| r3.o.lencr.org/ |  95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12237
Expires: Mon, 30 Jan 2023 00:57:12 GMT
Date: Sun, 29 Jan 2023 21:33:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13443
Expires: Mon, 30 Jan 2023 01:17:18 GMT
Date: Sun, 29 Jan 2023 21:33:15 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 20:35:38 GMT
content-type: application/json
age: 3457
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| pancakeswap-global.world/ |  104.21.57.14 | 301 Moved Permanently | 0 B |
URL HTTP/1.1pancakeswap-global.world/ IP104.21.57.14:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.world Domain |
GET / HTTP/1.1
Host: pancakeswap-global.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 21:33:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 29 Jan 2023 22:33:15 GMT
Location: https://pancakeswap-global.world/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pcpNjkQKg0msaxM30Flp17b63gsM0gSyl7Nz4z6zylBkG0aF5IHfgDEhEOW%2BTCJuyT3vFJvMQ2Z5YsoqLkvDCTcuXrWUSO4VjyMRlqZ56LCZ5OccHXmBbhu72LB7Xjeux9%2Fdl9M0g0%2BLo7I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791515cd8a92b51b-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash03092d1a1bc7ac91ee342a1a7ab2a562 52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a 03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10888
Expires: Mon, 30 Jan 2023 00:34:43 GMT
Date: Sun, 29 Jan 2023 21:33:15 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iAVqOSUorLE8LNyguJtdFYFqCTGYEBU+jaGSlUUKq+6EtxuFpmSUvBsTE5/6rFVZCVTAHGon2kflbls3OU1rlg==
x-amz-request-id: CSBGNYBRNTAANPBF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 21:21:32 GMT
age: 703
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 21:33:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/8v5u5E0iNq0 | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/8v5u5E0iNq0 IP142.250.74.131:0
Hash48d095fbf8917b165c0d4fcab4ba171f 70e02662ad1d069856329498172d1abb7d796406 f03dd3a7d15d3a73bd27309f01c8883ebc1cb1139ccddeca00e3de21026f4b14
POST /s/gts1p5/8v5u5E0iNq0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 20:41:41 GMT
age: 3095
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10272
Expires: Mon, 30 Jan 2023 00:24:28 GMT
Date: Sun, 29 Jan 2023 21:33:16 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/s/gts1p5/8v5u5E0iNq0 | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/8v5u5E0iNq0 IP142.250.74.131:0
Hash48d095fbf8917b165c0d4fcab4ba171f 70e02662ad1d069856329498172d1abb7d796406 f03dd3a7d15d3a73bd27309f01c8883ebc1cb1139ccddeca00e3de21026f4b14
POST /s/gts1p5/8v5u5E0iNq0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.184.102.146 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.184.102.146:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +J4FUPm4Bx4lQ6XPWrmIAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d/y/r4bljoZRTeebBHh34rnLTfQ=
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash0523be89b6b364b958419f3a197fe589 52a751e0ab966e588de1992028d2d1c59074e768 38a699a1606afe6f9cf4903d53a2d3f69f17411f5efe785d907901a8a8d8ef1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=89885
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:16 GMT
Etag: "63d5a239-118"
Expires: Mon, 30 Jan 2023 22:31:21 GMT
Last-Modified: Sat, 28 Jan 2023 22:31:21 GMT
Server: nginx
Content-Length: 280
|
|
| pancakeswap-finance.pro/ABI.js | 172.67.196.204 | 200 OK | 1.6 kB |
URL HTTP/2pancakeswap-finance.pro/ABI.js IP172.67.196.204:0
File typeASCII text, with very long lines (4230) Hash488b67cc6a2f9b6541ff03aeaec81fe8 5ff5916c07353ab9339f7b3ad51f941492ed923b 31f2ba1131110e2668d3e8ca97db7249d413408bab466ef77b880c617417b7f0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /ABI.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:22 GMT
vary: Accept-Encoding
etag: W/"63d5056e-338e"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=41LCcrM7FoNa3G8iSOYRKVENwB0k%2FrpfHf3v%2FlrLunK4aq24sFjv40LCsPJDri%2Fra1itSJZNkRu0kD0VNwUzSfOL1RPYOgRHxK3xC99UDxkLU8WVLIeGYoqPF%2F6Ws7%2BjEBiNhTZD6m%2Bn7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f6e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash7de98e735e8879d5bdcdbc5847a7851d 466cb8e39c512fc7f89c10d0821940b727cf37f1 21e7666c5f76ba364ffcb56265bb520fd285b1ad42b87dc7ed3cbd38b37fa48e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5359
Cache-Control: max-age=87666
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:17 GMT
Etag: "63d584a0-116"
Expires: Mon, 30 Jan 2023 21:54:23 GMT
Last-Modified: Sat, 28 Jan 2023 20:25:04 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
|
|
| cdn.jsdelivr.net/npm/@sweetalert2/theme-dark@4/dark.css | 151.101.1.229 | 200 OK | 4.8 kB |
URL HTTP/2cdn.jsdelivr.net/npm/@sweetalert2/theme-dark@4/dark.css IP151.101.1.229:0
File typeASCII text, with very long lines (377) Hash54a49c04bc2431247cd7e268b7a0c5ed 51debf163a7021c984fb4cd6ddbd5ac5bf77f065 dc26abf33c6187436e9626039cee7c82578b77bfa7a8a8aecfcbc0d6cda289d3
GET /npm/@sweetalert2/theme-dark@4/dark.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.0.5
x-jsd-version-type: version
etag: W/"7a08-GAukVXl4Oi44Tpj4w8VOEfgRHAs"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 21:33:17 GMT
age: 9298
x-served-by: cache-fra-eddf8230055-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4754
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js | 104.17.24.14 | 200 OK | 591 B |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (1266) Hash414869f16aa77a65b4928a018f7f1abb cea521f7a2958a50239526ed6b068f0937527653 afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7621890
expires: Fri, 19 Jan 2024 21:33:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NbaUpRtYfjaL0M66Gaxqq7wbQ%2FEdK59x0Pl3svbGLYKkR1YDTNH1jWguj4bu%2BJ8dIqDf%2Br%2FCXbJNmaQjkojo4iMdGToTMgT4PRtOwWx4mvxUVCIe0TMJVym%2FxKNsRYbKGQH95JP0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 791515d858ea1c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 312 B |
IP93.184.220.29:0
Hash1a06b6a4d92e579a840b0a01c9fa0261 6034e0cd23558aea24d31eb406a9aa906d36f871 bffc1bdfbafe3a42a1748dacde05863c58d4c8bf7f358f7b53c266ebebce04ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5375
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:17 GMT
Etag: "63d6750d-138"
Last-Modified: Sun, 29 Jan 2023 20:03:42 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
|
|
| code.jquery.com/jquery-3.6.0.min.js | 69.16.175.42 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.6.0.min.js IP69.16.175.42:0
File typeASCII text, with very long lines (65447) Hash899f0189aaf034bbba5340f724d91dfa 210ea9de03968edb9d839ba4a0ce2d48666a8ab8 949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675027997.dop066.sk1.t,1675027997.cds249.sk1.hn,1675027997.cds210.sk1.c
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/ethereum/web3.js/dist/web3.min.js | 151.101.1.229 | 200 OK | 372 kB |
URL HTTP/2cdn.jsdelivr.net/gh/ethereum/web3.js/dist/web3.min.js IP151.101.1.229:0
File typeASCII text, with very long lines (64135) Size372 kB (372383 bytes) Hashe52ec98736587eb17261fd20d02006ff 4ff6bb11e3944a495c162e3b685b6481c1ace575 ab9e2794a763856e4a7d3c4ecb4d30d2bc80af19babe08df1a8f21dc9b3f6494
GET /gh/ethereum/web3.js/dist/web3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"13b809-XwSuevaXcvR48RWY2ysOS+KLNSc"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 21:33:17 GMT
age: 15096
x-served-by: cache-fra-eddf8230061-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 372383
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js | 151.101.1.229 | 200 OK | 280 B |
URL HTTP/2cdn.jsdelivr.net/gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js IP151.101.1.229:0
Hash5d97de74ccf2a176dbb479781e670d3b c7b9a2cc32b20ded7a7e51907ed35c5e864158f9 d1fc0a0068a630be8fd6e727903ba46edd91755a8ac9e8061a5d1662c8d80bc0
GET /gh/ethereumjs/browser-builds/dist/ethereumjs-tx/ethereumjs-tx-1.3.3.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"4edeb-1sQW5dFT9QD3rGbSWitz20WGetQ"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 21:33:17 GMT
age: 42155
x-served-by: cache-fra-eddf8230099-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 97784
X-Firefox-Spdy: h2
|
|
| github.com/WalletConnect/walletconnect-monorepo/releases/download/1.7.8/web3-provider.min.js | 140.82.121.4 | 302 Found | 0 B |
URL HTTP/2github.com/WalletConnect/walletconnect-monorepo/releases/download/1.7.8/web3-provider.min.js IP140.82.121.4:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WalletConnect/walletconnect-monorepo/releases/download/1.7.8/web3-provider.min.js HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: GitHub.com
date: Sun, 29 Jan 2023 21:31:46 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://objects.githubusercontent.com/github-production-release-asset-2e65be/146185516/095e5946-fd7e-4702-9421-c3966c4c6efd?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20230129%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20230129T213146Z&X-Amz-Expires=300&X-Amz-Signature=8609ffdec909bee34af84cea2b1babdadd346ecb3807630bf40f0fbb865ca29b&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=146185516&response-content-disposition=attachment%3B%20filename%3Dweb3-provider.min.js&response-content-type=application%2Foctet-stream
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com objects-origin.githubusercontent.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events *.actions.githubusercontent.com wss://*.actions.githubusercontent.com online.visualstudio.com/api/v1/locations github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com media.githubusercontent.com camo.githubusercontent.com identicons.github.com avatars.githubusercontent.com github-cloud.s3.amazonaws.com objects.githubusercontent.com objects-origin.githubusercontent.com secured-user-images.githubusercontent.com/ opengraph.githubassets.com github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: C308:8AB4:155361F:164B6A3:63D6E61D
X-Firefox-Spdy: h2
|
|
| unpkg.com/web3modal@1.9.7/dist/index.js | 104.16.126.175 | 200 OK | 188 kB |
URL HTTP/2unpkg.com/web3modal@1.9.7/dist/index.js IP104.16.126.175:0
File typeASCII text, with very long lines (49679) Size188 kB (187566 bytes) Hash0fad72841ec5b3f42acc3a9d0cdf8ce5 b0d6ed508089a0c0299089be94605d350bc4b3f6 a9aae41ad86d72ce40ded27942cd923e1ed65e3ca40853880bd7089ce441fc3f
GET /web3modal@1.9.7/dist/index.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"6c69d-zeBw22Gdht1oUlXQxD5c1cyWnKs"
via: 1.1 fly.io
fly-request-id: 01GQRA9FNJZAV9BF1661ZKB6A8-fra
cf-cache-status: HIT
age: 248391
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791515d81ef9b4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash0523be89b6b364b958419f3a197fe589 52a751e0ab966e588de1992028d2d1c59074e768 38a699a1606afe6f9cf4903d53a2d3f69f17411f5efe785d907901a8a8d8ef1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:17 GMT
Server: ECS (amb/6B77)
Content-Length: 280
|
|
| pancakeswap-finance.pro/_next/static/chunks/8421-84c18b8102f54343.js | 172.67.196.204 | 200 OK | 5.3 kB |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/8421-84c18b8102f54343.js IP172.67.196.204:0
File typeASCII text, with very long lines (678) Hash3d07ffdb6a298e0f71682994d6f50335 8613a27c0f9ae0cd01e76b39473227912c49486f 41def394472860227ae5f7703db590dc5b3da2a9b598e99d4ecc9a3a59e64b5f
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/8421-84c18b8102f54343.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:34 GMT
vary: Accept-Encoding
etag: W/"63d5057a-4473"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tK1zsHMAFLlC7USGDseOuGWgyuC9fkJprYcqQ1jrP2A1DF60gXkEUU0QWnVR4MA7zx06jMSTYraekO2bLFIbwlsT05YZsZ4K1RlFwXBQbJQa81iSPPs%2FtT6ovWYOrL1UzaBKaOLOn%2Fdyaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d79f820b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/497-1cc4264a8da597ad.js | 172.67.196.204 | 200 OK | 4.3 kB |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/497-1cc4264a8da597ad.js IP172.67.196.204:0
File typeASCII text, with very long lines (10472) Hashaed99675696dd2382cc1bad301a71a97 aef6e6c936399bfd1325c373cd263ca81198cad4 df4ffdff1545c6b9d2ef5c981c25366850e776a29a26ba684771b186b846e22c
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/497-1cc4264a8da597ad.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:52 GMT
vary: Accept-Encoding
etag: W/"63d5058c-2919"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aB1ggIVWXkP9RuGw7wjSdssNuXqyhIqnqB4HrU1URrpwVHo8xhAtyI7kFdeaqlEJU1NEHlwSiLAoTpqNyFNvIIeol3lh1p%2B72qGd5%2FrQJBF1Zj%2BzW36gcS6jBbKvLPEejuyXJbjjQLbgJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d79f850b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4c77437e3a7361861aed8bfecbfe6bd6 fefd238c13c0fdfb7d964c90fcc8a8cbbf953034 282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVpetFv-oAMF_Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 14:55:48 GMT
age: 23849
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/pages/index-e3ae967b1e87d25d.js | 172.67.196.204 | 200 OK | 40 kB |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/pages/index-e3ae967b1e87d25d.js IP172.67.196.204:0
File typeASCII text, with very long lines (65536), with no line terminators Hashbade155776615ab62790e53169f19357 de95c8c5c9ea9b99669df730afe310a83034a862 788dadb7caa32e3732ab339b148b6926443be0366a61d8f58c795ca2a2443639
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/pages/index-e3ae967b1e87d25d.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:23:07 GMT
vary: Accept-Encoding
etag: W/"63d5059b-1a2b8"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3du1TqR%2Bcmb87FgHAAJiva4ukaUHNlBDg027O3l8U%2B1OiHJV30gsQ5ZcAawXvPNDrTFpa8MxjVk1WbJXfksEQtE1k702yvOtadrDSq4xef39Z43w6rr8JPr1576r8LU8ttkLb4uMQhQiQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d7af990b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/css/a44858f555419d49.css | 172.67.196.204 | 200 OK | 23 kB |
URL HTTP/2pancakeswap-finance.pro/_next/static/css/a44858f555419d49.css IP172.67.196.204:0
File typeASCII text, with very long lines (65536), with no line terminators Hash8148f842c64f5d0d666c27d35b883519 1969d76cc1a5de4f8ba1f036725c67693a775831 b40e89984d4fe20dab3eba35e9622713eef14a5fe66592f73b64b18b5545eab2
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | |
GET /_next/static/css/a44858f555419d49.css HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 11:22:31 GMT
vary: Accept-Encoding
etag: W/"63d50577-43641"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1fa8BwduIZ8O63HQOeeAYcyH9uU7spaGWXX2b%2Fxh9aWytV%2FQH%2FpYoCbcIWhyibKGtHN%2BG5M4XL3RzW0Ft7C6K2pY8gJtOf8sNWIv3YuJqUmxrw7t%2Bl640wgeNLc8RTWHmwtjRTP3ISdeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f780b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash10a6491e2c1dfde68c7cd7297e70700f d0f195319825a6d3e5e50ad15b2fcab27cb65896 4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 63122
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 84991
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3be81f83687ddb6c93d3ff3c09a9dba2 50a48e737310d3f31840db4301b25927fbcc12c5 e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 2820
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| objects.githubusercontent.com/github-production-release-asset-2e65be/146185516/095e5946-fd7e-4702-9421-c3966c4c6efd?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20230129%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20230129T213146Z&X-Amz-Expires=300&X-Amz-Signature=8609ffdec909bee34af84cea2b1babdadd346ecb3807630bf40f0fbb865ca29b&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=146185516&response-content-disposition=attachment%3B%20filename%3Dweb3-provider.min.js&response-content-type=application%2Foctet-stream | 185.199.111.133 | 200 OK | 747 kB |
URL HTTP/2objects.githubusercontent.com/github-production-release-asset-2e65be/146185516/095e5946-fd7e-4702-9421-c3966c4c6efd?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20230129%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20230129T213146Z&X-Amz-Expires=300&X-Amz-Signature=8609ffdec909bee34af84cea2b1babdadd346ecb3807630bf40f0fbb865ca29b&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=146185516&response-content-disposition=attachment%3B%20filename%3Dweb3-provider.min.js&response-content-type=application%2Foctet-stream IP185.199.111.133:0
File typeASCII text, with very long lines (50859) Size747 kB (747143 bytes) Hash29fb92b3430a91e0f677a5f852800627 2c0d22ddc0bb82f5b7cd3085650e8457f9aa229e 968d103baade1160c2e2d096bcdeb0ad70400b2b2e92df06bd6e6e0c7b5f4dba
GET /github-production-release-asset-2e65be/146185516/095e5946-fd7e-4702-9421-c3966c4c6efd?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIWNJYAX4CSVEH53A%2F20230129%2Fus-east-1%2Fs3%2Faws4_request&X-Amz-Date=20230129T213146Z&X-Amz-Expires=300&X-Amz-Signature=8609ffdec909bee34af84cea2b1babdadd346ecb3807630bf40f0fbb865ca29b&X-Amz-SignedHeaders=host&actor_id=0&key_id=0&repo_id=146185516&response-content-disposition=attachment%3B%20filename%3Dweb3-provider.min.js&response-content-type=application%2Foctet-stream HTTP/1.1
Host: objects.githubusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-md5: KfuSs0MKkeD2d6X4UoAGJw==
last-modified: Tue, 26 Apr 2022 10:12:16 GMT
etag: "0x8DA276D3DC9A6B7"
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: d674d81d-901e-0044-1229-34a85a000000
x-ms-version: 2020-04-08
x-ms-creation-time: Tue, 26 Apr 2022 10:12:16 GMT
x-ms-lease-status: unlocked
x-ms-lease-state: available
x-ms-blob-type: BlockBlob
content-disposition: attachment; filename=web3-provider.min.js
x-ms-server-encrypted: true
fastly-restarts: 1
accept-ranges: bytes
date: Sun, 29 Jan 2023 21:33:18 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1624-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675027998.959021,VS0,VE237
content-length: 747143
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5b9943d0ede56f4621a69e0c208f0f00 0aab9fec24b3b22055cb7e2be40712c2cb885927 b2c45fa40739c489125fb9150a94900f1ab59b8e2bf646e69c77ef3ee17ba9f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C45FA40739C489125FB9150A94900F1AB59B8E2BF646E69C77EF3EE17BA9F0"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2612
Expires: Sun, 29 Jan 2023 22:16:50 GMT
Date: Sun, 29 Jan 2023 21:33:18 GMT
Connection: keep-alive
|
|
| o1092725.ingest.sentry.io/api/6111410/envelope/?sentry_key=a4797c598e50403f8b4105fe5a0edb46&sentry_version=7&sentry_client=sentry.javascript.react%2F7.11.0 | 34.120.195.249 | 403 Forbidden | 56 B |
URL HTTP/2o1092725.ingest.sentry.io/api/6111410/envelope/?sentry_key=a4797c598e50403f8b4105fe5a0edb46&sentry_version=7&sentry_client=sentry.javascript.react%2F7.11.0 IP34.120.195.249:0
File typeJSON data\012- , ASCII text, with no line terminators Hash6e5a3e5ff236fe99535092d7096ceddc 92a5db65cbedf687ee76693e9b89b9d6ca417b61 7c1e2d0f6a27b6701cbfc14d4b2c6863a2de1753603e0eafaf1a1c42a4e22b65
POST /api/6111410/envelope/?sentry_key=a4797c598e50403f8b4105fe5a0edb46&sentry_version=7&sentry_client=sentry.javascript.react%2F7.11.0 HTTP/1.1
Host: o1092725.ingest.sentry.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pancakeswap-finance.pro/
Content-Type: text/plain;charset=UTF-8
Origin: https://pancakeswap-finance.pro
Content-Length: 459
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: nginx
date: Sun, 29 Jan 2023 21:33:18 GMT
content-type: application/json
content-length: 56
access-control-allow-origin: https://pancakeswap-finance.pro
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
x-envoy-upstream-service-time: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5b9943d0ede56f4621a69e0c208f0f00 0aab9fec24b3b22055cb7e2be40712c2cb885927 b2c45fa40739c489125fb9150a94900f1ab59b8e2bf646e69c77ef3ee17ba9f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B2C45FA40739C489125FB9150A94900F1AB59B8E2BF646E69C77EF3EE17BA9F0"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2612
Expires: Sun, 29 Jan 2023 22:16:50 GMT
Date: Sun, 29 Jan 2023 21:33:18 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdb3290a85d0ba4da27406ae9636aa618 4c69da45eddd66a1e26fce5562fc45eda7005309 19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/kanit/v12/nKKZ-Go6G5tXcraVGwCKd6xB.woff2 | 216.58.207.227 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/kanit/v12/nKKZ-Go6G5tXcraVGwCKd6xB.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 10488, version 1.0\012- data Hash1e7dc2e0d7e34885edd7c0b49f2197ca 527e385a85a99deb76af78c085c4cdaf03371224 b8e828b293b8d5be889bc7586ce53d086745650e2a3715d7d7c2dd296be85756
GET /s/kanit/v12/nKKZ-Go6G5tXcraVGwCKd6xB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10488
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 14:05:38 GMT
expires: Wed, 24 Jan 2024 14:05:38 GMT
cache-control: public, max-age=31536000
age: 458860
last-modified: Tue, 26 Apr 2022 14:55:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 117 kB |
IP142.250.74.131:0
Size117 kB (116746 bytes) Hash1bde4ce287fcc86de90ba6fe48a170e1 6deb63428de150d3d94420d95dca39ad4805509d 0f4a560fefa30ba41b9c9e86d73f7856b1554c85c94d0b5ca8a159d8d0bd904d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashba2ca6af7b23ce2e11aa4f9d86e66269 212aef55d64b6add292dcf6241b16e7c93d1bae2 f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TLF66T4 | 142.250.74.40 | 200 OK | 50 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TLF66T4 IP142.250.74.40:0
File typeASCII text, with very long lines (9342) Hashb0754b90b052cd6a4b41c75bc709db39 25bbbe61275ea90be4158c48d78538a4942019a2 23785073298890e82544ff7ab9f359ccd461237989c0d285b7459ff63a214221
GET /gtm.js?id=GTM-TLF66T4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 21:33:19 GMT
expires: Sun, 29 Jan 2023 21:33:19 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50288
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/JfZVfWOl9R_B8vbprJmWb/_ssgManifest.js | 172.67.196.204 | 200 OK | 674 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/JfZVfWOl9R_B8vbprJmWb/_ssgManifest.js IP172.67.196.204:0
File typeASCII text, with very long lines (498), with no line terminators Hashb585c7eed22c4ba29bcb3ffe23e5dcb4 d611650e3f224c8572589d99afcd033ced78f822 5eea8ae436a937fae309f4ff67a71248576695cb4961cc9c951c337b0c164cd9
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/JfZVfWOl9R_B8vbprJmWb/_ssgManifest.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:23:00 GMT
etag: W/"63d50594-1f2"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mGgqzzKGiNdMKM%2Fu1Gv8TEJnNZ%2F4izBP0jAMtbIwBdW35XV1ejJZQ6L%2FqUVoN3gzBhMr3ZOfID2eqJ3rmTOyab%2BsOCWeT7ilH1AjbQRRAweAie57SCEvM939WnZpYcos5vlsoezkRXVlYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791515d7dfc30b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aptos.pancakeswap.finance/images/apt.png | 76.76.21.61 | 200 OK | 808 B |
URL HTTP/2aptos.pancakeswap.finance/images/apt.png IP76.76.21.61:0
File typePNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data Hash74168d688d61e90d33aa8c00dbc38d76 9dba71d2bd1ae649f81a36a966faad7049cf705a 260092dadbeeabbf5bc49e2cec9342dcdc2e0a561d9dc24cb290eab6021ec7b4
GET /images/apt.png HTTP/1.1
Host: aptos.pancakeswap.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
age: 285477
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="apt.png"
content-type: image/png
date: Sun, 29 Jan 2023 21:33:19 GMT
etag: "74168d688d61e90d33aa8c00dbc38d76"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /images/apt.png
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::dkgc5-1675027999127-765d76b38f93
content-length: 808
X-Firefox-Spdy: h2
|
|
| aptos.pancakeswap.finance/images/apt.png | 76.76.21.61 | 304 Not Modified | 0 B |
URL HTTP/2aptos.pancakeswap.finance/images/apt.png IP76.76.21.61:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/apt.png HTTP/1.1
Host: aptos.pancakeswap.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: "74168d688d61e90d33aa8c00dbc38d76"
TE: trailers
HTTP/2 304 Not Modified
cache-control: public, max-age=0, must-revalidate
date: Sun, 29 Jan 2023 21:33:19 GMT
server: Vercel
x-vercel-cache: HIT
x-vercel-id: arn1::6f4gk-1675027999449-f4c6175b8cd7
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWnVaFrNlJz.woff2 | 216.58.207.227 | 200 OK | 11 kB |
URL HTTP/2fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWnVaFrNlJz.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 10616, version 1.0\012- data Hash2111865e87bcb5b99c30c9232bcec51b d3df3907f6ed136c22bc60b5db4683ef3bfba2c0 85dc41bd3bee74bc4b2aefdbbd2b1ebb2a61d5711bcbc6836533dbd037e49f41
GET /s/kanit/v12/nKKU-Go6G5tXcr5KPxWnVaFrNlJz.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10616
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 04:15:59 GMT
expires: Mon, 29 Jan 2024 04:15:59 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 14:50:31 GMT
content-type: font/woff2
age: 62240
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPyWj.woff | 216.58.207.227 | 200 OK | 66 kB |
URL HTTP/2fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPyWj.woff IP216.58.207.227:0
File typeWeb Open Font Format, TrueType, length 65592, version 1.1\012- data Hashc19c4d3bc8b38f17e8a84ba50c39f967 52d648dea8e76c97f76af8f26d417d32b5333cfc 2b0818f246a224870a004de1332243ff0fdde0b04bc3fcb131456afed6250009
GET /s/kanit/v12/nKKU-Go6G5tXcr5KPyWj.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 65592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:05:57 GMT
expires: Sat, 27 Jan 2024 02:05:57 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 14:50:35 GMT
content-type: font/woff
age: 242842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWpVaFrNlJzIu4.woff2 | 216.58.207.227 | 200 OK | 9.4 kB |
URL HTTP/2fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWpVaFrNlJzIu4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 9440, version 1.0\012- data Hash76d81426be43fec2eb6d25ade4954cc7 9c264d549237efb14369dfb9d6212ece622d50c2 6f3bf7d91a4c92e4107c7f32806c096465131fe0e2985c8d51c05008f9583dea
GET /s/kanit/v12/nKKU-Go6G5tXcr5KPxWpVaFrNlJzIu4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:05:57 GMT
expires: Sat, 27 Jan 2024 02:05:57 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 14:50:33 GMT
content-type: font/woff2
age: 242842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 920 B |
IP93.184.220.29:0
Hasha974b97d3cbda97aedb217dffc37cfab 55c82592b57c4b3c94aaf5e9ab3a7974da4c3ba6 5162fb18436f3886c57ee8274682548e51f9aa003117557e0d96ec79d2c7ec83
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5648
Cache-Control: max-age=111696
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:19 GMT
Etag: "63d5e15f-116"
Expires: Tue, 31 Jan 2023 04:34:55 GMT
Last-Modified: Sun, 29 Jan 2023 03:00:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashddb80db929b6e756bca62785e3495254 2bf459fffe0d31a4477e962dc4a9c0b11c65fa71 a90924915f367a4e235a8fd65367ba94c5ca626689808a8391248cabe093f5dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2595
Cache-Control: max-age=108643
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:19 GMT
Etag: "63d5e15f-116"
Expires: Tue, 31 Jan 2023 03:44:02 GMT
Last-Modified: Sun, 29 Jan 2023 03:00:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
|
|
| hub.snapshot.org/graphql | 104.26.13.125 | 204 No Content | 0 B |
IP104.26.13.125:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /graphql HTTP/1.1
Host: hub.snapshot.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 29 Jan 2023 21:33:19 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type
access-control-max-age: 86400
x-do-app-origin: 9134fcd0-e6bb-11ec-b1dc-0c42a19a82a7
cache-control: private
x-do-orig-status: 204
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Au6fsn7HVLbM%2FEYizehWOpAKDuaI1ft15l2E4jqx3Max2%2FRwOaEZSpWGc5cGopEsA1DB5Q6OnsGoI9jx4cgoirgx8TpNfaeQeMQRR6aRPCK2ycnFWoKmYIcV9Fi4n1aTeXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515e5bf9b0afe-OSL
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/7506-05352921e8f0081a.js | 172.67.196.204 | 200 OK | 49 kB |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/7506-05352921e8f0081a.js IP172.67.196.204:0
File typeASCII text, with very long lines (65536), with no line terminators Hash772adc337b4f0c691771942de54ff82d 56a157012cef9acf8eae3eebe876a41ca0166722 79ced840f6d3df82a4a33a8eefcf488ae8b3c062d900ec2f1adcb40e045bb30b
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/7506-05352921e8f0081a.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:44 GMT
vary: Accept-Encoding
etag: W/"63d50584-17f57"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXrFubdZIWXBEBz7t%2FfWhDMTsPksl%2BVZDmNu9AzAYSe71Sij7xFXSwF7bqRyOXPCVJkUS8unDFlvkgO0TQx%2F%2Fz0%2Bdi0hy5JFKayoNV1yyGVrsgp7OL36voMrpzqpVQSDLvh931f4Iaf1mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d79f840b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| hub.snapshot.org/graphql | 104.26.13.125 | 200 OK | 25 B |
IP104.26.13.125:0
File typeJSON data\012- , ASCII text, with no line terminators Hashcdc8512ced83004a90115850c9b5608b b6eb57230b2dc1f0e7ba40ab793e36bda69eed09 699671a256296a7dda710792eb11c9dc11bb7087387f2ef3057e17e5e669cda4
POST /graphql HTTP/1.1
Host: hub.snapshot.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 494
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:19 GMT
content-type: application/json; charset=utf-8
content-length: 25
x-powered-by: Express
access-control-allow-origin: *
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
x-ratelimit-reset: 1675028002
etag: W/"19-tutXIwstwfDnukCreT42vaae7Qk"
x-do-app-origin: 9134fcd0-e6bb-11ec-b1dc-0c42a19a82a7
cache-control: private
x-do-orig-status: 200
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yF5WKOAZwoahupNxDbAcGMW8nb19T9KJNBVY7Pvr6cCWDQONYDvc7zmhqc51PoaClanMCCZCJOidIsYC7ggwUxLWNQ%2F7T0YUjQxoa7U3eFwsNP1JqC0%2Fj%2FOzhzk7xwm84Qw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515e698a50afe-OSL
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWoVaFrNlJzIu4.woff2 | 216.58.207.227 | 200 OK | 3.8 kB |
URL HTTP/2fonts.gstatic.com/s/kanit/v12/nKKU-Go6G5tXcr5KPxWoVaFrNlJzIu4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 3796, version 1.0\012- data Hash60190c2f7f05588d699599181e987b52 2c283383eef4bc77e22e0128817bf527b2235e8a 56efc708a47be9c51cb6d68651edf3df6497225384dd4c5068bfb9fbd150607e
GET /s/kanit/v12/nKKU-Go6G5tXcr5KPxWoVaFrNlJzIu4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 3796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 04:17:40 GMT
expires: Mon, 29 Jan 2024 04:17:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 14:50:30 GMT
content-type: font/woff2
age: 62140
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 54.230.245.110 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP54.230.245.110:0
Hash39d986ddd8da508ead02171ba7a59623 ad25474a527034db32f65b953c958fa6763db354 d9b6d44e26a311dcba9ec980b20e63460957c92b56a81953ed4aad39a5d9016e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107912
Date: Sun, 29 Jan 2023 21:33:20 GMT
Etag: "63d5d35e-1d7"
Expires: Tue, 31 Jan 2023 03:31:52 GMT
Last-Modified: Sun, 29 Jan 2023 02:01:02 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 17xRZMc9fY2TF1XFzyNznHorK2ptOvPsAXLPLmasU2k-7f-7oUVk8A==
Age: 5450
|
|
| vitals.vercel-insights.com/v1/vitals |  52.213.199.227 | 200 OK | 2 B |
URL HTTP/2vitals.vercel-insights.com/v1/vitals IP52.213.199.227:0
File typeASCII text, with no line terminators Hashe0aa021e21dddbd6d8cecec71e9cf564 9ce3bd4224c8c1780db56b4125ecf3f24bf748b7 565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/vitals HTTP/1.1
Host: vitals.vercel-insights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 153
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:20 GMT
content-type: text/plain; charset=utf-8
content-length: 2
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashcadf20c1d89c59fdd0b429db29fca4a6 50a3e645fd497d2ec7724c02996550ad27d036f9 0de95720f2d874ea9e9160e821b982b38ac912d883d2483ddbc342e2c1d55898
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:20 GMT
Etag: "63d643d7-117"
Server: ECS (amb/6B77)
Content-Length: 279
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 23 kB |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc9a87371e3580fc9e2f0ed1c56db60a7 daeac81c70d9b508196756a1ae2bea161039f977 cc69c9dd4d3bfe09db5dd175c79ebeec49de3ece469bca97b72013e7b4b50a12
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C1DBB8D8B3541203C2C37E06384B86C7F64F20002F9868688B4AFBB36BA8739"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1918
Expires: Sun, 29 Jan 2023 22:05:18 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 654 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashec0b3253a61096d4a45daba7b9c3b335 e4ab69ff056520cf5ffacf8c1647e36b8c4446f8 6ee24e8fd5de14ad6877574983b98becc83508cbe71eaaf78311622f6ad45720
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C1DBB8D8B3541203C2C37E06384B86C7F64F20002F9868688B4AFBB36BA8739"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1965
Expires: Sun, 29 Jan 2023 22:06:05 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| g.bridge.walletconnect.org/?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 |  3.120.133.209 | 200 OK | 0 B |
URL HTTP/2g.bridge.walletconnect.org/?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 IP3.120.133.209:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 HTTP/1.1
Host: g.bridge.walletconnect.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pancakeswap-finance.pro
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CjCPkEjxDz47ESi/MfIdGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/2 200 OK
sec-websocket-accept: V5uG6bX8BdzFeblP+WwDv9Qmw/k=
date: Sun, 29 Jan 2023 21:33:19 GMT
X-Firefox-Spdy: h2
|
|
| 1.bridge.walletconnect.org/?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 | 3.122.104.17 | 200 OK | 0 B |
URL HTTP/21.bridge.walletconnect.org/?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 IP3.122.104.17:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?env=browser&host=pancakeswap-finance.pro&protocol=wc&version=1 HTTP/1.1
Host: 1.bridge.walletconnect.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pancakeswap-finance.pro
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NYWD/xF8weL4+Lkv98e6Dg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/2 200 OK
sec-websocket-accept: SD1B3LcQplVk/AljeIW05gEwhr4=
date: Sun, 29 Jan 2023 21:33:19 GMT
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.46 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.46:0
Hash01456c256c660fe3c8839fb740bb0167 c56470bdf8320d3d7c18c3227cbec85b6e0945b5 9a52a6e79776212355cabb095aa89c5642daca136a4e3b47a57307ba231fa2e6
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 19:45:20 GMT
expires: Sun, 29 Jan 2023 21:45:20 GMT
cache-control: public, max-age=7200
age: 6480
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash169e278e206a6f58c802cc94f17bf945 6b44840fbee95fcb1276742d0d0c8bd324295e52 e9b3d7eb12a3b535c5b1c8bc0536bb9204c258a2617b95dcaa77cff0adf8e388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9B3D7EB12A3B535C5B1C8BC0536BB9204C258A2617B95DCAA77CFF0ADF8E388"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=912
Expires: Sun, 29 Jan 2023 21:48:32 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash169e278e206a6f58c802cc94f17bf945 6b44840fbee95fcb1276742d0d0c8bd324295e52 e9b3d7eb12a3b535c5b1c8bc0536bb9204c258a2617b95dcaa77cff0adf8e388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9B3D7EB12A3B535C5B1C8BC0536BB9204C258A2617B95DCAA77CFF0ADF8E388"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=912
Expires: Sun, 29 Jan 2023 21:48:32 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| www.walletlink.org/rpc | 104.18.9.208 | 101 Switching Protocols | 6.5 kB |
IP104.18.9.208:0
Hashbbefdc69a0e3005ef6004d62b824d4ce d1843b7549665a3717d71a97f21ef8925c17d22d b9df9ccb09616043a9e36eb7cdf0087e3e036821f64d484c7ce646aca7b2015d
GET /rpc HTTP/1.1
Host: www.walletlink.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://pancakeswap-finance.pro
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aN/tr0bdEomojuZNrPIK0A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f480G9yMazeaKCdV8rWtIYQizDk=
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791515e9f915b4e8-OSL
|
|
| api.thegraph.com/subgraphs/name/pancakeswap/pottery | 104.18.39.222 | 200 OK | 5 B |
URL HTTP/2api.thegraph.com/subgraphs/name/pancakeswap/pottery IP104.18.39.222:0
Hash2d41e7108bead29bc63902ae43e3e30a 6e56915180b6e7d694b79be84024325b34e1067b 4597574696dd707d0eaac7e2c44a1120973c5c1905ee1694d66f5ff19aaede20
OPTIONS /subgraphs/name/pancakeswap/pottery HTTP/1.1
Host: api.thegraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:19 GMT
content-type: text/html
cf-ray: 791515e5cfa80afe-OSL
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, User-Agent
access-control-allow-methods: GET, OPTIONS, POST
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash169e278e206a6f58c802cc94f17bf945 6b44840fbee95fcb1276742d0d0c8bd324295e52 e9b3d7eb12a3b535c5b1c8bc0536bb9204c258a2617b95dcaa77cff0adf8e388
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9B3D7EB12A3B535C5B1C8BC0536BB9204C258A2617B95DCAA77CFF0ADF8E388"
Last-Modified: Sat, 28 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=912
Expires: Sun, 29 Jan 2023 21:48:32 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5cd0a118056f767132e86b4302d827ce e12e3baa59c5180aadac4f7e684cd19eb2039725 8a54dfd60462254f83eb5b4dd37f29777f9ca51315ea9b4864a39e160268bebe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A54DFD60462254F83EB5B4DD37F29777F9CA51315EA9B4864A39E160268BEBE"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6862
Expires: Sun, 29 Jan 2023 23:27:42 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5cd0a118056f767132e86b4302d827ce e12e3baa59c5180aadac4f7e684cd19eb2039725 8a54dfd60462254f83eb5b4dd37f29777f9ca51315ea9b4864a39e160268bebe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8A54DFD60462254F83EB5B4DD37F29777F9CA51315EA9B4864A39E160268BEBE"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13695
Expires: Mon, 30 Jan 2023 01:21:35 GMT
Date: Sun, 29 Jan 2023 21:33:20 GMT
Connection: keep-alive
|
|
| rpc.ankr.com/eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca | 104.18.35.56 | 200 OK | 0 B |
URL HTTP/2rpc.ankr.com/eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca IP104.18.35.56:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:20 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: https://pancakeswap-finance.pro
access-control-allow-headers: content-type
access-control-allow-methods: GET,POST,DELETE,OPTIONS
access-control-max-age: 86400
x-multirpc-response-type: 0
vary: Accept-Encoding
server: cloudflare
cf-ray: 791515ed4c74b500-OSL
X-Firefox-Spdy: h2
|
|
| hub.snapshot.org/graphql | 104.26.13.125 | 200 OK | 25 B |
IP104.26.13.125:0
File typeJSON data\012- , ASCII text, with no line terminators Hashcdc8512ced83004a90115850c9b5608b b6eb57230b2dc1f0e7ba40ab793e36bda69eed09 699671a256296a7dda710792eb11c9dc11bb7087387f2ef3057e17e5e669cda4
POST /graphql HTTP/1.1
Host: hub.snapshot.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 495
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:21 GMT
content-type: application/json; charset=utf-8
content-length: 25
x-powered-by: Express
access-control-allow-origin: *
x-ratelimit-limit: 60
x-ratelimit-remaining: 58
x-ratelimit-reset: 1675028002
etag: W/"19-tutXIwstwfDnukCreT42vaae7Qk"
x-do-app-origin: 9134fcd0-e6bb-11ec-b1dc-0c42a19a82a7
cache-control: private
x-do-orig-status: 200
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3L2N%2B9j35cG2%2B3OBxd4IJKmWuSj%2FeK8ZTtQtBS7H59iMEB05bivMfAgnQyHxNdAIO5oGlIYfIpMisl4klq7Hw6DK26HixkaA2svjHpOfwvZoquRIq4cFROOyDPKddmpP4QM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515ede90a0afe-OSL
X-Firefox-Spdy: h2
|
|
| rpc.ankr.com/eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca | 104.18.35.56 | 200 OK | 40 B |
URL HTTP/2rpc.ankr.com/eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca IP104.18.35.56:0
File typeJSON data\012- , ASCII text, with no line terminators Hashe9b93c5eac6b3df9660330580d31345f 77b32dc9a945b563c741d53cc40ddff3d2d42b47 232d3c5ffae1c27fcf2ee357eafeabae4064d579ef40673d047b7c4cabd30406
POST /eth/38eac0bf9f0e89d5e226f5c1ef1249406ce7958e48704cc5c3015bed44cb3dca HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pancakeswap-finance.pro/
content-type: application/json
Origin: https://pancakeswap-finance.pro
Content-Length: 60
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:21 GMT
content-type: application/json
content-length: 40
access-control-allow-origin: https://pancakeswap-finance.pro
cache-control: public, max-age=2
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type,Authorization
access-control-allow-methods: GET,POST,DELETE,OPTIONS
access-control-max-age: 86400
x-multirpc-response-type: 21
vary: Accept-Encoding
server: cloudflare
cf-ray: 791515ed6ca6b500-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha369a4445d1fccf2ce045c3c4c3f3d67 d6f618e6150a4f9ac6eb5df4a503141a635605a2 d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=792190966.1675028010>m=2oe1p0&aip=1&z=428424909 | 142.250.74.131 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=792190966.1675028010>m=2oe1p0&aip=1&z=428424909 IP142.250.74.131:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-334KNG3DMQ&cid=792190966.1675028010>m=2oe1p0&aip=1&z=428424909 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 21:33:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha369a4445d1fccf2ce045c3c4c3f3d67 d6f618e6150a4f9ac6eb5df4a503141a635605a2 d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 522 B |
IP142.250.74.131:0
Hashfb6c552e84c87104295c37e2e69cce3f ceae3924515cbe79262a723e2f1622f7e69b0f5b 9b34352799c3153cf0bbdb8eb718448115465c5ee5d13a151640e76af33d579d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-172345269-4&cid=792190966.1675028010&jid=279175895&gjid=1617321275&_gid=1286252199.1675028010&_u=YEBAAEAAAAAAACAAI~&z=611532621 | 173.194.221.155 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-172345269-4&cid=792190966.1675028010&jid=279175895&gjid=1617321275&_gid=1286252199.1675028010&_u=YEBAAEAAAAAAACAAI~&z=611532621 IP173.194.221.155:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-172345269-4&cid=792190966.1675028010&jid=279175895&gjid=1617321275&_gid=1286252199.1675028010&_u=YEBAAEAAAAAAACAAI~&z=611532621 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://pancakeswap-finance.pro
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 21:33:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 9.4 kB |
IP142.250.74.131:0
Hash9e5ce095411b3c6f1b0dbf8d8e061218 f05f13ed023e1392af5bf8c9877008d02b2f850a b481a818fd12f9bc7658e5f4f8a618cfd03440791e49db58f74f4e3b02994a36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 21:33:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-334KNG3DMQ>m=2oe1p0&_p=226140103&_gaz=1&cid=792190966.1675028010&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675028010&sct=1&seg=0&dl=https%3A%2F%2Fpancakeswap-finance.pro%2F&dt=Home%20%7C%20PancakeSwap%20-%20%244.126&en=page_view&_fv=1&_ss=1 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-334KNG3DMQ>m=2oe1p0&_p=226140103&_gaz=1&cid=792190966.1675028010&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675028010&sct=1&seg=0&dl=https%3A%2F%2Fpancakeswap-finance.pro%2F&dt=Home%20%7C%20PancakeSwap%20-%20%244.126&en=page_view&_fv=1&_ss=1 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-334KNG3DMQ>m=2oe1p0&_p=226140103&_gaz=1&cid=792190966.1675028010&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675028010&sct=1&seg=0&dl=https%3A%2F%2Fpancakeswap-finance.pro%2F&dt=Home%20%7C%20PancakeSwap%20-%20%244.126&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://pancakeswap-finance.pro
date: Sun, 29 Jan 2023 21:33:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| vitals.vercel-insights.com/v1/vitals | 52.213.199.227 | 200 OK | 32 kB |
URL HTTP/2vitals.vercel-insights.com/v1/vitals IP52.213.199.227:0
Hash175e76a8e308ece65e37cb9f1b58bc74 732ac048e2de0023d038e958943b7c708ba37766 f41f60a3019eddfa2b89b9b5fba2087d0d26b5c062b28c1a812310ef95489f74
POST /v1/vitals HTTP/1.1
Host: vitals.vercel-insights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 150
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:24 GMT
content-type: text/plain; charset=utf-8
content-length: 2
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/main-8d6afbc25c45ad2d.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/main-8d6afbc25c45ad2d.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/main-8d6afbc25c45ad2d.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:34 GMT
vary: Accept-Encoding
etag: W/"63d5057a-1f944"
expires: Mon, 30 Jan 2023 06:15:35 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OjjAqALkv8xUmHHdGL4Lw93%2FWNcUwlZctOs75Bp%2Ffw3b8ub5SMQ8%2BRbXutYdx0%2FWP2tLhu%2B7hK6D6vPV%2FZ13xQOtUuTJPQDPEdxF3U9nnqToDBw%2FiSabHKsnmQFQTXFs%2FMQJykEOd3ilA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f7f0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/seaport.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/seaport.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /seaport.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:27 GMT
vary: Accept-Encoding
etag: W/"63d50573-1f5940"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6UG5bpMaDoQ%2BBq%2FJayDObu3lzazSDEXWXqbEulydZJOGQl4npfgzPN%2Fbazq4pFNFUsba0PaUZIjTdsCbGBCaeWZUBG8PzPky7Z1G5Xx%2FMV9GktbWH4WLZrmoQI3%2F6kZeS0S5n0syqVQIMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f760b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/wallet-sdk-bundle.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/wallet-sdk-bundle.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /wallet-sdk-bundle.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:26 GMT
vary: Accept-Encoding
etag: W/"63d50572-79bd6"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2F2GI%2FDRgLSdVIdd9xtrGBQ7hKxz0um5Ya7BHERXlnZyqyE%2FMLmBZpps1dyCpL5sJ8dz5bJJcErmXQHSkHhOo0sEWzFUEV81Yk8vpnAA87GvNj%2FRvf8A1Xr8YBa2ylwpaWh1Hhh9eXn7OQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f700b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/coingecko.json | 104.26.3.169 | 200 OK | 0 B |
URL HTTP/2tokens.pancakeswap.finance/coingecko.json IP104.26.3.169:0
GET /coingecko.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:20 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"4b179bb22c83d1a251a919affe1a9d79"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RS553X2Ec83sqp1a4oKBzzoCGUdkl6e4JPlC7u6eSYdtpz9lfe%2BMqsBp8FujP8nYkGWNyyx8VdCP0O4CYfchES3GOfNeYVY18RUxYozLbFlrj19AApND%2BIiOP6XmayrK0tPoyswoL5OSAya28w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791515ec99a50b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/ethers-5.2.umd.min.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/ethers-5.2.umd.min.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /ethers-5.2.umd.min.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:24 GMT
vary: Accept-Encoding
etag: W/"63d50570-b2f8e"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11864
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9I9oblkbhacSop5%2BYx8vJ2CLEnPbUwZINOFHb2hNEUu2QCa7B1%2FzFwcpIeVUY523DNJb%2F2PDA%2FQs8iNdpyEp0gEd%2F2SQrgq0duaXQ9SJT2IpHIyLiTZQ8EAShE6DKQf54tp1lQJJls%2BsGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d77f690b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/webpack-7867922b76a503b2.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/webpack-7867922b76a503b2.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/webpack-7867922b76a503b2.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:35 GMT
vary: Accept-Encoding
etag: W/"63d5057b-1db8"
expires: Mon, 30 Jan 2023 06:15:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Pbsv7tNyKbjXTHEN05VAZ17weH0eem%2F8HLHvkS1FGIeeZbE5M3wfIrGC5nzu%2BZMCTLgq21w0%2FVHdyhvILF8J2kkghGTKmh9j6WVPps%2BTNI%2F9N4BcPybbB6eW0q9lIVSp3t0LpsJsXeLyWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f7b0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/framework-07aedcd80d1a1b44.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/framework-07aedcd80d1a1b44.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/framework-07aedcd80d1a1b44.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:38 GMT
vary: Accept-Encoding
etag: W/"63d5057e-22749"
expires: Mon, 30 Jan 2023 06:15:34 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4P4x7pdvPLs%2BYLnLmitNBj4RHuBsYliPUnCE1XmiZ0sr1kewVtsJhmSZM8MSPUIQKtWD8FE5VJ2WS1Z1K0Qyt3eUiB1IWOhIJvdOuErwous4YcXWMps7rTrNIMSQ7NtaQk7Q2oTWnTyiAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f7d0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/JfZVfWOl9R_B8vbprJmWb/_buildManifest.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/JfZVfWOl9R_B8vbprJmWb/_buildManifest.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/JfZVfWOl9R_B8vbprJmWb/_buildManifest.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:23:00 GMT
vary: Accept-Encoding
etag: W/"63d50594-2792"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F8NS5Dca5Nwl1Vb1xW7x%2BlNXkvIzTweKf0Yap5j8a4pFqJgcqsq591pZbjTXTtwLqmShhK3bCIPSWv%2BlB8eijjuCvnxXwQ4pQLBRG1ul%2BPjB5mO0ODm5HY8m%2BQnPBQCLph%2FgosdH2XJukQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d7dfbf0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-global.world/ | 104.21.57.14 | 302 Found | 0 B |
URL HTTP/2pancakeswap-global.world/ IP104.21.57.14:0
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to Suspicious *.world Domain |
GET / HTTP/1.1
Host: pancakeswap-global.world
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 29 Jan 2023 21:33:16 GMT
content-type: text/html; charset=UTF-8
location: https://pancakeswap-finance.pro/
access-control-allow-origin: *
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=STTurBzYiiOEenEIVxdZhkUEeGx41mcNOKWnWu0N0ytG71oJsNwUd2lTTtYWnCgXvmd6enUMS3vHHK%2FLPK1z9zHiejcwfvwWjMckUZRBeG5CA0Szab5fzmlod3SVN%2FHwPibQ2zAgbUf8vWk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515cf4c32b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/css/f8f97fc05f81a8c1.css | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/css/f8f97fc05f81a8c1.css IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | |
GET /_next/static/css/f8f97fc05f81a8c1.css HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: text/css
last-modified: Sat, 28 Jan 2023 11:22:30 GMT
vary: Accept-Encoding
etag: W/"63d50576-2cf2"
expires: Mon, 30 Jan 2023 06:15:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11863
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T41%2BjKrmKeyVhsicAPlWLsWilu30pJnGGVyxQqlXWDdrLqyCUO8%2BMyofMKTHvRCEHdv44m4%2BwDN4ZHdLjn1h9AJAAzqfjq%2B5qM0W53jUnjAqIK430tqqEP2rouKOdgG7HCHyLrB16%2BiqjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f790b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/cmc.json | 104.26.3.169 | 200 OK | 0 B |
URL HTTP/2tokens.pancakeswap.finance/cmc.json IP104.26.3.169:0
GET /cmc.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:21 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"852eb5eadd6f9dd6763874664c83ffd3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G5nF%2FTdyzneGmXYYcyjCbwJrGMHbvruCq1qgGRqvoRvJ8mjCoCjMu8iEIAaOweuc7ciACDtd8%2Fc3gU4C6vOIxMaXx0%2BjItwbxTq3UpEFKymjbClvb8aG6q18XNaMZcK9yPUkL089do7wPWZB0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791515ee6b9a0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/ | 172.67.196.204 | 200 OK | 0 B |
IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET / HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cHoe832XD0kxVVrVj9ZrKywdIifJYp%2B5b3N2Wp9bBY85C0p%2BhQRU6A9n2BTCEnK1O1kWi9WOklU0YRlLAFv09dD12y05RfjUqwrj65qcU%2F4JJGAQ96mG7ONgL3rKE%2FOXB2iQv3ZEqv0jHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d5ee0e0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| api.thegraph.com/subgraphs/name/pancakeswap/pottery | 104.18.39.222 | 200 OK | 0 B |
URL HTTP/2api.thegraph.com/subgraphs/name/pancakeswap/pottery IP104.18.39.222:0
POST /subgraphs/name/pancakeswap/pottery HTTP/1.1
Host: api.thegraph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 287
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:20 GMT
content-type: application/json
cf-ray: 791515e729990afe-OSL
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
access-control-allow-headers: Content-Type, User-Agent
access-control-allow-methods: GET, OPTIONS, POST
graph-attestable: true
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/pages/_app-cae3f930f7eb0507.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/pages/_app-cae3f930f7eb0507.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/pages/_app-cae3f930f7eb0507.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:23:11 GMT
vary: Accept-Encoding
etag: W/"63d5059f-4adcad"
expires: Mon, 30 Jan 2023 06:15:35 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11862
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fz3njDTMei1%2Bof1BQjiO8OLD9vUMXVLG0am5ng8yfBz0sYPdD5fe5NzOWuqH9TNb4yOz4Yky18zx4AWg5T60kv3mk5gI6dTwd7XAU2F5mORyrYiRhBOk1IDF02bcO0oCdD2k6OdVNAZQgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f800b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| tokens.pancakeswap.finance/pancakeswap-extended.json | 104.26.3.169 | 200 OK | 0 B |
URL HTTP/2tokens.pancakeswap.finance/pancakeswap-extended.json IP104.26.3.169:0
GET /pancakeswap-extended.json HTTP/1.1
Host: tokens.pancakeswap.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://pancakeswap-finance.pro/
Origin: https://pancakeswap-finance.pro
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:20 GMT
content-type: application/json
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"a82d95a2cc243851784abd9c64a741ab"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O8Co5r1DOUlBF9H3cYV0JRhjCDBGdlD75TJhQVsRxgg%2B9g5gEdqF4PcxN5NBCWsN%2Fn7xkb1BpRHcCEhUvChZ%2B%2FNQXdFD0aAaX%2Fc%2BrEW1LtcPgy%2BCoSctfaqkm3FFVehvw9ZfKpTLODeSWYAF5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791515ec99a20b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/sweetalert2@11 | 151.101.1.229 | 200 OK | 0 B |
URL HTTP/2cdn.jsdelivr.net/npm/sweetalert2@11 IP151.101.1.229:0
GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.7.1
x-jsd-version-type: version
etag: W/"fb5c-w+GyqThvnHQcfkFno5FntMBy22I"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 21:33:17 GMT
age: 9717
x-served-by: cache-fra-eddf8230057-FRA, cache-bma1625-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18041
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/3332-b169bbfbf8b8e612.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/3332-b169bbfbf8b8e612.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/3332-b169bbfbf8b8e612.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:39 GMT
vary: Accept-Encoding
etag: W/"63d5057f-2ce6"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dpA2uQzKnIZH1bMpySdFKdSC8c9yCuNuSXqFPU7Y2xye%2Fw0mjHTPXlj6fpeiQFz0fIsb0SPHvlnKVV7YjcVU7UJNLGFgMR8h3DRWDV5PX32Wl4yiefkMDhEGibTyMz%2FegwE%2B54cxv%2Fl02w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d78f810b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| pancakeswap-finance.pro/_next/static/chunks/1241-ff58ad764221026c.js | 172.67.196.204 | 200 OK | 0 B |
URL HTTP/2pancakeswap-finance.pro/_next/static/chunks/1241-ff58ad764221026c.js IP172.67.196.204:0
| Analyzer | Verdict | Alert |
|---|
| openphish | Crypto/Wallet | | | fortinet | Phishing | |
GET /_next/static/chunks/1241-ff58ad764221026c.js HTTP/1.1
Host: pancakeswap-finance.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pancakeswap-finance.pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 21:33:17 GMT
content-type: application/javascript
last-modified: Sat, 28 Jan 2023 11:22:41 GMT
vary: Accept-Encoding
etag: W/"63d50581-3173"
expires: Mon, 30 Jan 2023 06:15:36 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 11861
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qncAxuYQ1Zuu%2F273HkTgUZqXca7Wk8RuzueE7wcVFPXlXODd%2BZ%2F7jYRHwDPBZaB67%2FN25mUj%2FvX104ZN303sI6UjcRanfzAb%2Fyoz5Ax17g9OW4RB3D1eAgj9lm5TEn2l54NhLV6S%2F6EUzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791515d79f920b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
188.114.96.1