r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14128
Expires: Wed, 08 Feb 2023 18:37:01 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Wed, 08 Feb 2023 16:17:15 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 14:34:13 GMT
content-type: application/json
age: 440
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10044
Expires: Wed, 08 Feb 2023 17:28:57 GMT
Date: Wed, 08 Feb 2023 14:41:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xpn4fGqJXmGNIjVBQcNf51nOgQP/IEhKQ/ZwuWoIDF5cIo1cfnX9a8saz3zjXP4b9fD6yhMKG6s=
x-amz-request-id: 95ZWNYPDV0ZFFSRB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 14:35:58 GMT
age: 335
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d73a4771eb896244eecf37de3d4490e
4a1a7d1372d5da187ee6a8328a16996b109f4051
5d8b62ee59d3eb5e3c699b2d8e8b5c99b2a743883dbe23fdd9114d3fac8abc40
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 08:01:37 GMT
Expires: Tue, 14 Feb 2023 08:01:36 GMT
Etag: "4a1a7d1372d5da187ee6a8328a16996b109f4051"
Cache-Control: max-age=493802,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7965207888ee0afe-OSL
aave.waterfall.network/markets
78.46.36.131200 OK 2.0 kB URL HTTP/1.1 aave.waterfall.network/markets
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4754), with no line terminators
Hash 0c7fe70069660162de37014abfdcdd1e
05f2bbd7bc22f376ba0463086d4ba9106eec072c
12f40bc0479ac865fbcf7d78b21a98b76d222a55970bb802133aa41e07692581
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
fortinet Phishing
GET /markets HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="index.html"
Accept-Ranges: bytes
ETag: "aa0453478e04814500a35e02a60f62eb8359bfb2"
Vary: Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 14:41:33 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aave.waterfall.network/static/css/4.5dedc6b1.chunk.css
78.46.36.131200 OK 2.5 kB URL HTTP/1.1 aave.waterfall.network/static/css/4.5dedc6b1.chunk.css
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (11287)
Hash 82e96fb9721b3448ae4b0c226bd682dd
51a8d0918a2dfb76294191366fe5d4052834580e
8b98ef5f9c9f6aae1b56b64a6a9e0df14640d90779be3ba99bbfd918686e2794
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/css/4.5dedc6b1.chunk.css HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="4.5dedc6b1.chunk.css"
Accept-Ranges: bytes
ETag: "da8e7c567414db4aba9111be0811b7fb0aeed085"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/js/main.5c7ee652.chunk.js
78.46.36.131200 OK 246 kB URL HTTP/1.1 aave.waterfall.network/static/js/main.5c7ee652.chunk.js
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65536), with no line terminators
Size 246 kB (246254 bytes)
Hash 71f0d782c21594daf1e7c30efbb58fdb
45813211ff4525e22cd75a4d9ee18d549282ad66
406d7e4846928acfe3182f2836abab221514d791502dc325d03d554028dbb893
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/js/main.5c7ee652.chunk.js HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="main.5c7ee652.chunk.js"
Accept-Ranges: bytes
ETag: "1ac19876de53b7586cb60521e113e80537fbafca"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/js/4.8e30896e.chunk.js
78.46.36.131200 OK 2.0 MB URL HTTP/1.1 aave.waterfall.network/static/js/4.8e30896e.chunk.js
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65462)
Size 2.0 MB (2000194 bytes)
Hash 291a6d1ee08e2741c63015e4c5bc8575
6494f84592ffbe14cb4a3458c18a13f2d792edd0
c7b633fdbdd041fa4cd2a87805788f60813c3e4101299d4969409730efc08044
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/js/4.8e30896e.chunk.js HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:33 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="4.8e30896e.chunk.js"
Accept-Ranges: bytes
ETag: "5ffcc9144ea97a8ae2d7833d5d84192421992397"
Vary: Accept-Encoding
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 14:14:52 GMT
age: 1602
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4852
Expires: Wed, 08 Feb 2023 16:02:26 GMT
Date: Wed, 08 Feb 2023 14:41:34 GMT
Connection: keep-alive
push.services.mozilla.com/
34.214.112.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.112.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h4emzEDkaIs00pLxkSgxGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cuQcxIZoe3AdTcb8yNI2AAsK+5U=
aave.waterfall.network/favicon64.png
78.46.36.131200 OK 1.9 kB URL HTTP/1.1 aave.waterfall.network/favicon64.png
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash 1961577a92361d60c7066f575a37d466
e1cc8cfb0bce8f6e94171b362800a50df3c487e1
5dca3e91aff5fa797943e68ca194ab7fec1fadb74505378154f6223619c9c540
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /favicon64.png HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:34 GMT
Content-Type: image/png
Content-Length: 1902
Connection: keep-alive
Content-Disposition: inline; filename="favicon64.png"
Accept-Ranges: bytes
ETag: "fcc9096937e7a6994567146395e97bd31e7f71c0"
aave.waterfall.network/favicon32.ico
78.46.36.131200 OK 1.2 kB URL HTTP/1.1 aave.waterfall.network/favicon32.ico
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 5df2e6d9e5f939d0a53a07d884ded552
5e6b47e1125f910b88190d7f76a17d925a0fb223
981a373ada48ba3bc32bc5324124d2e197cbb3dbb9710d9a9794ddf4826f4e15
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /favicon32.ico HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:34 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="favicon32.ico"
Accept-Ranges: bytes
ETag: "542e3cf0628fbcc8a0bb62e366b36393433b66e3"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/media/background.47cc6935.svg
78.46.36.131200 OK 2.7 kB URL HTTP/1.1 aave.waterfall.network/static/media/background.47cc6935.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (12800), with no line terminators
Hash 0945a1e396d46539b078a7aa806e8efe
ef385eba23d96718b7ced3451d2bed88baef9711
0331b9553cf5657f7e057b22f7c3f7ecc06936639f34e65af5ca7d6635713298
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/background.47cc6935.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:35 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="background.47cc6935.svg"
Accept-Ranges: bytes
ETag: "a49f59de87206deb3c67be5039871e96efc6d6dd"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/fonts/RobotoRegular/RobotoRegular.woff
78.46.36.131200 OK 93 kB URL HTTP/1.1 aave.waterfall.network/fonts/RobotoRegular/RobotoRegular.woff
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 93388, version 0.0\012- data
Hash 94dac78eee406a8c8f0406b69b85ac2b
e9e77fc073e302b714e30698276fad6adaf179cd
18ab5ae448dcec1f31abbbaa7dce8dcb1d890479f1bc4670a89c95f10063cf3e
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /fonts/RobotoRegular/RobotoRegular.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:35 GMT
Content-Type: application/font-woff
Content-Length: 93388
Connection: keep-alive
Content-Disposition: inline; filename="RobotoRegular.woff"
Accept-Ranges: bytes
ETag: "1963e45862d0b560cb0bc50373d81662166ff468"
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Wed, 08 Feb 2023 16:23:41 GMT
Date: Wed, 08 Feb 2023 14:41:35 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f175de8eebe398f5de2829cd551b3f04
e6da63e9b03289bfded190d999a20da78232437c
b5d1ee4bd6186cbac1e4ac037766c9e453e166b0cfb2e08004cb11b8bb7daa88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffcee4072-2c9e-4db4-b200-065a1ef67ace.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10202
x-amzn-requestid: 15e6c7ee-acef-4638-9a15-a01864ac74f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PEYFZOoAMFzEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c54f-3681217a71e5b9472b9cdb8a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PyOVGtKFSYIU2don5C7_L_pTUxdP_VEAhLZUhtBWo2PZ4kvPqaTg9g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:13:47 GMT
etag: "e6da63e9b03289bfded190d999a20da78232437c"
content-type: image/jpeg
age: 59268
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:30:12 GMT
age: 33083
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5129898de057eb92808f18d120eb7a70
eb0a900843beac5c4ee46686b89b3e8b8d77f80f
7ce3e4f7be652895e93cb8c1a9019b70d699c0a9da013d311395a6440b4e9f96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F363ca744-ffa5-4390-9968-412e24620e36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7847
x-amzn-requestid: 60759e32-ac58-4dda-8ea3-fd80413c0deb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkkEpMoAMFnGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c483-61b8715a0da73f4526215649;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TCX7ZFhV73kN0UBshXeb0qdSkY-8qdeNN6EgioqOUmSAnraEhAohMQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:11 GMT
age: 61164
etag: "eb0a900843beac5c4ee46686b89b3e8b8d77f80f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe800d6af728cd622a6192ad5e7dda6a
3a301dd894fc428c7d1863c9d5eaf2652f5c2083
f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: C1EXSLUCdc9GzSKxUzv9_uWK4ZTqggdr03uVW5SWuZwVVSn2wc4k7w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:44:01 GMT
age: 61054
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8a3fa4f1ec82d501942f9db3de2cb7d
b91c2aea7f2fb26131c8929b254c5596a1bb25ff
9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6342
x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkbHfDIAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xc32O6lBfn7jYg9I3VlZ5FnR9YpJtU3DbYD_ozsf_-R_Ih1-2e1-CQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:10 GMT
age: 61165
etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fbe359ce6fb136add75c8f3d3cc06330
e6584afcf39b6fad21eccbcce95c6645b8e1b3b8
29478bf1b8168dc457bb7d298448a78e1040bd3aa80cbf11cfa37475568590d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3ed9aa0-a88e-4b92-a2bb-567735d813b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8170
x-amzn-requestid: d1ddb47f-3472-4015-8d55-72f435671f03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5aSPHiroAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e070da-114975440d70915472cdba2f;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:15:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0w6JgtsKSRHLPJ3LyY6YUI8N7PS-gVlLuivQUq9jdyeYYm3STiJJIQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 04:13:34 GMT
age: 37681
etag: "e6584afcf39b6fad21eccbcce95c6645b8e1b3b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6138b948f4d7371a6df17a803f5b6e64
e3bf65b0a0f343f2818af0553b2fc6c5c078aa55
b9c6ac0be4d10bf1f59748e9413020cdd7dfc4fc10ad282f3682fad0dc49646f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B9C6AC0BE4D10BF1F59748E9413020CDD7DFC4FC10AD282F3682FAD0DC49646F"
Last-Modified: Tue, 07 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 08 Feb 2023 20:41:36 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Wed, 08 Feb 2023 20:40:46 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21571
Expires: Wed, 08 Feb 2023 20:41:07 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e49eef3cf0dab3caaad1418822d56240
bab4674455572c1a5098f55833265da77f24bdeb
05de480496d1290e7bbaa65361430c4bbd51241bf89066f7e876376d9db79c26
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05DE480496D1290E7BBAA65361430C4BBD51241BF89066F7E876376D9DB79C26"
Last-Modified: Tue, 07 Feb 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21507
Expires: Wed, 08 Feb 2023 20:40:03 GMT
Date: Wed, 08 Feb 2023 14:41:36 GMT
Connection: keep-alive
rpc.waterfall.network/rpc
3.125.75.237200 OK 23 B URL HTTP/1.1 rpc.waterfall.network/rpc
IP 3.125.75.237:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://aave.waterfall.network/
Origin: https://aave.waterfall.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Cache-Control: max-age=0
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Length: 23
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 600
Content-Encoding: gzip
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
rpc.waterfall.network/rpc
3.125.75.237200 OK 23 B URL HTTP/1.1 rpc.waterfall.network/rpc
IP 3.125.75.237:0
Hash f0d79988b7772c003d04a28bd7417a62
58423a999eec2997bcfffb247e9ecd3dfd0abf44
30e6fa98fb48c2b132824d1ac5e2243c0be9e9082ff32598d34d7687ca7f6c7f
OPTIONS /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://aave.waterfall.network/
Origin: https://aave.waterfall.network
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Cache-Control: max-age=0
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Length: 23
Connection: keep-alive
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: POST
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 600
Content-Encoding: gzip
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
rpc.waterfall.network/rpc
3.125.75.237200 OK 366 B URL HTTP/1.1 rpc.waterfall.network/rpc
IP 3.125.75.237:0
File type JSON data\012- , ASCII text, with very long lines (16295)
Hash 2d599ebaa757fec4553abf9d6553ea35
fd3556c966f2b4a110bc4c026b9a700b61c60d87
7ffa2c488b44386cd7e4439d0cc0c1234d20f797361f4e5cc6242b1454738722
POST /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aave.waterfall.network/
content-type: application/json
Origin: https://aave.waterfall.network
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/json
Content-Length: 366
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Origin
rpc.waterfall.network/rpc
3.125.75.237200 OK 1.8 kB URL HTTP/1.1 rpc.waterfall.network/rpc
IP 3.125.75.237:0
File type JSON data\012- , ASCII text, with very long lines (21735)
Hash 1f4bdd66c7f100f4d5b47b2adcf93801
49895a7c823d979567bfdaeb40980863a3209d0b
1e51869ccbc0d9a691d9011f8994db07da857afe484955b4361edfd400826e05
POST /rpc HTTP/1.1
Host: rpc.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aave.waterfall.network/
content-type: application/json
Origin: https://aave.waterfall.network
Content-Length: 201
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/json
Content-Length: 1793
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Vary: Origin
aave.waterfall.network/static/media/aaveLogo.d92a06d2.svg
78.46.36.131200 OK 993 B URL HTTP/1.1 aave.waterfall.network/static/media/aaveLogo.d92a06d2.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2904), with no line terminators
Hash c4afb2429185d38a48562e9a720e14ed
4f3a3b30c32450d81300f537125ae6e95d28e9c6
1c9592a2c3b27c225a5487124cab83cfc84052992983c64c928bbd3e920992fa
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/aaveLogo.d92a06d2.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aaveLogo.d92a06d2.svg"
Accept-Ranges: bytes
ETag: "ca51e73c1f6453d0b606d8fcc85802c58013327b"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/media/aavev2Active.f936c591.svg
78.46.36.131200 OK 2.1 kB URL HTTP/1.1 aave.waterfall.network/static/media/aavev2Active.f936c591.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4797), with no line terminators
Hash 2b2a2908fb3e6e05519032a76ee7a6d6
9916f7d61c6b1b3a598fd35584f5afea5cb44daa
5c319e03479b44559d959e869a891bc67f2af2d358eb4ece3c63d9c754ad4b55
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/aavev2Active.f936c591.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aavev2Active.f936c591.svg"
Accept-Ranges: bytes
ETag: "4fafb12552c57bf42dbd62bb5450737aec9b2a8e"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/media/aavev2.437c02f0.svg
78.46.36.131200 OK 2.5 kB URL HTTP/1.1 aave.waterfall.network/static/media/aavev2.437c02f0.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5725), with no line terminators
Hash 404e96104d8b0217be84ea2831011a30
1f86a0444c463c6af5bdd02be206d85f6749d62a
23b5542bf03dae07604acf9b4aeb6b0eecb6f76fd630fed0854f94bb2ee8e684
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/aavev2.437c02f0.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="aavev2.437c02f0.svg"
Accept-Ranges: bytes
ETag: "1eb157d9d89d8a934d3f986498061425cba4e0ee"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/media/fr.2b73cc5a.svg
78.46.36.131200 OK 194 B URL HTTP/1.1 aave.waterfall.network/static/media/fr.2b73cc5a.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash c6ad3636055d0b5a84bae6ba5f70ce6f
039a73055773ac3aa70bbfddb2505a2fb45aae1a
562a4c9c6601bfbd1c4a3209c47f2b840650a431041f6616b8af9a0eaa888489
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/fr.2b73cc5a.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 194
Connection: keep-alive
Content-Disposition: inline; filename="fr.2b73cc5a.svg"
Accept-Ranges: bytes
ETag: "4b751d68c64197ea294eac9d90d0849221c3daca"
Vary: Accept-Encoding
aave.waterfall.network/static/media/it.1f95c8f2.svg
78.46.36.131200 OK 202 B URL HTTP/1.1 aave.waterfall.network/static/media/it.1f95c8f2.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash bc7da45bedf17f56a56cabd7ffdbd1f8
07b372ea679652a0c1d0b8f77eed93acb75cb512
7f818fa8e36ca606a8cbd35106fd7d277f094f10f2aa1f7a0585421a20e37070
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/it.1f95c8f2.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 202
Connection: keep-alive
Content-Disposition: inline; filename="it.1f95c8f2.svg"
Accept-Ranges: bytes
ETag: "0bb4e9285244bef3d89bc6352b97ef85cb9c5605"
Vary: Accept-Encoding
aave.waterfall.network/static/media/es.30eb0364.svg
78.46.36.131200 OK 18 kB URL HTTP/1.1 aave.waterfall.network/static/media/es.30eb0364.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (50152), with no line terminators
Hash 34d3bbc6d6138f51bef32467636cf4ca
a633c2c0ba1c1930ede4dd40d08a899f084d6f05
2c2e2167d5b764a17afc5ab66ac0d9c15b5e0a7f52df3ec5baad82ed405f764a
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/es.30eb0364.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="es.30eb0364.svg"
Accept-Ranges: bytes
ETag: "8bd0344ba3b34413efca1e5778a6747497ca8b7f"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/static/media/tr.0eb94b06.svg
78.46.36.131200 OK 304 B URL HTTP/1.1 aave.waterfall.network/static/media/tr.0eb94b06.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (304), with no line terminators
Hash da3d6dc0d61b1d04e77681442f6c471e
ecc1b07f057160007c9c04c4b69faa5af12819ef
4817c664fdec869bd9b32576fb131065d5ec0276262e5be0a31178352272b206
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/tr.0eb94b06.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 304
Connection: keep-alive
Content-Disposition: inline; filename="tr.0eb94b06.svg"
Accept-Ranges: bytes
ETag: "dfdc9a8d349bb17f81d412648d580720f58e9c42"
Vary: Accept-Encoding
aave.waterfall.network/static/media/vi.5d0e6fe0.svg
78.46.36.131200 OK 196 B URL HTTP/1.1 aave.waterfall.network/static/media/vi.5d0e6fe0.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 0743671adef6ec257f349d1fe323ea2e
784b383c9650e9c82ccd64269d31acef22f25eab
8c0bf50e9cc509f95b380a15c199c3e3df46d5975ae13c6fe0517d7ebe13151b
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/vi.5d0e6fe0.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 196
Connection: keep-alive
Content-Disposition: inline; filename="vi.5d0e6fe0.svg"
Accept-Ranges: bytes
ETag: "82e3059e0cfbeea618985266da940a196b919c6d"
Vary: Accept-Encoding
aave.waterfall.network/static/media/cn.acb9cced.svg
78.46.36.131200 OK 559 B URL HTTP/1.1 aave.waterfall.network/static/media/cn.acb9cced.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (559), with no line terminators
Hash ac97fb38bb7dac277dd445c588c59546
ef74b8a308d0c95ed6af830d7bbcb2e6f405a714
55987a0b327c7ca454171edddbe1be3a44a00f8b95d86f3baa2559643fc0c386
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/cn.acb9cced.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 559
Connection: keep-alive
Content-Disposition: inline; filename="cn.acb9cced.svg"
Accept-Ranges: bytes
ETag: "7d66317592b7291e11100a43206261a7b4b753bc"
Vary: Accept-Encoding
aave.waterfall.network/static/media/ja.e2f58c0d.svg
78.46.36.131200 OK 160 B URL HTTP/1.1 aave.waterfall.network/static/media/ja.e2f58c0d.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash b4dbf8d28cc3aa8fc5a763ec7127e0d8
a45b1793372e7a6b65f82cb67e55fcd1d67a9745
e8e6f6e75bc02eeb35e5904edc13df9b5990da70ac1ff1daa7a9fcc61c709a03
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/ja.e2f58c0d.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 160
Connection: keep-alive
Content-Disposition: inline; filename="ja.e2f58c0d.svg"
Accept-Ranges: bytes
ETag: "1733c53242a44f8fa34de35e97a98c9ad4a94a47"
Vary: Accept-Encoding
aave.waterfall.network/static/media/ko.b6392a9e.svg
78.46.36.131200 OK 576 B URL HTTP/1.1 aave.waterfall.network/static/media/ko.b6392a9e.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (576), with no line terminators
Hash 38c833964f54bb10d6774ae1aef66cfe
35676c746f2b334a1a789ed7bf0585c46b2505fe
65e6993d62055333a33b10d7f7a4f65e38647d316c91c41fa7f67b5f2d30f4df
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/ko.b6392a9e.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 576
Connection: keep-alive
Content-Disposition: inline; filename="ko.b6392a9e.svg"
Accept-Ranges: bytes
ETag: "588feeb2a6e02568265b3773c6cc7f9e54a1a8a7"
Vary: Accept-Encoding
aave.waterfall.network/static/media/pt.cf2d92a6.svg
78.46.36.131200 OK 5.2 kB URL HTTP/1.1 aave.waterfall.network/static/media/pt.cf2d92a6.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (11174), with no line terminators
Hash 84ed6d6389ed50e9149a683bcc843bdd
cf2544918506cca1510ba929145899e584d7beb3
b2063ca4cd1f9abd57a99aa25f0190ad1b399006f4eae05e5b5724f5be45e363
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/pt.cf2d92a6.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Content-Disposition: inline; filename="pt.cf2d92a6.svg"
Accept-Ranges: bytes
ETag: "65c8339e2046d1820ed22c60a1370f45ebeb57fa"
Vary: Accept-Encoding
Content-Encoding: gzip
aave.waterfall.network/fonts/RobotoMedium/RobotoMedium.woff
78.46.36.131200 OK 94 kB URL HTTP/1.1 aave.waterfall.network/fonts/RobotoMedium/RobotoMedium.woff
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 94032, version 0.0\012- data
Hash 9a3bf7acae14d9b5ed5a88458106b58b
3e38dce596d2b9ab706d7371a28613d618b32220
e3aa2710d491e00e12efac880a32633506131aa8cf337ade92ee723cfc9733aa
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /fonts/RobotoMedium/RobotoMedium.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 94032
Connection: keep-alive
Content-Disposition: inline; filename="RobotoMedium.woff"
Accept-Ranges: bytes
ETag: "a71119fabdf8c5f9075df889ea9d9910f92ad5b7"
aave.waterfall.network/fonts/RobotoBold/RobotoBold.woff
78.46.36.131200 OK 94 kB URL HTTP/1.1 aave.waterfall.network/fonts/RobotoBold/RobotoBold.woff
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 93700, version 0.0\012- data
Hash 08cb8f79715774f9a6285ee7db2919a3
6fa3b472bb5a784436faa1ef5d2896d426968689
8aa340f033ddfa5e7f8bfe80638c3b137887eb30996588852ec218d2007e68b7
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /fonts/RobotoBold/RobotoBold.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 93700
Connection: keep-alive
Content-Disposition: inline; filename="RobotoBold.woff"
Accept-Ranges: bytes
ETag: "a1d0e658acced6026c1729a9dde7b2908fdeaf4c"
aave.waterfall.network/fonts/RobotoLight/RobotoLight.woff
78.46.36.131200 OK 93 kB URL HTTP/1.1 aave.waterfall.network/fonts/RobotoLight/RobotoLight.woff
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format, TrueType, length 93120, version 0.0\012- data
Hash 10ad0f861c0c5807734017c341940649
42eb5fdef68306d937a8fba20dd8da1b0de2bafa
499d49392c413d3f5adffa7481a1e4572858ee6369c03ed603b6abdd174b1ce4
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /fonts/RobotoLight/RobotoLight.woff HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: application/font-woff
Content-Length: 93120
Connection: keep-alive
Content-Disposition: inline; filename="RobotoLight.woff"
Accept-Ranges: bytes
ETag: "457dd9b8f7527a69f93a0b699045a38568d8e92e"
explorer.waterfall.network/favicon-72-precomposed.png
78.46.36.131200 OK 4.3 kB URL HTTP/1.1 explorer.waterfall.network/favicon-72-precomposed.png
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash d25c72e2d29b004ec5e7c80ab08a5094
d1b5606286460b49e1adadc38ac5d02082f5cf14
cb8e91138c8f2afa4fce23127b831769cf6ab051575c24be8fc632f31cfba64e
GET /favicon-72-precomposed.png HTTP/1.1
Host: explorer.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/png
Content-Length: 4301
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: public, max-age=0
Last-Modified: Wed, 22 Jun 2022 12:52:50 GMT
ETag: W/"10cd-1818b78f8d0"
aave.waterfall.network/static/media/arrows.af2e11b4.svg
78.46.36.131200 OK 721 B URL HTTP/1.1 aave.waterfall.network/static/media/arrows.af2e11b4.svg
IP 78.46.36.131:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (721), with no line terminators
Hash 9a6446ad01278665609f436c047bbdaa
f306ef4129404dc230f65675c3db55e9bfab579b
439a7a4a7e5ebdcc4da03a0d574a444e2c12111c96ee768cba354ae00db443cb
Analyzer Verdict Alert openphish Crypto/Wallet
phishtank Other
GET /static/media/arrows.af2e11b4.svg HTTP/1.1
Host: aave.waterfall.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aave.waterfall.network/markets
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 08 Feb 2023 14:41:36 GMT
Content-Type: image/svg+xml
Content-Length: 721
Connection: keep-alive
Content-Disposition: inline; filename="arrows.af2e11b4.svg"
Accept-Ranges: bytes
ETag: "bdd4cd35b24442ff8e904c8a7f6db8eb78ffeb0e"
Vary: Accept-Encoding