104.18.22.54

200 OK

0 B

URL HTTP/2
extendedtokens.uniswap.org/
IP
104.18.22.54:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: extendedtokens.uniswap.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:50 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: no-store
etag: W/"QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX"
last-modified: Tue, 07 Feb 2023 13:31:50 GMT
set-cookie: __cflb=02DiuEkP8hw3gxppKv9wn5E4xCQU8nKYYAdiKzsWJNo1N; SameSite=Lax; path=/; expires=Wed, 08-Feb-23 12:31:50 GMT; HttpOnly
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
x-cf-ipfs-cache-status: miss
x-ipfs-path: /ipns/extendedtokens.uniswap.org/
x-ipfs-root: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
x-ipfs-roots: QmaQvV3pWKKaWJcHvSBuvQMrpckV3KKtGJ6p3HZjakwFtX
content-encoding: gzip
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IxWbPFI4uAuflx63LsXGL6dp3ESRzChHEwrX%2Bse59MoG%2BHG6q%2FTpvFtfI43dVhCufKUVTmZIMCfV4QIiODoUcEbjMtRpsZO7j4Et94aessfvQ%2FlzM1QtF%2Fa9qxbMcpuddwjjtLVjeIrm9qBf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 795c7cf99bd61c02-OSL
X-Firefox-Spdy: h2

app.tryroll.com/tokens.json

104.18.11.70

200 OK

0 B

URL HTTP/2
app.tryroll.com/tokens.json
IP
104.18.11.70:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tokens.json HTTP/1.1
Host: app.tryroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 13:31:49 GMT
content-type: application/json; charset=utf-8
cf-ray: 795c7cf3df0e0b06-OSL
access-control-allow-origin: *
cache-control: public, max-age=14400
etag: W/"3ebf-Z7wm5a51+80jZPu03IujC6jLID4"
expires: Tue, 07 Feb 2023 17:31:49 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding
cf-cache-status: HIT
access-control-expose-headers: Authorization
x-powered-by: Express
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:49 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 64
x-request-id: 1a96c615-4945-434e-9ca0-bc88195cca1e
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m-Os0SYf85Wbia3VBsIpMX3qnDRUbbfuA0l_SOTUAvW6xHhyjcgx5A==
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:50 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 58
x-request-id: 273017d3-f093-4484-a72b-2b3438f6ab34
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mAhTEp7e4o4APcGFJcJD1ahrRnuK7uRgEdVf_XeanI_v_a9U0iHTqg==
X-Firefox-Spdy: h2

bridge.arbitrum.io/token-list-42161.json

76.76.21.142

308 Permanent Redirect

0 B

URL HTTP/2
bridge.arbitrum.io/token-list-42161.json
IP
76.76.21.142:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /token-list-42161.json HTTP/1.1
Host: bridge.arbitrum.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 308 Permanent Redirect
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
content-type: text/plain
date: Tue, 07 Feb 2023 13:31:51 GMT
location: https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
referrer-policy: origin-when-cross-origin
refresh: 0;url=https://tokenlist.arbitrum.io/ArbTokenLists/arbed_arb_whitelist_era.json
server: Vercel
strict-transport-security: max-age=63072000
x-vercel-cache: MISS
x-vercel-id: arn1::gmv67-1675776711100-205e5644180b
X-Firefox-Spdy: h2

api.coinmarketcap.com/data-api/v3/uniswap/all.json

54.230.111.46

200 OK

0 B

URL HTTP/2
api.coinmarketcap.com/data-api/v3/uniswap/all.json
IP
54.230.111.46:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /data-api/v3/uniswap/all.json HTTP/1.1
Host: api.coinmarketcap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
Origin: https://ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 326207
date: Tue, 07 Feb 2023 13:31:51 GMT
server: Tengine
content-encoding: gzip
x-envoy-upstream-service-time: 80
x-request-id: d579d4cf-0156-4272-a11f-e3d7730ca159
x-envoy-decorator-operation: cmc-gateway-service.cmc-backend.svc.cluster.local:9999/*
access-control-allow-credentials: true
access-control-allow-headers: origin,x-csrf-token,accept,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,fvideo-id,x-request-id,authHeader,accept-language,cmc-captcha-token,Platform,security-id,x-se-bh,x-se-pd,x-se-rd,x-se-sd,x-se-gsd,x-se-gd,device-info,x-pwd-encryption,deviceModel,deviceId,deviceName
access-control-allow-methods: OPTIONS, HEAD, GET, POST, PUT, DELETE, PATCH
access-control-expose-headers: Authorization,x-cache,c-backend-cache
access-control-max-age: 600
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RcKugZ84vBt6_H4L-zjzBfQhIiTmRUG10l4rWfhr53PieswMtxULrg==
X-Firefox-Spdy: h2

ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/

147.75.33.214

200 OK

0 B

URL HTTP/2
ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app/
IP
147.75.33.214:0
ASN
#54825 PACKET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

NIDS	Severity	Alert
suricata	low	ET HUNTING [TW] Internet Computer HTTP Request Observed

HTTP Headers

GET / HTTP/1.1
Host: ish45-jyaaa-aaaag-abcda-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 07 Feb 2023 13:31:46 GMT
content-type: text/html
ic-certificate: certificate=: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:, tree=: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:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL