Report - 4-11-1.uniswap-uncensored.eth.limo/

Report Overview

Submitted URL
4-11-1.uniswap-uncensored.eth.limo/
IP
3.21.2.2
ASN
#16509 AMAZON-02
Submitted
2023-01-16 21:05:08
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.5 kB	23.36.76.226
4-11-1.uniswap-uncensored.eth.limo	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	1.5 MB	3.14.40.134
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
raw.githubusercontent.com	35802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	967 B	10 kB	185.199.110.133
www.gemini.com	67446	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	948 B	5.4 kB	143.204.55.44
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	67 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	1.9 kB	54.230.245.110
mainnet.infura.io	19321	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	1.8 kB	52.7.204.56
tokens.coingecko.com	143111	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	439 B	1.1 kB	104.21.74.223
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	737 B	93.184.220.29
app.tryroll.com	305318	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	429 B	526 B	104.18.11.70
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.160.184.41

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Crypto/Wallet

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/static/media/Inter-roman.var.b65534c5.woff2	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/static/js/main.32f2e688.chunk.js	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/static/js/4.45bb44f0.chunk.js	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/static/media/logo.4a50b488.svg	Phishing
2023-01-16	medium	4-11-1.uniswap-uncensored.eth.limo/static/js/17.59933f10.chunk.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	4-11-1.uniswap-uncensored.eth.limo/	2.8 kB	2023-03-08	2023-04-05
Pretty URL 4-11-1.uniswap-uncensored.eth.limo/ IP 3.14.40.134 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:48 Last Seen2023-04-05 02:01:51 Times Seen3 Hash 4a407b659b18cf41f0ab2ef5cbb8a8b0 7bef9ff16384c528cea857da885bca297ba853c2 82f33e461209afce5e60326935f8c2cc5d47e217c91ca620cceea94354710881 Loading...

	4-11-1.uniswap-uncensored.eth.limo/static/js/main.32f2e688.chunk.js	670 kB	2023-03-08	2023-05-19
Pretty URL 4-11-1.uniswap-uncensored.eth.limo/static/js/main.32f2e688.chunk.js IP 3.14.40.134 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:49 Last Seen2023-05-19 02:33:59 Times Seen9 Hash 2395c7e4f93c0ba8dea5c814f8e57922 2b23d0822c104936403cf8c576121f850171968b 549e352e16fdb9fd0e1db91400363d8353854014070e745a0eaf8233ddb61cfd Loading...

	4-11-1.uniswap-uncensored.eth.limo/static/js/4.45bb44f0.chunk.js	2.2 MB	2023-03-08	2023-05-19
Pretty URL 4-11-1.uniswap-uncensored.eth.limo/static/js/4.45bb44f0.chunk.js IP 3.14.40.134 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:21:49 Last Seen2023-05-19 02:33:59 Times Seen7 Hash df863ccab78ea874c1f4d604f5f4b013 efe29f69274611649094866fa58e6f1dae81e020 6ebe2f68386b73180c5146e8e7399fe19e3fdd054b493971d13f77d87cb96f64 Loading...

	4-11-1.uniswap-uncensored.eth.limo/static/js/17.59933f10.chunk.js	35 kB	2023-03-07	2024-03-20
Pretty URL 4-11-1.uniswap-uncensored.eth.limo/static/js/17.59933f10.chunk.js IP 3.14.40.134 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:20:46 Last Seen2024-03-20 18:16:48 Times Seen47 Hash fd1fb474b588af440b1d2a541eeede95 a77f6fae71c1222e12ec4c6308d5d9c7825a1ece 6f43c52aa53ba4e4decb76a0887e4ee133308f66e94f1c106660ddf07e692dbd Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

HTTP Transactions (48)

URL IP Response Size

4-11-1.uniswap-uncensored.eth.limo/

3.14.40.134

308 Permanent Redirect

0 B

URL HTTP/1.1
4-11-1.uniswap-uncensored.eth.limo/
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 308 Permanent Redirect
Location: https://4-11-1.uniswap-uncensored.eth.limo:443/
Server: Caddy
Date: Mon, 16 Jan 2023 21:04:57 GMT
Content-Length: 0

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0643dc6b6fed33b3537160b6bb77bcbf
aa43bd1fbb30d2219f3285c1ee4991ffb33562c5
f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3149
Expires: Mon, 16 Jan 2023 21:57:26 GMT
Date: Mon, 16 Jan 2023 21:04:57 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8734
Expires: Mon, 16 Jan 2023 23:30:31 GMT
Date: Mon, 16 Jan 2023 21:04:57 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 16 Jan 2023 20:42:12 GMT
content-type: application/json
age: 1365
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f7bd85a261739c122eefb74ffddaec99
e2e059b0740592e8591d432249aafe5fcb8af23c
71bdd130b8d143f228542f678e91c98ab4e5844fb9f47b036e15372660be25fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71BDD130B8D143F228542F678E91C98AB4E5844FB9F47B036E15372660BE25FD"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4564
Expires: Mon, 16 Jan 2023 22:21:01 GMT
Date: Mon, 16 Jan 2023 21:04:57 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: u/wWRDfa0+GGHOOLmnDikpNdMChCxR08IWT38y4piUD5xFJ6a09niKIcnqD1LezGEu8tmBU/B9s=
x-amz-request-id: Z729Y51MWWY6V03N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 16 Jan 2023 20:44:43 GMT
age: 1214
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 16 Jan 2023 21:04:57 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 16 Jan 2023 20:17:25 GMT
age: 2853
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d03545e1fc5a8876441094039811aac5
99fcc840f3516298625c528e9b408132f7fcbb9c
166fa7c7bb716b2cd02a47884ee00df31030dfb4b2a6fdae7b59b19f87739123

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2423
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 21:04:58 GMT
Last-Modified: Mon, 16 Jan 2023 20:24:35 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.160.184.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.184.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aCgXD3GhM30xSc/DV+Ge0A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: q634S7FxaqlK7bOEBfpcpA9HBUQ=

4-11-1.uniswap-uncensored.eth.limo/

3.14.40.134

200 OK

2.4 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4591), with no line terminators
Size
2.4 kB (2439 bytes)
Hash
6402cf4bbb0ee8d0f73b127c3549f610
47264f52034bd6c2648acb29160bb73788ccaae0
49155b275f2f983aa834617b6d8e08ea39943596c31487e548ad21e33b234ba2

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: text/html
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:04:58 GMT
etag: "QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 2439
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Tue, 17 Jan 2023 01:28:44 GMT
Date: Mon, 16 Jan 2023 21:04:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Tue, 17 Jan 2023 01:28:44 GMT
Date: Mon, 16 Jan 2023 21:04:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Tue, 17 Jan 2023 01:28:44 GMT
Date: Mon, 16 Jan 2023 21:04:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Tue, 17 Jan 2023 01:28:44 GMT
Date: Mon, 16 Jan 2023 21:04:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15826
Expires: Tue, 17 Jan 2023 01:28:44 GMT
Date: Mon, 16 Jan 2023 21:04:58 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd986c41-5e27-40cc-8622-aeddbd283d0c.jpeg

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd986c41-5e27-40cc-8622-aeddbd283d0c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6273 bytes)
Hash
a7917592de9f2ddbe7d3a7fa7f3d4d62
866b04ce93a30369d7cb0a6d2155a8b10292507f
da58e1798bf0fcbfe771420a66bbf671cc84e0ca429e076fdc70bb8d73cddb18

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd986c41-5e27-40cc-8622-aeddbd283d0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6273
x-amzn-requestid: f5d21802-91ea-44cc-aeb2-8ec9af07e1a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbOyFwNIAMFZsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4725e-3028350e72b2ee7b6ae44f2c;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8ggqVFvybykQ-MJzU9H_L6JS9YqmLGsuaMJ34Qy7o6yoMOJOmvYsMA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:53:09 GMT
age: 83509
etag: "866b04ce93a30369d7cb0a6d2155a8b10292507f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7986 bytes)
Hash
0c1d929710bbf5d3a500cff064fa28e5
f76fade4eba5e5740d1261a2bce7776719ee477f
bb0b45ede28406534c236881abe011a1b8162a1bcb4cbe61320c613fec5d0010

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa81e129b-3fb3-4b30-a6fc-04ac1926b5c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7986
x-amzn-requestid: 366be46e-97f4-4bdc-8341-5bf87438ad86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbPvEezoAMF6ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47264-7eef208b3ec703b82d792537;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _cMoPRYYqsc6B6TWFkmrfDMCleAW2jWn5FXGmjay279Bf3tppH60hQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:04:21 GMT
age: 82837
etag: "f76fade4eba5e5740d1261a2bce7776719ee477f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.8 kB (9801 bytes)
Hash
74ac30be02dee9dcfeee79a7dc54edff
1368d81de22ea2e4054a3e1a8f01ef337c63e35b
8abc2f276906dfb9ce75c2526d2c2cfa6aea6dbe13f4046de1040cd611cbbc1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9801
x-amzn-requestid: 39d84a20-55f7-4b7c-abc4-9ac1ff100da9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eqSkoGCZoAMF1zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0caea-4f7a1cf676335cc83018dc51;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 03:07:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n-uzZFYeVcR7YP4lVhGVKFmINHUwd3kNcJIAJiRJW5maf_MqufqU8g==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 05:42:23 GMT
age: 55355
etag: "1368d81de22ea2e4054a3e1a8f01ef337c63e35b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdba5086-6c46-4cc7-9087-e85f89cbe947.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9176 bytes)
Hash
ad1a79b09348c4959a8ac05513efcb78
10c0a66add63c868ff332022f588e65f4ac1ec15
8a123746389e6b480669b8d6882f7edce290f1c226cd6744e23bac94b8de6d32

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdba5086-6c46-4cc7-9087-e85f89cbe947.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9176
x-amzn-requestid: 1d5746ff-7de6-4a54-87d2-d15330d1bb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlL8HiPoAMFrIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21be5-044d012445cf23c01cb07a89;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:05:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pfjURj_jUMCbuxIL46hNNw6BeY4YX4TDo-9Ch6R5y3CuWTyt1r3ttw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 03:52:01 GMT
age: 61977
etag: "10c0a66add63c868ff332022f588e65f4ac1ec15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.8 kB (5766 bytes)
Hash
542f87ebb35e170451b610e4b700bcb1
2259cdebacc4c9f07aad838eec494863d4273ad1
85001f2cf33f3fc98d4cdcc7aef38611e34aea3a791d8acb0a5946c4619398eb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2fb3ba8-a85e-42ba-b607-87ced36844b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5766
x-amzn-requestid: b6a8d7ee-ff35-4720-8d2e-ba2b8db6edfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbP4GDQIAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47265-6022a62f69d8f938458d18a0;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YcIDYSEtEIIfGauNxD9V1tuSCAPDq9OaaAATRTOC3Sjlb-72IA0ScQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 22:06:50 GMT
age: 82688
etag: "2259cdebacc4c9f07aad838eec494863d4273ad1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d821e79-af3a-4b67-a79e-90cdf9701001.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11285 bytes)
Hash
91a664271b9042ab5a34c1259df6ab93
7ce177939ceed31dbe137996cace3f71eaab3cf4
08b872b4c8dc8d4b5e26d7c5e7985c144dcf45623737e6daf7813b2add8ab013

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d821e79-af3a-4b67-a79e-90cdf9701001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11285
x-amzn-requestid: 46c0b124-5916-4067-99af-2fa9812dfb2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ev-1zHc4oAMFV6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c311be-3ffbee9348f4351459ed0099;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 20:34:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8FcfGYx-mcEZzF4IoADT5iGnf0vTk2cACE4nseVdonXHBXOSno9vQw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 16 Jan 2023 04:42:49 GMT
age: 58929
etag: "7ce177939ceed31dbe137996cace3f71eaab3cf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/static/css/4.2efb9cd0.chunk.css

3.14.40.134

200 OK

929 B

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/css/4.2efb9cd0.chunk.css
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (5282)
Size
929 B (929 bytes)
Hash
4f2d3d0889771412c17e169e9bb67156
001760de7ecfcd3bacccf70a497873800af00c4c
a63a3fe544bbe8577feb7f4d2ae47d6868b11bb574501162f5fe142bdaab2017

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /static/css/4.2efb9cd0.chunk.css HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: text/css; charset=utf-8
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:04:58 GMT
etag: "QmWvQ5iikG7bYEAk6oSwTr64S8xvuJVgFMeWVSb9C1yS4a"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/css/4.2efb9cd0.chunk.css
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmTr88FsjJi3kn9zdTAiK9BcjPuqsEfR4NAYRDPYwkoP3h,QmWvQ5iikG7bYEAk6oSwTr64S8xvuJVgFMeWVSb9C1yS4a
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 929
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/static/media/Inter-roman.var.b65534c5.woff2

3.14.40.134

200 OK

228 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/media/Inter-roman.var.b65534c5.woff2
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 227688, version 1.0\012- data
Size
228 kB (227688 bytes)
Hash
6718c2681ffa562474407218ac0b08ae
03d67f11d4c6bcdd6182f0bcebb26d11e8c13dd3
d2d2d11234d0d74c0ed3e9727ef07ac8422cbd5b356296b0f87f679c9f74ce83

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/media/Inter-roman.var.b65534c5.woff2 HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/static/css/4.2efb9cd0.chunk.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-security-policy: frame-ancestors 'self';
content-type: font/woff2
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:04:59 GMT
etag: "QmZwnqdy1nZdjY5Gp7b9iYgMwnS3Vnh9TrkvCoPWJQaZgv"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/media/Inter-roman.var.b65534c5.woff2
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmYBGTgbFTKsT5hTy4zorGpKs2K57yWUUw3Cusze1kSDYs,QmZwnqdy1nZdjY5Gp7b9iYgMwnS3Vnh9TrkvCoPWJQaZgv
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 227688
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 21:05:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4-11-1.uniswap-uncensored.eth.limo/static/js/main.32f2e688.chunk.js

3.14.40.134

200 OK

206 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/js/main.32f2e688.chunk.js
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
206 kB (206387 bytes)
Hash
d220efa42a7b9443cd3eb4f17eb3eacd
a591042f86374a9191af6aeacfe9687ee8dad2d4
894b1ca4bd727d026a5b49c963413664b54b586b924ca33530aa4d3df4d759af

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/main.32f2e688.chunk.js HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: text/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:04:58 GMT
etag: "QmcUNPJE2Cu9S35P4W2e591MAUiuQmqf8SNLETrBwazL84"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/js/main.32f2e688.chunk.js
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmaHyTDGZ7SHxwNpyYJsX4u9o1F6E4bXDjqCYpoEHr2Vsq,QmcUNPJE2Cu9S35P4W2e591MAUiuQmqf8SNLETrBwazL84
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6f4934ef37f04950c15313f2cdc6902d
3ed5b8439867115a06edaf046472ee8d271c33ea
3fb58a81be10df91f59e3f6ceed7d607f77409087515cf675ff0d098c482c574

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 16 Jan 2023 21:05:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
112752c2221cdfddf6db9eb4556a8149
933bbc588cad8dd41dfd74ba82ee90a5d7dcc153
13359d2bdad46c676484772882ca50c82c565f7e7faf5b93f5e9faef1052e6af

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "13359D2BDAD46C676484772882CA50C82C565F7E7FAF5B93F5E9FAEF1052E6AF"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8968
Expires: Mon, 16 Jan 2023 23:34:28 GMT
Date: Mon, 16 Jan 2023 21:05:00 GMT
Connection: keep-alive

4-11-1.uniswap-uncensored.eth.limo/static/js/4.45bb44f0.chunk.js

3.14.40.134

200 OK

688 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/js/4.45bb44f0.chunk.js
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65462)
Size
688 kB (687875 bytes)
Hash
1ff8501d9505d750c4ebd42e7240a092
b0d7a5d2eb4cb005959b9727b6a4b2e88625d25e
9696a2bfae1734c87168bc5ea7d51fd5a49a302dcd4229283ac07bd03cbf837b

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/4.45bb44f0.chunk.js HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: text/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:04:58 GMT
etag: "QmZqZJNgTV4FB6fbPgvJH66d2KajrpNaSSz1E5Z15gPZSq"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/js/4.45bb44f0.chunk.js
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmaHyTDGZ7SHxwNpyYJsX4u9o1F6E4bXDjqCYpoEHr2Vsq,QmZqZJNgTV4FB6fbPgvJH66d2KajrpNaSSz1E5Z15gPZSq
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/images/512x512_App_Icon.png

3.14.40.134

200 OK

387 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/images/512x512_App_Icon.png
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
387 kB (386611 bytes)
Hash
87e1ff3cd8b01195164e4a54807468a0
c00846cd185ce838814895d9db4e10cfa5339996
814824e1f29a34016526c9a1005799fafd1c0cfdd2a456e7485743a83b37b949

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /images/512x512_App_Icon.png HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-security-policy: frame-ancestors 'self';
content-type: image/png
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:05:00 GMT
etag: "QmPh4bVcT3cM3KXD8vNFbNK5qioNpbDYbA92wSPXtd9S3Y"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/images/512x512_App_Icon.png
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmTRRDDgz3CcaLvYvFYLuh4He7kgNMyusJF1XiVnm6NvVX,QmPh4bVcT3cM3KXD8vNFbNK5qioNpbDYbA92wSPXtd9S3Y
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 386611
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/favicon.png

3.14.40.134

200 OK

2.7 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/favicon.png
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
PNG image data, 128 x 128, 8-bit colormap, non-interlaced\012- data
Size
2.7 kB (2668 bytes)
Hash
e131d513b9331f61ff8849ba30fbd46d
844e7fe85719dd5c9af6ce5065b84dfdc71bec07
5a1e84a589476959d369ebd49d985edc282f2e3798b610f4c48dad3528801287

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet

HTTP Headers

GET /favicon.png HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-security-policy: frame-ancestors 'self';
content-type: image/png
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:05:00 GMT
etag: "QmfYxrAg1mHYwj2KBk963UFzc1f3oWxrxKVreRYg11z1RR"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/favicon.png
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmfYxrAg1mHYwj2KBk963UFzc1f3oWxrxKVreRYg11z1RR
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 2668
X-Firefox-Spdy: h2

raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json

185.199.110.133

200 OK

3.8 kB

URL HTTP/2
raw.githubusercontent.com/compound-finance/token-list/master/compound.tokenlist.json
IP
185.199.110.133:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
3.8 kB (3844 bytes)
Hash
06a2a23189dc5281c3e2850dabde6250
badd1976ac9cbd7fa3e79569fdd5900a8d4d601a
6adb761bdd2c660777d60bf05e7d8eba9474527168d6147d1c1099f92db9196c

HTTP Headers

GET /compound-finance/token-list/master/compound.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"e0f4798cabc5703161b931b5d659e3f78169d6818f71ec1ffb7b58d0ff42feec"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 0BAA:AB85:1424B47:15ABB77:63C5BBFC
content-encoding: gzip
accept-ranges: bytes
date: Mon, 16 Jan 2023 21:05:00 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1673903101.556839,VS0,VE125
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: c8757db3b53ceb252dc40157278e8e54fad79c21
expires: Mon, 16 Jan 2023 21:10:00 GMT
source-age: 0
content-length: 3844
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

143.204.55.44

200 OK

4.1 kB

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
143.204.55.44:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
4.1 kB (4064 bytes)
Hash
aa4d72e49649cdc5a5c525fb55263535
6e8eca921737b2637df7542856c34107f301590e
20cd236efb6d4b93ea3e755e7dbeb577526be2fad25c6c2873bb703a7898de93

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 4064
accept-ranges: bytes
access-control-allow-origin: *
content-encoding: br
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-nf-request-id: 01GPY521DGYERYATJZZ5ES0H83
x-xss-protection: 1; mode=block
cache-control: public, max-age=0, must-revalidate
date: Mon, 16 Jan 2023 21:05:00 GMT
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H9D_8drfclJkZDdsDxLFSD8I0Epi3xI5RvAtu9mXKnJAaUBCgY3xAg==
X-Firefox-Spdy: h2

raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json

185.199.110.133

200 OK

4.8 kB

URL HTTP/2
raw.githubusercontent.com/SetProtocol/uniswap-tokenlist/main/set.tokenlist.json
IP
185.199.110.133:0
ASN
#54113 FASTLY

File type
JSON data\012- , ASCII text
Size
4.8 kB (4810 bytes)
Hash
90d615505851c459821f6d0e13ce32f5
71ab3d360408dc8de78327b54ee60e97f0977a55
0341f000cb29597607e5cdb67cb8bad6aed3d2e19f17cce5e0b8ec9f23cbb213

HTTP Headers

GET /SetProtocol/uniswap-tokenlist/main/set.tokenlist.json HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: text/plain; charset=utf-8
etag: W/"faf3c13f45ce4bf051d669bb3ebbc3a6689b44226d3111f028058fe47bab4a66"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 8008:1CB9:1E3C8EE:2087340:63C5BBFC
content-encoding: gzip
accept-ranges: bytes
date: Mon, 16 Jan 2023 21:05:00 GMT
via: 1.1 varnish
x-served-by: cache-bma1643-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1673903101.575263,VS0,VE186
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: ba1c1938d4bcc9368d6b5a82f5c147b627cefeae
expires: Mon, 16 Jan 2023 21:10:00 GMT
source-age: 0
content-length: 4810
X-Firefox-Spdy: h2

www.gemini.com/uniswap/manifest.json

143.204.55.44

304 Not Modified

0 B

URL HTTP/2
www.gemini.com/uniswap/manifest.json
IP
143.204.55.44:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /uniswap/manifest.json HTTP/1.1
Host: www.gemini.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
If-None-Match: "e6702264272ea85d23df038f01604fed-ssl-df"
TE: trailers

HTTP/2 304 Not Modified
date: Mon, 16 Jan 2023 21:05:00 GMT
access-control-allow-origin: *
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-nf-request-id: 01GPY521DGYERYATJZZ5ES0H83
x-xss-protection: 1; mode=block
cache-control: public, max-age=0, must-revalidate
etag: "e6702264272ea85d23df038f01604fed-ssl-df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gri-k8mTlOFiBJH7VYK6ultW0-qHIPy-M_whrIsIAYpR58_q1d7C4g==
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/static/media/logo.4a50b488.svg

3.14.40.134

200 OK

3.7 kB

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/media/logo.4a50b488.svg
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1867)
Size
3.7 kB (3740 bytes)
Hash
775747c7e8c91c97becd6e5896fb4aab
e2152fd46b87139a9209fc5716790c3d03fe7333
c124abfa72b21450979068c5d770341b596fbd18be8485097e8bc97f6a233923

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/media/logo.4a50b488.svg HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:05:00 GMT
etag: "QmbQZaDw3SUgUpf5amocsd3xE7ZzCSAgQtSznSp5j8Ydcc"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/media/logo.4a50b488.svg
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmYBGTgbFTKsT5hTy4zorGpKs2K57yWUUw3Cusze1kSDYs,QmbQZaDw3SUgUpf5amocsd3xE7ZzCSAgQtSznSp5j8Ydcc
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
content-length: 3740
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a55ed2e5ed2acc52d5d642ff70a24396
85e8fef4c1baa5690a165f4ee7a009217678264c
2bce4e342a63b3074ed9ba8f5b7e1572d4b01e8c25c5332183c663becc17ff91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116550
Date: Mon, 16 Jan 2023 21:05:00 GMT
Etag: "63c4d5e3-1d7"
Expires: Wed, 18 Jan 2023 05:27:30 GMT
Last-Modified: Mon, 16 Jan 2023 04:43:15 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: oE8m7Uwuy16R8aHlb833zSDGmNSkQUzMPC2HNWs3aUGpLm_IE6ATvA==
Age: 2655

ocsp.sca1b.amazontrust.com/

54.230.245.110

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.110:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
a55ed2e5ed2acc52d5d642ff70a24396
85e8fef4c1baa5690a165f4ee7a009217678264c
2bce4e342a63b3074ed9ba8f5b7e1572d4b01e8c25c5332183c663becc17ff91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 16 Jan 2023 21:05:00 GMT
Last-Modified: Mon, 16 Jan 2023 20:20:58 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9hx2zo_mE1SJodfUdlx9553XgOHw0vgGzY5VblmLyGHuSpN1yJUt4Q==
Age: 2642

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
112752c2221cdfddf6db9eb4556a8149
933bbc588cad8dd41dfd74ba82ee90a5d7dcc153
13359d2bdad46c676484772882ca50c82c565f7e7faf5b93f5e9faef1052e6af

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "13359D2BDAD46C676484772882CA50C82C565F7E7FAF5B93F5E9FAEF1052E6AF"
Last-Modified: Sat, 14 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8967
Expires: Mon, 16 Jan 2023 23:34:28 GMT
Date: Mon, 16 Jan 2023 21:05:01 GMT
Connection: keep-alive

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.7.204.56

200 OK

0 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.7.204.56:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 16 Jan 2023 21:05:01 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://4-11-1.uniswap-uncensored.eth.limo
access-control-max-age: 86400
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.7.204.56

200 OK

0 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.7.204.56:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 16 Jan 2023 21:05:01 GMT
content-length: 0
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://4-11-1.uniswap-uncensored.eth.limo
access-control-max-age: 86400
vary: Accept-Encoding, Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.7.204.56

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.7.204.56:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
content-type: application/json
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Content-Length: 1006
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 16 Jan 2023 21:05:01 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://4-11-1.uniswap-uncensored.eth.limo
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.7.204.56

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.7.204.56:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
content-type: application/json
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Content-Length: 1072
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 16 Jan 2023 21:05:01 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://4-11-1.uniswap-uncensored.eth.limo
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
X-Firefox-Spdy: h2

mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1

52.7.204.56

403 Forbidden

90 B

URL HTTP/2
mainnet.infura.io/v3/099fc58e0de9451d80b18d7c74caa7c1
IP
52.7.204.56:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
90 B (90 bytes)
Hash
77221fc14b85ed0fcbc3c23eac83d1a4
3da6f88380612c627ce3f144dd38f0e91c63a2bc
1264930ffa407937b1486ae664841287ada5961471c40f25e8a94d962c1d08c6

HTTP Headers

POST /v3/099fc58e0de9451d80b18d7c74caa7c1 HTTP/1.1
Host: mainnet.infura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
content-type: application/json
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Content-Length: 66
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
date: Mon, 16 Jan 2023 21:05:01 GMT
content-type: text/plain; charset=utf-8
content-length: 90
access-control-allow-origin: https://4-11-1.uniswap-uncensored.eth.limo
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08647b23-df38-4ed1-bdbd-a4fba997c933.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9304 bytes)
Hash
cff4cbad17919648f62b3582f49c404b
65b8056061916928e309bb983129353a577c2b89
f6ba13b6fd5a6a39f0a34b406b39471f02c6f5fd72813db64585a8e795ec44a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08647b23-df38-4ed1-bdbd-a4fba997c933.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9304
x-amzn-requestid: c14aa47a-3e94-491a-95ab-beae1f5bdb9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ezbKtFrIoAMFt5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c47244-3a6b3c4b4b35ba8f57aa449a;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: quy8cULp0c0o6cHatiXz8R9t9hvQyus52_hOWSReahePmcxb6hOT4A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 21:54:26 GMT
age: 83439
etag: "65b8056061916928e309bb983129353a577c2b89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tokens.coingecko.com/uniswap/all.json

104.21.74.223

200 OK

0 B

URL HTTP/2
tokens.coingecko.com/uniswap/all.json
IP
104.21.74.223:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /uniswap/all.json HTTP/1.1
Host: tokens.coingecko.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 16 Jan 2023 21:05:01 GMT
content-type: application/json; charset=UTF-8
x-amz-id-2: 9AjcWHkLW4UQm7aU7H0AQlvOxHDt0r9QuamyJJK+C2XVCxC6gP4mPuIQWk/RBcSxwMEkootqppo=
x-amz-request-id: EYQX51DXP37YHQQ6
access-control-allow-origin: *
access-control-allow-methods: GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 16 Jan 2023 12:08:01 GMT
etag: W/"edb0562bdd3f638d945864aee7e1e8c2"
x-amz-version-id: KJ7vsOL.CsW82FmNQ6xFOHUdzKEP1RFe
cache-control: max-age=1800
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CQM6i8F2CD94on6g6Wwqvp9r3Wi7YrhrN9t78%2B8B3t3IrpYF6kSWcv%2BcH6DDV%2BaycQhtfwdGvtwvvtvwfcpymaL%2F35pfzMNKylPgnTQEwMKkSNHPbRTpSRYp6i5JwcT1OE9Myv8Dkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78a9ce8aafcbb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

app.tryroll.com/tokens.json

104.18.11.70

200 OK

0 B

URL HTTP/2
app.tryroll.com/tokens.json
IP
104.18.11.70:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tokens.json HTTP/1.1
Host: app.tryroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Origin: https://4-11-1.uniswap-uncensored.eth.limo
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 16 Jan 2023 21:05:01 GMT
content-type: application/json; charset=utf-8
cf-ray: 78a9ce8a8a0eb527-OSL
access-control-allow-origin: *
cache-control: public, max-age=14400
etag: W/"3ebf-Z7wm5a51+80jZPu03IujC6jLID4"
expires: Tue, 17 Jan 2023 01:05:01 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept-Encoding
cf-cache-status: MISS
access-control-expose-headers: Authorization
x-powered-by: Express
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2

4-11-1.uniswap-uncensored.eth.limo/static/js/17.59933f10.chunk.js

3.14.40.134

200 OK

0 B

URL HTTP/2
4-11-1.uniswap-uncensored.eth.limo/static/js/17.59933f10.chunk.js
IP
3.14.40.134:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
openphish	Crypto/Wallet
fortinet	Phishing

HTTP Headers

GET /static/js/17.59933f10.chunk.js HTTP/1.1
Host: 4-11-1.uniswap-uncensored.eth.limo
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://4-11-1.uniswap-uncensored.eth.limo/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Range, User-Agent, X-Requested-With
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, X-Chunked-Output, X-Ipfs-Path, X-Ipfs-Roots, X-Stream-Output
alt-svc: h3=":8443"; ma=2592000
cache-control: max-age=300, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self';
content-type: text/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
date: Mon, 16 Jan 2023 21:05:00 GMT
etag: "QmYXvqDPJ88xhosm5J1bhhXSAVx31MdoPjjUYNUBVtV9rf"
permissions-policy: interest-cohort=(), battery=()
referrer-policy: strict-origin-when-cross-origin
server: eth.limo
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-ipfs-path: /ipfs/QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD/static/js/17.59933f10.chunk.js
x-ipfs-roots: QmRoaxLP3DZv2srDQXLXxsGQzfgkFpnFwyrN9Z6PEACJSD,QmdnJKDCkq1fSRzhJFfWNGqh66jkVso1PiGLgXx5TWczuh,QmaHyTDGZ7SHxwNpyYJsX4u9o1F6E4bXDjqCYpoEHr2Vsq,QmYXvqDPJ88xhosm5J1bhhXSAVx31MdoPjjUYNUBVtV9rf
x-true-host: 4-11-1.uniswap-uncensored.eth.limo
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (48)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

Detections

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN