Report - dbfix.pages.dev/next/walletpage.php

Report Overview

Submitted URL
dbfix.pages.dev/next/walletpage.php
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-20 16:06:01
Access
public
Website Title
Connect Wallet
Final URL
dbfix.pages.dev/next/walletpage.php
Tags
crypto phishing
urlquery detections
Phishing - Generic Crypto/Wallet

Detections

urlquery
12
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
user-images.githubusercontent.com	10487	2014-02-06	2017-06-06	2024-04-18	501 B	60 kB	185.199.108.133
www.cryptocompare.com	316398	2013-11-03	2015-07-15	2024-03-18	446 B	64 kB	172.67.72.98
s3-eu-west-1.amazonaws.com	unknown	2005-08-18	2017-03-24	2024-03-26	464 B	63 kB	52.218.109.211
cryptologos.cc	515783	2019-04-13	2019-08-22	2024-04-10	901 B	328 kB	104.21.92.70
ethereum-magicians.org	unknown	2018-02-16	2018-11-06	2024-04-10	490 B	2.7 kB	184.169.209.62
bittrust.s3.amazonaws.com	unknown	2005-08-18	2015-07-12	2024-04-14	435 B	150 kB	3.5.28.181
ka-f.fontawesome.com	3598	2012-10-18	2019-12-17	2024-04-19	1.4 kB	24 kB	104.21.26.223
play-lh.googleusercontent.com	407	2008-11-17	2019-09-30	2024-04-18	7.0 kB	960 kB	142.250.74.86
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-20	468 B	4.6 kB	142.250.74.74
s2.coinmarketcap.com	25737	2013-04-28	2018-01-12	2024-04-13	925 B	21 kB	3.164.240.38
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-19	439 B	32 kB	151.101.2.137
icodrops.com	22376	2017-08-08	2017-09-01	2024-03-17	455 B	4.2 kB	165.22.31.163
dbfix.pages.dev	unknown	unknown	No data	No data	16 kB	1.7 MB	188.114.97.1
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-20	1.6 kB	26 kB	142.250.74.131
keyring.app	unknown	2020-12-21	2019-05-17	2024-03-27	938 B	130 kB	104.21.64.223
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-04-20	1.4 kB	53 kB	151.101.1.229
is5-ssl.mzstatic.com	1678	2010-07-12	2015-02-12	2024-03-24	521 B	16 kB	184.24.44.26
miro.medium.com	13183	1998-05-27	2017-08-01	2024-04-19	472 B	37 kB	162.159.152.4
imagedelivery.net	255311	2021-04-09	2021-09-20	2024-04-18	3.9 kB	47 kB	104.18.2.36
is2-ssl.mzstatic.com	1709	2010-07-12	2015-02-12	2024-04-10	559 B	19 kB	184.24.44.26
cdn.dribbble.com	45168	2008-03-19	2017-04-03	2024-04-12	470 B	18 kB	192.229.220.206
dvh1deh6tagwk.cloudfront.net	unknown	2008-04-25	2021-01-12	2024-03-27	488 B	6.1 kB	54.230.241.35
encrypted-tbn0.gstatic.com	unknown	2008-02-11	2013-05-31	2024-04-20	1.6 kB	16 kB	216.58.211.14
avatars.githubusercontent.com	13105	2014-02-06	2014-02-25	2024-04-19	2.3 kB	73 kB	185.199.108.133
is4-ssl.mzstatic.com	1752	2010-07-12	2015-02-12	2024-03-17	557 B	14 kB	184.24.44.26
www.yadawallets.com	unknown	2020-05-16	2020-09-08	2024-03-18	468 B	4.3 kB	35.190.31.54
syncwallet.online	unknown	2024-01-26	2021-03-17	2024-03-27	470 B	655 B	172.67.172.120
kit.fontawesome.com	1868	2012-10-18	2019-12-16	2024-04-18	439 B	12 kB	172.64.147.188
bitcoin-trading.io	unknown	2021-02-18	2021-03-01	2024-04-10	456 B	5.0 kB	104.21.35.198
ffnews.com	525309	1999-04-17	2021-01-28	2024-04-09	450 B	2.5 kB	104.19.154.92
app.affixresolve.live	unknown	2023-05-15	2023-06-01	2023-08-06	1.7 kB	0 B	0.0.0.0

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	dbfix.pages.dev/next/walletpage.php	Crypto/Wallet

PhishTank

Scan Date	Severity	Indicator	Alert
2024-03-29	medium	dbfix.pages.dev/next/walletpage.php	Other

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-20	medium	affixresolve.live	Sinkholed
2024-04-20	medium	affixresolve.live	Sinkholed
2024-04-20	medium	affixresolve.live	Sinkholed
2024-04-20	medium	affixresolve.live	Sinkholed

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js	59 kB	2023-03-07	2024-05-03
Pretty URL cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:52 Last Seen2024-05-03 20:19:48 Times Seen3337 Hash 259e416ef6833be43801b8b68a93b008 19080c3b817985336aab5e1ce6925c99803f2efd 70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce Loading...

	dbfix.pages.dev/next/script/waypoints/jquery.waypoints.min.js	9.0 kB	2023-03-07	2024-05-02
Pretty URL dbfix.pages.dev/next/script/waypoints/jquery.waypoints.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:01:53 Last Seen2024-05-02 19:50:36 Times Seen122 Hash f484a6c1b1c5dfb82514c4e4884a08ed 78411b31d48d96b4280c1948eb991c3db4475013 84a23780085d944020580d4c32921940ade5b00570ab4af686d4a4a6af7f3b6c Loading...

	dbfix.pages.dev/next/walletpage.php	843 B	2023-07-08	2024-05-02
Pretty URL dbfix.pages.dev/next/walletpage.php IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-08 14:04:30 Last Seen2024-05-02 19:50:36 Times Seen19 Hash e167ef23ba3bdd0e79a7a5bc27eabcbb 56d2d08d52edf7cb6c81168a9152a9dca8a3d284 68f2c6bcd2823d8aabbf9dee82ed5e7db9b9016b1155286ec8801c8bbb778833 Loading...

	kit.fontawesome.com/78d167673c.js	12 kB	2023-11-29	2024-05-02
Pretty URL kit.fontawesome.com/78d167673c.js IP 172.64.147.188 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 05:27:06 Last Seen2024-05-02 19:50:37 Times Seen133 Hash a1a43123e7eb997678123464a544c864 4e76f44096cd3440b204a2fd320bc4c5a150a61a e0ec6f89f9bfceba01fed293f5c72200db91c87f0ccde7574623ef9aaf2ff55d Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-03
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-03 21:18:26 Times Seen265627 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js	19 kB	2023-03-07	2024-05-03
Pretty URL cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js IP 151.101.1.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:52 Last Seen2024-05-03 20:19:48 Times Seen2395 Hash 541aecc95a7faeef0fc27558070f3647 0ec7ca4778ba3ccb4d1b1688094720834fbe9ed3 f395875eb5d58c5128c434812cd0a53d438b11536f7fd1577077d8a5c612e1fd Loading...

	dbfix.pages.dev/next/script/counter/jquery.counterup.min.js	2.2 kB	2023-03-07	2024-05-02
Pretty URL dbfix.pages.dev/next/script/counter/jquery.counterup.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:24 Last Seen2024-05-02 19:50:36 Times Seen247 Hash 1c232d83bb9d944295b4a0b014cdfc33 57ba39e3b803f4d6498e5caa67d92b6690afa9fc 7772a4b61605d37556784814cb18711cfa00cf8f99a57c8c93246d13b89f6f89 Loading...

	dbfix.pages.dev/next/script/wow/wow.min.js	8.4 kB	2023-03-08	2024-05-03
Pretty URL dbfix.pages.dev/next/script/wow/wow.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:27:34 Last Seen2024-05-03 19:36:20 Times Seen135 Hash 26c59121499fc81e65176e9c82771d7e a4279f01ee8d4bfb52cd5b020800f8818c920830 68b19df39d933cfb185659a2b4cb7df7fd69c638de68c2e70f219758143209d8 Loading...

	dbfix.pages.dev/next/script/script.js	260 B	2023-03-08	2024-05-02
Pretty URL dbfix.pages.dev/next/script/script.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:27:34 Last Seen2024-05-02 19:50:36 Times Seen124 Hash 6e0ac37821395102ff221951dc48ede5 440d583a2da6cfe4c91188c71e5b028a2a745ad4 5bada8f0f330107e43b56ab60b9268d85d8d2bae437ae69492551cf94a197853 Loading...

	dbfix.pages.dev/next/walletpage.php	4.6 kB	2024-04-20	2024-04-20
Pretty URL dbfix.pages.dev/next/walletpage.php IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-20 18:06:08 Last Seen2024-04-20 18:06:08 Times Seen1 Hash 06990bba5a881c6a047dd779731f2e16 585fca6ea5ff54f9836f5c6ff8fed240cfa51cf0 b33c8b1af3a4a9d6bea7e7d71536064b2c44a4828d8e2dc87c51de5df196ff44 Loading...

HTTP Transactions (102)

URL IP Response Size

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/dce1ee99-403f-44a9-9f94-20de30616500/lg

104.18.2.36

200 OK

11 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/dce1ee99-403f-44a9-9f94-20de30616500/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
11 kB (10900 bytes)
Hash
e04ef1d0d585dcdac8e429e9f3d5a54b
fbc766ff0a6c88f8f365f840256778f3057e70c8
4cae52b6972d39bfeb0defab9acac7648cc68b560b846fa724e02b52ee434693

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/dce1ee99-403f-44a9-9f94-20de30616500/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 10900
cf-ray: 877660634b10b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfHqVfUrQiwHUI537imp8ULHpmbGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=13+232 c=0+0 v=2024.1.1 l=10900
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/2972bbf8-0891-414a-f63c-8d3bcf661d00/lg

104.18.2.36

200 OK

3.2 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/2972bbf8-0891-414a-f63c-8d3bcf661d00/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
3.2 kB (3220 bytes)
Hash
3b81aed3d7dcd4aac6e459b597a75498
285c3f3e497b724b5017372524339c02865b2124
cec86dba2ba7352e6483522f76d58484ca8dde60263874bd966a06df798e195f

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/2972bbf8-0891-414a-f63c-8d3bcf661d00/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 3220
cf-ray: 877660634b13b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfEJ7sDQI7owDxP2gQWxxmlVR1bGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=21+83 c=0+0 v=2023.9.8 l=3220
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css

151.101.1.229

200 OK

26 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
26 kB (26333 bytes)
Hash
94994c66fec8c3468b269dc0cc242151
ec16bd19bf4ae9bc2e2336ac409a503bbbdaacad
62f74b1cf824a89f03554c638e719594c309b4d8a627a758928c0516fa7890ab

HTTP Headers

GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
age: 388875
x-served-by: cache-fra-etou8220101-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26333
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/5a96d19c-93d3-4e6a-624a-16f52773d000/lg

104.18.2.36

200 OK

4.3 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/5a96d19c-93d3-4e6a-624a-16f52773d000/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
4.3 kB (4260 bytes)
Hash
4b727f15a80fcc5b73f15ff345475227
8169b3a6b14f41f607233e92e4eaa3711d343c91
cc32e40bf7004f244a5c2972f2d202f6f1d7f696cea77b5bf5ea377fbc991e54

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/5a96d19c-93d3-4e6a-624a-16f52773d000/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 4260
cf-ray: 877660634b14b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfyZg9KSFBFXInzP057C3BVB3VbGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=23+177 c=0+0 v=2024.3.2 l=4260
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/ecc31a8e-0ee9-49db-cc59-0876b7c35600/lg

104.18.2.36

200 OK

5.3 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/ecc31a8e-0ee9-49db-cc59-0876b7c35600/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
5.3 kB (5280 bytes)
Hash
b5794b48fcc29b7418e9f388150b7fa7
c8c3038d526c9354faff7f6232df6514e77c6b1a
7401e8bac9825522e9ebf5c90a65d4fe322a86c3aea05d433e193aa3775a762f

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/ecc31a8e-0ee9-49db-cc59-0876b7c35600/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 5280
cf-ray: 877660634b19b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfJTSOLPXR36ANEIndZMWu46uobGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=14+321 c=0+0 v=2023.9.8 l=5280
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cryptologos.cc/logos/aave-aave-logo.png?v=022

104.21.92.70

200 OK

222 kB

URL GET HTTP/2
cryptologos.cc/logos/aave-aave-logo.png?v=022
IP
104.21.92.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectcryptologos.cc
FingerprintE3:7E:6F:2F:CD:35:FD:26:B3:08:A9:41:5D:24:78:74:1B:88:66:B0
ValidityTue, 05 Mar 2024 17:04:44 GMT - Mon, 03 Jun 2024 17:04:43 GMT

File type
PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced
Size
222 kB (222338 bytes)
Hash
64f49fbd11ccc415df38baae1aca3fb7
6c7cc5ef85ff37b0c2b6b12cde2f3ce393308023
0eceff0513f650e657389f560a3fd485070f6a52a0ee513c503d682ef9d37b14

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /logos/aave-aave-logo.png?v=022 HTTP/1.1
Host: cryptologos.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 222338
cache-control: public, max-age=604800
expires: Sat, 20 Apr 2024 22:21:11 GMT
last-modified: Sun, 29 Nov 2020 16:03:33 GMT
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 582261
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ufLSCXmaVyhhSHaCSJMb0tVvLVu69OXY8CD3agdl0Sp7TTGBrtuKFtbfph2yYjFpMyh6NkLEXDcGR%2FUW1a4woV%2FDCX4zUkSqfBwtaPr%2FtrHHBDXDGtBJiiow1QkcEQT%2FoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660635fcc569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cryptologos.cc/logos/tron-trx-logo.png

104.21.92.70

200 OK

104 kB

URL GET HTTP/2
cryptologos.cc/logos/tron-trx-logo.png
IP
104.21.92.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectcryptologos.cc
FingerprintE3:7E:6F:2F:CD:35:FD:26:B3:08:A9:41:5D:24:78:74:1B:88:66:B0
ValidityTue, 05 Mar 2024 17:04:44 GMT - Mon, 03 Jun 2024 17:04:43 GMT

File type
PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced
Size
104 kB (103975 bytes)
Hash
de3064d6f2b2153aacb6a854038c3a79
841f3d1f868a3d71a01649b4307b9a1c1259e399
79b386dbf889eb7356ab585421267aebc58e152268253865be5596ba2a2ce36b

HTTP Headers

GET /logos/tron-trx-logo.png HTTP/1.1
Host: cryptologos.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 103975
cache-control: public, max-age=604800
expires: Wed, 24 Apr 2024 18:17:20 GMT
last-modified: Fri, 20 Nov 2020 22:18:13 GMT
access-control-allow-origin: *
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 251293
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jMwLk5KA5IqOgsQ70C9avFGE3unKdbfvu09JHQ%2FjUCRMNgiQde76lI8FeDi0YNMMHz0Xw0c3aC0X6hpAvzak5TgRvPIaALgeRktSdyup5tUvpAR5q3ZE9IYjMzFqihE8cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660635fd8569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js

151.101.1.229

200 OK

7.0 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/@popperjs/core@2.10.2/dist/umd/popper.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (18706)
Size
7.0 kB (6952 bytes)
Hash
541aecc95a7faeef0fc27558070f3647
0ec7ca4778ba3ccb4d1b1688094720834fbe9ed3
f395875eb5d58c5128c434812cd0a53d438b11536f7fd1577077d8a5c612e1fd

HTTP Headers

GET /npm/@popperjs/core@2.10.2/dist/umd/popper.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.10.2
x-jsd-version-type: version
etag: W/"496b-DsfKR3i6PMtNGxaICUcgg0++ntM"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
age: 7638029
x-served-by: cache-fra-etou8220021-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6952
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/3abd1720-260e-495a-2e31-3d0b349e0d00/lg

104.18.2.36

200 OK

5.3 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/3abd1720-260e-495a-2e31-3d0b349e0d00/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
5.3 kB (5281 bytes)
Hash
fed98146ab9b019200c5407ce1cb95c9
d53282faea9e926da1d4b7732a0f2b022706a28e
1b60c022aa23c19cd943c8c140d07904ae1f3ef26cbc409532ab240005edaedd

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/3abd1720-260e-495a-2e31-3d0b349e0d00/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 5281
cf-ray: 877660636b35b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf9aC4vefJ0vHTSKHq7jGPXygObGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=1436+106 c=0+0 v=2023.9.8 l=5281
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js

151.101.1.229

200 OK

18 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.min.js
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (58940)
Size
18 kB (17624 bytes)
Hash
259e416ef6833be43801b8b68a93b008
19080c3b817985336aab5e1ce6925c99803f2efd
70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce

HTTP Headers

GET /npm/bootstrap@5.1.3/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"e753-GQgMO4F5hTNqq14c5pJcmYA/Lv0"
content-encoding: br
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
age: 7638029
x-served-by: cache-fra-etou8220048-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17624
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/e8803581-a57f-4e4f-5a1b-c642c5da1900/lg

104.18.2.36

200 OK

3.6 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/e8803581-a57f-4e4f-5a1b-c642c5da1900/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
3.6 kB (3630 bytes)
Hash
4b0f38097b9983dd55c3dd872f6d1370
e0c624fb52723176137d961d42dda6e2dd403eac
c2711c52abec2f874499bb9e8fac4e3083c86cb888cbf08edef35e484b9ae015

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/e8803581-a57f-4e4f-5a1b-c642c5da1900/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 3630
cf-ray: 877660634b12b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cf90c9xfbQFHK2gzV_m-5m3NdObGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=22+91 c=0+0 v=2024.3.2 l=3630
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/12f981b1-bb0a-4115-009f-317255979600/lg

104.18.2.36

200 OK

5.0 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/12f981b1-bb0a-4115-009f-317255979600/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
5.0 kB (5043 bytes)
Hash
5b41e98a5f394cd6ecb25b97e7e7383c
42d84a7379a06ca8f0a6b94407c59f86b2231f93
b47bd2a393a16fc47a4577f16295fa1a220737cb3003de1757056904c006694f

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/12f981b1-bb0a-4115-009f-317255979600/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 5043
cf-ray: 877660634b0eb51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfkcYvXYzRqd_eOHxCZjv_xlY6bGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=422+160 c=0+0 v=2024.4.0 l=5043
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/0b7e0f05-0a5b-4f3c-315d-59c1c4c22c00/lg

104.18.2.36

200 OK

4.2 kB

URL GET HTTP/2
imagedelivery.net/_aTEfDRm7z3tKgu9JhfeKA/0b7e0f05-0a5b-4f3c-315d-59c1c4c22c00/lg
IP
104.18.2.36:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectimagedelivery.net
FingerprintD1:C7:5B:05:88:2C:77:1C:0D:A8:A5:97:CB:26:3E:9F:00:63:DB:6D
ValiditySat, 23 Mar 2024 23:30:21 GMT - Fri, 21 Jun 2024 23:30:20 GMT

File type
ISO Media, AVIF Image
Size
4.2 kB (4186 bytes)
Hash
f4396a6554a066a13fcd93f413ae293f
dfcbf7cf23bc2bde857e378b76928e37814bfbf3
dc75fa2f8a6bc2ef3a617d2e0b579f95a041671c06ad6bfc51528211e4e5e33f

HTTP Headers

GET /_aTEfDRm7z3tKgu9JhfeKA/0b7e0f05-0a5b-4f3c-315d-59c1c4c22c00/lg HTTP/1.1
Host: imagedelivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/avif
content-length: 4186
cf-ray: 877660634b15b51e-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public,max-age=172800,stale-while-revalidate=7200
etag: "cfl5tTev8jv2KyQAoFT4TaqOYqbGZZNfaAGVsaSih8DQ"
vary: Accept, Accept-Encoding
cf-bgj: imgq:85,h2pri
cf-images: internal=ok/- q=0 n=25+165 c=0+0 v=2023.9.8 l=4186
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dbfix.pages.dev/next/images/trust.png

188.114.97.1

200 OK

61 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/trust.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 494 x 472, 8-bit/color RGBA, non-interlaced
Size
61 kB (60586 bytes)
Hash
d02748b892860a78ed3067575c7cb169
fc6698ff459136ed4b02f4ce07a39e384bf4a68a
dd4ce2ee737d13101702fbb6243f98f06d51b6d60fc4bf26c61b7c2e7b2728b8

HTTP Headers

GET /next/images/trust.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 60586
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "a39e7b080d09a5130e979bc5c6754d32"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4LPBYufp7dUihhzvdDQlOIEX3PlslwM%2FGxOCvz2ScyT2Xx%2FkXRP5e6YaAHSgIvlWaV1TvVhNagn8KbxqjVe3LxJLauBK9jNdTuN5wWjQtQQXSV2oSinKxFRnFIQV4iNH5zg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062fd8a568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/metamask.png

188.114.97.1

200 OK

52 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/metamask.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 394 x 362, 8-bit/color RGBA, non-interlaced
Size
52 kB (52240 bytes)
Hash
2535ff8426b5772c16a9fc51d916fdb1
6de6f3e529792b63d7c9e33b9f7460a8d911704c
58aa3c8b940128d14247012952d2b2483e4e769889672fcb59d2f93e68088b1d

HTTP Headers

GET /next/images/metamask.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 52240
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "7eabe9d4ee07e54415e8c08696f9f235"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FaJA%2Fn8xs63phtw4zbQtJarFZ5LTR67%2BX1ZIaZu1o8Gp8SujJ6WJyOjfwQnVPQmhW9F4l3tHCudbErVJxoPDjK9m3TlX6y4JaVEeoztrDqoNHOlCF9k7CATfajfixRGNSJ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062fd8b568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/brd.jpg

188.114.97.1

200 OK

10 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/brd.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3
Size
10 kB (9995 bytes)
Hash
5559279c73b9a051e071ab450ad50076
23bb6b37f56048ae4cb3b0f545b25da070fd676f
60e72b47b20a9621b79a3d322a8a38c61b39ece822406cceddbdad4f20fba19f

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/brd.jpg HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/jpeg
content-length: 9995
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8ac0839dc9c1a2ea53ef34db084a0f57"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U%2Bxkp5WfuM52GAWzskkA7vnxwONc5odr9eHo7UxZe65lYTppcb8utqCoNDdZ%2BmwSKPOUOsx8drAMS7ENe5mYGjOzvi7qKvPf10kABNXU0%2FAYqesBvtrsweHKWypD0t6D7LI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062fd90568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/saitama.png

188.114.97.1

200 OK

74 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/saitama.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
74 kB (73767 bytes)
Hash
8627f96f683abec1dbf3b2f71d04afb1
3af1f48f98e16e7c5dbcc8d0b89171140260fcc9
056c97cb6b1ed9d01a0e52da2e17b681fffafa68f2e24a3c0c5376e40e7ca382

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/saitama.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 73767
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "229ad03d7480839cbbdffe8bd84a04c5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q09Im8kA%2Fj3fQQ6J%2FZf9AVwUjh87hOOlhGl9M0%2BB3OB9zTfcIusLM%2FJC%2FOMNDu9lF%2BmZyunAiCgistTxEYCCYDKS1rYy8a73dLrMS%2FvEDWSoriVPqMv6p3ux%2BGcEOHdIZ3k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062fd96568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/terra.png

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/terra.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
22 kB (21766 bytes)
Hash
18e1d6b350f0766d8072f04ce14abf04
bdab847e865f011f6cb1219cdf9d2457e4c92c20
8ab16a824e330e0af490f0fa258b2342335916907fe03746740dc5698662be68

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/terra.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 21766
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5b0e4243a815c388b9a24f291a4618b3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=glh7VkCpiShZEuv1cXpzSugRQ6WIlJDG6IJixvJuTGZ4nbGJStgBNFAjboT3tMkv6%2BrzunWQU5hiVNzpoRc4T0K4vQGnZ9ynBdwNWbnruOMJSBFS0yUDhGBY5dMojceOslE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630d98568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/phantom.jpeg

188.114.97.1

200 OK

3.7 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/phantom.jpeg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3
Size
3.7 kB (3663 bytes)
Hash
2330366b652d6e9368039d15c7eeadaf
40debd1d403b1083d5dd2292cd291835b86356fd
e77cb0b24ae5cd3e3c7cec67114b0a2b3856a34cbf71e8872c8e10ef09aa0758

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/phantom.jpeg HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/jpeg
content-length: 3663
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "5e6ca7fea1abb1abba6ba5ea210600df"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o900o10YX1NtZKBUZecsgnwbMxJ0T17mN%2BB%2BPOaI9SFDFDvGpW4zrADlDghhahgLbkBsaeG2MsO1GFxG8psHNZoMn%2FkmeKmQil356fIJ8WDLG14tXtuzSNsyeEux6m0DW6g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630d9a568b-OSL
alt-svc: h3=":443"; ma=86400

user-images.githubusercontent.com/12424618/54043975-b6cdb800-4182-11e9-83bd-0cd2eb757c6e.png

185.199.108.133

200 OK

60 kB

URL GET HTTP/2
user-images.githubusercontent.com/12424618/54043975-b6cdb800-4182-11e9-83bd-0cd2eb757c6e.png
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 2400 x 2400, 8-bit/color RGBA, non-interlaced
Size
60 kB (59758 bytes)
Hash
39a2af266cb6e3c87524741a2d67e4fd
af027a1fbf71b7b21e951a60d17c369ad4c7a869
a1427fae355c88bfb514e9da9e908758f055d7b958ae59ac13bf589b6da9632b

HTTP Headers

GET /12424618/54043975-b6cdb800-4182-11e9-83bd-0cd2eb757c6e.png HTTP/1.1
Host: user-images.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 08 Mar 2019 17:15:30 GMT
etag: "39a2af266cb6e3c87524741a2d67e4fd"
content-type: image/png
cache-control: max-age=3600
accept-ranges: bytes
age: 811248
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.449089,VS0,VE1
content-security-policy: default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; sandbox;
x-fastly-request-id: d544197a39d923e098cdbdcbb50dfedefd353b0f
server: GitHub Cloud
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
timing-allow-origin: https://github.com
content-length: 59758
X-Firefox-Spdy: h2

avatars.githubusercontent.com/u/28931745?s=280&v=4

185.199.108.133

200 OK

10 kB

URL GET HTTP/2
avatars.githubusercontent.com/u/28931745?s=280&v=4
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
10 kB (10371 bytes)
Hash
d122120aa4985f26a469fcd1abbfd71c
d4564dd72a65181bd3fc88c002d6bb4f7c9975be
141cbacb3706bc0cadd79df44c261b14d243e7569b208b1133ab1a52ae458951

HTTP Headers

GET /u/28931745?s=280&v=4 HTTP/1.1
Host: avatars.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "f498507bdc9610fb0d41896f3f44f4920b7b4edd2c69aebd178e20463d51102e"
last-modified: Fri, 08 Jan 2021 20:47:09 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant: 
x-xss-protection: 1; mode=block
x-github-request-id: 1E0E:30F88E:F64E3:101906:661126D3
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.462085,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 1d1789682b5dd207a8ceae6e1616a3290f3c0b0d
expires: Sat, 20 Apr 2024 16:10:33 GMT
source-age: 1229050
vary: Authorization,Accept-Encoding
content-length: 10371
X-Firefox-Spdy: h2

dbfix.pages.dev/next/images/leap.png

188.114.97.1

200 OK

88 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/leap.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 402 x 398, 8-bit/color RGBA, non-interlaced
Size
88 kB (87623 bytes)
Hash
bdd8fec7766a8ab6e9ec8933b0688763
0b9a06a4888b3cd827d118ccbc0d1709a88b8827
99201b085b2e1fb2f579f5f019e7c1b020b42a75bbdd67c9e07263f27893180a

HTTP Headers

GET /next/images/leap.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 87623
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "f3652fae1ba545c3439f8bc33aee00ef"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mC38nKr5CrzMBMLrJuaxmFUw9yX7Kw4XmGtzytOT5jpR14DQPuJa16mDYPyx1GGxujwiftOkUNR21QYIuLqN1aPvmN4iQi1ldQDoJcx2d0lfI7mlUeg%2BCLiJ31FnFNu5g5Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630d9c568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/cosmos.png

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/cosmos.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
13 kB (13424 bytes)
Hash
ebc521597cec2f97db04277c065f142e
6db814ba369a593485c96e24cc9ddc6261cca169
c5e65bece6a92bc7e05ef68540a48a0417b29290234a7ba7fcfaa63bcd10b270

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/cosmos.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 13424
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "fab338960b54617f4519fce45a5cd94f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SETkg%2Fjxy4xbfmBJIHGPa9kQFLUAehLeHS22Nf4%2BTNYIV5s4f6suby0q5lrnAR7MZr6%2BSxpHEoksX29vzxcOundhh4vaR9B734oHduWg8ZZNFoP4cXHrxxx3L%2FSXMBDqTbM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630da2568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/exodus.png

188.114.97.1

200 OK

47 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/exodus.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
47 kB (47433 bytes)
Hash
5e0712fe951176bafb889631b51226dc
9bbd0cc3b4395d0cbd2260c35ed7ef973b9f5e99
618ef5a3cb6be16d8c87a0e3a64ff295baae4601a3d82cd2e9459260e97981dc

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/exodus.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 47433
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "2b6199865d97de077c0b59f15d6411d8"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SEAcBUylLHzx2695aTj752D6ANKVUiqO7Hhmb903K8YYjfvvebm%2F3CeNHoC9%2BPiZqoR06F6fTT%2Fr4GjwMY%2BubWqsVpE3s%2FOsuEQ5347EJnx%2FqC8MTPsPTMpHtnnSN5hto7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630da6568b-OSL
alt-svc: h3=":443"; ma=86400

avatars.githubusercontent.com/u/44049579?s=280&v=4

185.199.108.133

200 OK

4.2 kB

URL GET HTTP/2
avatars.githubusercontent.com/u/44049579?s=280&v=4
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
4.2 kB (4225 bytes)
Hash
d4f0427b24ab1604f5c65e4ae4a1936e
4ae69220ecc9e10f79c7bd8446a71d7978675511
b587d3b39cecfb2f439f05945fd91e6ef9289efad89b5589cad08da0e9821d71

HTTP Headers

GET /u/44049579?s=280&v=4 HTTP/1.1
Host: avatars.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "17d2edd076b307b9c059189aff75448e6e7cabc3e9d088c338b13850252387a8"
last-modified: Thu, 15 Apr 2021 07:13:28 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant: 
x-xss-protection: 1; mode=block
x-github-request-id: 1B5C:358C01:3B8B31F:3E2FDE3:66114DD8
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.463030,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: dd48de4f8b2b33f85422577b06661211f758fb60
expires: Sat, 20 Apr 2024 16:10:33 GMT
source-age: 1219060
vary: Authorization,Accept-Encoding
content-length: 4225
X-Firefox-Spdy: h2

avatars.githubusercontent.com/u/49746116?s=280&v=4

185.199.108.133

200 OK

14 kB

URL GET HTTP/2
avatars.githubusercontent.com/u/49746116?s=280&v=4
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
14 kB (13850 bytes)
Hash
f1e13626569e62a25fabe2301683225c
fa0d06092fc55550f9a9c0eacc188388b8a5ad55
c90e1b779e7d695ff72cdc8daf964756d6810ba9afa443514205f74ebb730282

HTTP Headers

GET /u/49746116?s=280&v=4 HTTP/1.1
Host: avatars.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "6feab4e8e4bdca5c54eed22a4e5fe9c73ca1defec89c2afb3eb47c238903455f"
last-modified: Thu, 06 Jun 2019 23:44:12 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant: 
x-xss-protection: 1; mode=block
x-github-request-id: 5D98:268876:21D3ADC:23BD950:661F3310
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.463044,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 363e6e3d9ccc29daf02b7f30d3283207b632f03b
expires: Sat, 20 Apr 2024 16:10:33 GMT
source-age: 308409
vary: Authorization,Accept-Encoding
content-length: 13850
X-Firefox-Spdy: h2

is4-ssl.mzstatic.com/image/thumb/Purple122/v4/a2/80/13/a28013ce-da98-fd24-2a9a-a22ecfef7cb8/AppIcon-1x_U007emarketing-0-7-0-85-220.png/512x512bb.jpg

184.24.44.26

200 OK

13 kB

URL GET HTTP/2
is4-ssl.mzstatic.com/image/thumb/Purple122/v4/a2/80/13/a28013ce-da98-fd24-2a9a-a22ecfef7cb8/AppIcon-1x_U007emarketing-0-7-0-85-220.png/512x512bb.jpg
IP
184.24.44.26:443
ASN
#16625 AKAMAI-AS

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerApple Inc.
Subjectitunes.apple.com
Fingerprint9F:F6:BE:FB:AE:BF:D5:39:A2:BC:74:59:1D:C1:96:05:01:D0:90:45
ValidityTue, 23 Jan 2024 20:23:43 GMT - Sun, 21 Jul 2024 20:33:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 512x512, components 3
Size
13 kB (12772 bytes)
Hash
9be52461b3a4e0fd161e1ead7ad7409a
51a95bc1d79e0dd7994271f115de178d6547d31a
e9f8e420202e96e0a38547c679ba5980c03ea7b79ca5a193bf9709a58cef7460

HTTP Headers

GET /image/thumb/Purple122/v4/a2/80/13/a28013ce-da98-fd24-2a9a-a22ecfef7cb8/AppIcon-1x_U007emarketing-0-7-0-85-220.png/512x512bb.jpg HTTP/1.1
Host: is4-ssl.mzstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: 4.0.0
content-type: image/jpeg
content-length: 12772
x-apple-jingle-correlation-key: UUQ7AX5RRANWBWQX6IODVDN4LI
x-apple-request-uuid: a521f05f-b188-1b60-da17-f21c3a8dbc5a
b3: a521f05fb1881b60da17f21c3a8dbc5a-252a0951722608cf
x-b3-spanid: 252a0951722608cf
x-b3-parentspanid: 3c4b1a33be54d04b
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
last-modified: Thu, 05 Oct 2023 22:30:33 GMT
etag: "MSwxLjcyLjYtMjNMLFZlcnNpb24gMTMuNS4yIChCdWlsZCAyMkc5MSksMTY5NjU0NTAzMzQ2NSxpc0J1aWxkVmVyc2lvbk5vdFNldCwzOWJkMDU3NCxub0VmZmVjdA=="
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
timing-allow-origin: *
x-b3-traceid: ac6418a7c7e80bcf
strict-transport-security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:13624002:mr85p00it-hyhk03094901:7987:23RELEASE158:daiquiri-amp-processing-shared-int-001-mr, daiquiri:11338002:mr47p00it-qujn02122102:7987:23RELEASE158:daiquiri-amp-all-l7shared-int-001-mr
cdnuuid: 45c7a0c8-b455-4a87-a42f-cdc349b451c4-4400571654
cache-control: no-transform, max-age=15658270
date: Sat, 20 Apr 2024 16:05:33 GMT
x-cache: TCP_HIT from a95-101-11-174.deploy.akamaitechnologies.com (AkamaiGHost/11.4.5-55391218) (-)
X-Firefox-Spdy: h2

avatars.githubusercontent.com/u/76861339?s=200&v=4

185.199.108.133

200 OK

4.6 kB

URL GET HTTP/2
avatars.githubusercontent.com/u/76861339?s=200&v=4
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4620 bytes)
Hash
00a40775b1b9c21acacf4ec7d612a450
dfefe862a368f4404dddceb4456ff02dd089c143
67c18530b0501c67163551700e94257892b4d280fe72657a3501c975b75a6301

HTTP Headers

GET /u/76861339?s=200&v=4 HTTP/1.1
Host: avatars.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "db9881744c9fc5d6c1797214e3756a915ecfcfd86df17e7d7fb87395b8422a39"
last-modified: Mon, 04 Jan 2021 07:10:26 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant: 
x-xss-protection: 1; mode=block
x-github-request-id: 51C8:28FDF2:3433B32:3750267:661F91B7
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.476850,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: aec3ab91130f46cc0fd69b599664fff8ae0694cd
expires: Sat, 20 Apr 2024 16:10:33 GMT
source-age: 284182
vary: Authorization,Accept-Encoding
content-length: 4620
X-Firefox-Spdy: h2

avatars.githubusercontent.com/u/28189800?s=280&v=4

185.199.108.133

200 OK

35 kB

URL GET HTTP/2
avatars.githubusercontent.com/u/28189800?s=280&v=4
IP
185.199.108.133:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.github.io
Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28
ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT

File type
PNG image data, 280 x 280, 8-bit/color RGBA, non-interlaced
Size
35 kB (35212 bytes)
Hash
d2de32f623a3beefbdb39d8ec577160b
9dc28a14227bbd26e974f83a011367d19a62c77d
c7d02addcc383128f53a067c56fad8ed4e271e8426d8c1dd5c99a43602b84337

HTTP Headers

GET /u/28189800?s=280&v=4 HTTP/1.1
Host: avatars.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'
content-type: image/png
etag: "ab15e321541feeabca839b27d780b8b00e9a0a8d02eed5384e48c32bbcdbdace"
last-modified: Sat, 29 Apr 2017 11:22:17 GMT
strict-transport-security: max-age=31557600
timing-allow-origin: https://github.com
x-content-type-options: nosniff
x-frame-options: deny
x-github-tenant: 
x-xss-protection: 1; mode=block
x-github-request-id: 7526:22870C:1B647DB:1D2193D:661DEABA
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
via: 1.1 varnish
x-served-by: cache-hel1410029-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1713629133.497806,VS0,VE1
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-fastly-request-id: 937cff54013f82f3f49e4bf53c3cd16c77f00bde
expires: Sat, 20 Apr 2024 16:10:33 GMT
source-age: 392467
vary: Authorization,Accept-Encoding
content-length: 35212
X-Firefox-Spdy: h2

is5-ssl.mzstatic.com/image/thumb/Purple124/v4/d2/bc/d7/d2bcd729-ae03-6f33-7446-f60e853c5229/source/512x512bb.jpg

184.24.44.26

200 OK

15 kB

URL GET HTTP/2
is5-ssl.mzstatic.com/image/thumb/Purple124/v4/d2/bc/d7/d2bcd729-ae03-6f33-7446-f60e853c5229/source/512x512bb.jpg
IP
184.24.44.26:443
ASN
#16625 AKAMAI-AS

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerApple Inc.
Subjectitunes.apple.com
Fingerprint9F:F6:BE:FB:AE:BF:D5:39:A2:BC:74:59:1D:C1:96:05:01:D0:90:45
ValidityTue, 23 Jan 2024 20:23:43 GMT - Sun, 21 Jul 2024 20:33:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 512x512, components 3
Size
15 kB (14719 bytes)
Hash
3d8a4f8f87bfc60f3d3ec895130cd0a1
6b436ff99d5ad64b0d07d5c1d1f153f7cd91f56b
471809a7bcab95866bfa00e5289ffd41a6d91dd7d99d156cd2b5b572627988ec

HTTP Headers

GET /image/thumb/Purple124/v4/d2/bc/d7/d2bcd729-ae03-6f33-7446-f60e853c5229/source/512x512bb.jpg HTTP/1.1
Host: is5-ssl.mzstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: daiquiri/3.0.0
content-type: image/jpeg
content-length: 14719
x-apple-jingle-correlation-key: VI4ESHDBYS6GTNPEOCLZ42V3YU
x-apple-request-uuid: aa38491c-61c4-bc69-b5e4-70979e6abbc5
b3: aa38491c61c4bc69b5e470979e6abbc5-92cb3bbcc9f6c648
x-b3-spanid: 92cb3bbcc9f6c648
x-b3-parentspanid: 53e5b3ca9185308d
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
last-modified: Sun, 10 Sep 2023 05:37:02 GMT
etag: "MSwxLjcyLjQtMjNMLFZlcnNpb24gMTMuNS4yIChCdWlsZCAyMkc5MSksMTY5NDMyNDIyMjk2Myxpc0J1aWxkVmVyc2lvbk5vdFNldCw0ODUyMjJjYyxub0VmZmVjdA=="
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
timing-allow-origin: *
x-b3-traceid: 1355cf199543ecf3
strict-transport-security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:43624002:st44p00it-hyhk15014701:7987:23RELEASE143:daiquiri-amp-processing-shared-int-001-st
cdnuuid: 7b03f3a4-6ad1-46c8-aee1-6a71f243f29b-1121368083
cache-control: no-transform, max-age=15312281
date: Sat, 20 Apr 2024 16:05:33 GMT
x-cache: TCP_HIT from a95-101-11-174.deploy.akamaitechnologies.com (AkamaiGHost/11.4.5-55391218) (-)
X-Firefox-Spdy: h2

dbfix.pages.dev/next/images/defi.png

188.114.97.1

200 OK

113 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/defi.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 344 x 364, 8-bit/color RGBA, non-interlaced
Size
113 kB (113213 bytes)
Hash
bde3a69778a9afc57a4ebc2f8dcb08b8
a525b55bb107172751bdb3d7c11771805517448b
ea93363c654e3ef6d97350149c7ba4b89373dd1d64e1115fcf10a3a1e6621834

HTTP Headers

GET /next/images/defi.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 113213
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "1ddecf1efc9dcb777e8571473b7eae7e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kyCO7s4cfM3hWxMv6zseDdY8bkKptBZfTCimj9PJnxqjjKj67a%2BqFOs%2F3c%2FjsXKQfql6U%2ByzxzA%2BV7EC41TRMttntqx9VNI8J2a8sxiyNJFPNDruCyDqc9lYv0YOxOHBmKk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630dac568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/onto.png

188.114.97.1

200 OK

56 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/onto.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 734 x 730, 8-bit/color RGBA, non-interlaced
Size
56 kB (55893 bytes)
Hash
19ccbd5dd8dceedad98ee57a691ea617
52e2cf4e3aead67f75511babc1e3e39f766f621c
a1280719093f4c950054fa97e8e48509e493a78f29554c55e6f29f7bc2bcee8e

HTTP Headers

GET /next/images/onto.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 55893
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "56bb6c1933507176c6b851d194894da5"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sdtGhks1qV1T1a9EWC3mVuIkIFvo3gIYOtc1%2BraP2n7rDuXHOrn08bmVFjtEi5v1HtP4rLbAiMvL1LSHTNVH0CVMzzoux2kPvFYThOI8whE8oHAFTVMM8mTCr0WxHmfjEkk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630db0568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/tokenpocket.png

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/tokenpocket.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 414 x 360, 8-bit/color RGBA, non-interlaced
Size
22 kB (22286 bytes)
Hash
5d3c7cf368d6bf8d5512dc5a130a8a52
d66d12482eac96d36c7868ca00069107aff2913c
d772a8c95963f498533f896281e901eff8333769ca0eaec9a73942d6ce1464f2

HTTP Headers

GET /next/images/tokenpocket.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 22286
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "83c05613214d5ca3e5919fa989eb91e9"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oRRNanoMJ9Y9wyil43hKcFWnQHeFqNTybFgpeZeytg%2FdjDh2lI4Jn0yShZRudqlFWzi2ow6p0eh4%2BpgflVgbyJS4J9GV1XQqRBD6ie1b9Gmp%2F1jp0lBYW1YWqrMIjUaEMcc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660631dbc568b-OSL
alt-svc: h3=":443"; ma=86400

is2-ssl.mzstatic.com/image/thumb/Purple112/v4/58/45/bf/5845bfec-7804-a710-329a-9627057742de/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/512x512bb.jpg

184.24.44.26

200 OK

18 kB

URL GET HTTP/2
is2-ssl.mzstatic.com/image/thumb/Purple112/v4/58/45/bf/5845bfec-7804-a710-329a-9627057742de/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/512x512bb.jpg
IP
184.24.44.26:443
ASN
#16625 AKAMAI-AS

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerApple Inc.
Subjectitunes.apple.com
Fingerprint9F:F6:BE:FB:AE:BF:D5:39:A2:BC:74:59:1D:C1:96:05:01:D0:90:45
ValidityTue, 23 Jan 2024 20:23:43 GMT - Sun, 21 Jul 2024 20:33:43 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 512x512, components 3
Size
18 kB (17847 bytes)
Hash
7a3828fc778d60a2e8c58dd4bee8fdab
61b1b6b2b41c9315f61b5da035c0d0a59d99a80f
91a6621dcd84a7080005c11c404cf79124f7c79e632947e663e43abc8a8cbf5a

HTTP Headers

GET /image/thumb/Purple112/v4/58/45/bf/5845bfec-7804-a710-329a-9627057742de/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/512x512bb.jpg HTTP/1.1
Host: is2-ssl.mzstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: 4.0.0
content-type: image/jpeg
content-length: 17847
x-apple-jingle-correlation-key: BI4JXNMB56POFGWNPZEXSCT5JI
x-apple-request-uuid: 0a389bb5-81ef-9ee2-9acd-7e49790a7d4a
b3: 0a389bb581ef9ee29acd7e49790a7d4a-c8c161c6dba8f82d
x-b3-spanid: c8c161c6dba8f82d
x-b3-parentspanid: f9f105b56de6cb4c
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
last-modified: Sat, 25 Nov 2023 16:06:21 GMT
etag: "MSwxLjcyLjYtMjNMLFZlcnNpb24gMTMuNS4yIChCdWlsZCAyMkc5MSksMTcwMDkyODM4MTUyMyxpc0J1aWxkVmVyc2lvbk5vdFNldCxhODE1OGQxZSxub0VmZmVjdA=="
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
timing-allow-origin: *
x-b3-traceid: c75c25c9785e989b
strict-transport-security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:33624002:pv50p00it-hyhk12033901:7987:23RELEASE188:daiquiri-amp-processing-shared-int-001-pv, daiquiri:31338002:pv52p00it-qujn10213502:7987:23RELEASE188:daiquiri-amp-all-l7shared-int-001-pv
cdnuuid: 4da2eb3a-3ca2-4681-9c63-8f87daec6484-652030937
cache-control: no-transform, max-age=14609390
date: Sat, 20 Apr 2024 16:05:33 GMT
x-cache: TCP_HIT from a95-101-11-174.deploy.akamaitechnologies.com (AkamaiGHost/11.4.5-55391218) (-)
X-Firefox-Spdy: h2

miro.medium.com/v2/resize:fit:2400/1*N6Uvv2QMQGqQubnGP1tGig.png

162.159.152.4

200 OK

36 kB

URL GET HTTP/2
miro.medium.com/v2/resize:fit:2400/1*N6Uvv2QMQGqQubnGP1tGig.png
IP
162.159.152.4:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerCloudflare, Inc.
Subjectmedium.com
FingerprintF3:FC:CB:6E:E6:33:07:77:AD:2B:53:42:4C:B4:FA:11:D9:AB:41:2C
ValidityFri, 16 Feb 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced
Size
36 kB (36107 bytes)
Hash
58061b4c9e251bb945eab47e5dafcf93
1d8dc69507ec24223022e8f8b4e11c2aaaf612c8
15f915ede5d484d5697ebbd31d95030f46c5baf87e53cfbb5744600e226c6519

HTTP Headers

GET /v2/resize:fit:2400/1*N6Uvv2QMQGqQubnGP1tGig.png HTTP/1.1
Host: miro.medium.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 36107
sepia-upstream: medium
access-control-allow-origin: *
cache-control: public, max-age=31536000
content-disposition: inline; filename="1*N6Uvv2QMQGqQubnGP1tGig.png"
content-security-policy: script-src 'none'
etag: "wJdCeGhyEW0p4ntu5EAEb-t-DP8BoLS15rmxYa4rMRc/RIjM3YTUyZmJmNjQwYzQwNmE5MGI5YjljNjNmNWI0NjhhIg"
expires: Sun, 20 Apr 2025 16:05:33 GMT
medium-fulfilled-by: miro-v2/main-20231207-145203-3b70adbedf
x-envoy-upstream-service-time: 172
x-request-id: 6378327f-9f3c-42c9-ab6e-2fedfdf4fcf9
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: HIT
age: 427209
accept-ranges: bytes
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 877660649b040b45-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dbfix.pages.dev/next/images/math.png

188.114.97.1

200 OK

376 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/math.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 804 x 800, 8-bit/color RGBA, non-interlaced
Size
376 kB (375453 bytes)
Hash
91e40adfecf315dc68b8abdf0c50ebfd
d3306f60ef71fa091c240c949af157c26b5cb58a
5488b1d145c69341f78aebf460233dc876f1a7856fd59eb1cb12a9a7dde8257a

HTTP Headers

GET /next/images/math.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 375453
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "9dc060651a2d678f8092c2eb154b5d04"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jBsT3ku1ygB9LLWG1aDUo9UOUT0wSU0eLtQe09IbSxXYi%2Bub%2FZuxcxihWGpzX82yy3AtDVzfcGQAXFj%2Fk97LG2wBwyxHtrBYgx%2FfaXAZYCOtzqqa2NGe%2BZ9eb6Ii9B%2FJmEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660631dbd568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/eternl.jpg

188.114.97.1

200 OK

10 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/eternl.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3
Size
10 kB (10121 bytes)
Hash
e5ab04e695bba074fa6a72689775f987
9bf46c8ae675c8d7f4c58af2e33a8c3dfd58a514
efd16dae2683fbf215166d2f178c674d38de90248f2bd5a8fd6506a13c5bcc9b

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /next/images/eternl.jpg HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/jpeg
content-length: 10121
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "865090dfc9b8c9fb6090e73053d4ba96"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QHJWU3CtCxNwe5d8kz4L399VP9BwAF2lwZWJBOeow41LR2ABOO%2B1qEQpmebSyl4BNF9EoPHhPmmi8RAMbU4pAoJMOPa5oE1VUKaLqQhsr6KjaQccKC7fIaLGSGHNDS%2BBoEo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660631dc0568b-OSL
alt-svc: h3=":443"; ma=86400

s2.coinmarketcap.com/static/img/coins/200x200/2772.png

3.164.240.38

200 OK

5.5 kB

URL GET HTTP/2
s2.coinmarketcap.com/static/img/coins/200x200/2772.png
IP
3.164.240.38:443
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerAmazon
Subject*.coinmarketcap.com
Fingerprint1F:1D:0C:75:CD:54:D8:20:08:DE:0D:53:0C:01:FC:76:6B:B1:DB:98
ValidityWed, 06 Mar 2024 00:00:00 GMT - Thu, 03 Apr 2025 23:59:59 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
5.5 kB (5516 bytes)
Hash
89ccc94734126594ee791ed81d02409b
bf7818df6647e3a5b1736e96545a5ca4790ac0b7
2a118d9d307abe049bf3c13da7f018fcdc8912fc24bc7d305e9ee61162801f43

HTTP Headers

GET /static/img/coins/200x200/2772.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 5516
last-modified: Tue, 23 Mar 2021 13:20:37 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 19 Apr 2024 16:35:22 GMT
etag: "89ccc94734126594ee791ed81d02409b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784f462b4ee4e847ccfe44db65f51a9c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BY0OO2VgyoeLvedC90Ae8CD6aBlrBvCed9wK0Zspl-ush_FFot-WFg==
age: 84612
X-Firefox-Spdy: h2

s2.coinmarketcap.com/static/img/coins/64x64/10903.png

3.164.240.38

200 OK

14 kB

URL GET HTTP/2
s2.coinmarketcap.com/static/img/coins/64x64/10903.png
IP
3.164.240.38:443
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerAmazon
Subject*.coinmarketcap.com
Fingerprint1F:1D:0C:75:CD:54:D8:20:08:DE:0D:53:0C:01:FC:76:6B:B1:DB:98
ValidityWed, 06 Mar 2024 00:00:00 GMT - Thu, 03 Apr 2025 23:59:59 GMT

File type
PNG image data, 293 x 293, 8-bit/color RGBA, non-interlaced
Size
14 kB (14282 bytes)
Hash
016a7610a0d4edf5ba7ff030792337c3
b0ef1892c6d0ee386bcf2fa29ba3be87b9bb5654
957d5ccbd9a107a270b3df1de91d189d0183dac96644beb645957c1a1b1514a7

HTTP Headers

GET /static/img/coins/64x64/10903.png HTTP/1.1
Host: s2.coinmarketcap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 14282
last-modified: Tue, 19 Oct 2021 05:32:54 GMT
accept-ranges: bytes
server: AmazonS3
date: Sat, 20 Apr 2024 05:59:53 GMT
cache-control: max-age=86400
etag: "016a7610a0d4edf5ba7ff030792337c3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784f462b4ee4e847ccfe44db65f51a9c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sxvlWtMWAgB64ta6ZkfuFfT3mE7UtgdkSagS--B1xTDWZdgOOejDbw==
age: 40126
X-Firefox-Spdy: h2

dbfix.pages.dev/next/images/xumm.png

188.114.97.1

200 OK

127 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/xumm.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
127 kB (126663 bytes)
Hash
8345c8a111165c37a630ab505ab693a4
c34ed08bda00761d45a9fa235feda40f93278f91
e97dea1468f9793c02ff5e39d4e23536fd883f359fc01aa77966a239af693dbb

HTTP Headers

GET /next/images/xumm.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 126663
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "88434028274fc8acc27b28283a2a68a6"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EpFi1g%2BIEDiIZhys0AyzFb74h2uhw5pJI23TeP3qsippTUviXt909M%2FH%2FA8fmkAzZaP892M%2FEA%2FRr5v0mqcsMvDoz0wbpp40X0CR71M2r03PxfkVPuUm7K%2F8QxYE1z1v%2FE4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660631dbe568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/linen.png

188.114.97.1

200 OK

42 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/linen.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 598 x 594, 8-bit/color RGBA, non-interlaced
Size
42 kB (42364 bytes)
Hash
3ea06addbf5c13c1307bf69222a41774
30bd1d648d64d01908c02724b32b102e768df45d
874f2ca7515d339659cc2dcc43522913c649ac53e77aebe32ac5b01163ee5aab

HTTP Headers

GET /next/images/linen.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 42364
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "6fee6d3fd42735f954a384cf58c48b2a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UL9fqL3bDsQZkjtvtllyG4oPb3vovaQbzLFM3FKWJtlc1ledqj8eyqqivDii7T2rbBDBOmRmCDlBgdPLSjuKpWpvGOxUYe%2B%2FLlb3aLk97nNoc%2FF0U2b2zBj9jRJAd%2BJbuMA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660636e3c568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/keplr.png

188.114.97.1

200 OK

53 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/keplr.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced
Size
53 kB (52866 bytes)
Hash
e1c1b8808492dd9c818637a2bac55692
492e55ba5dfbbe0f6a86a80a92b80927c1722646
76a331bc3439ddf76b12bd95911b0121e6c7a0d96d42282dace8711ab89d88b2

HTTP Headers

GET /next/images/keplr.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 52866
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e92f96aa8d2505aba098f844f9bfd92c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Md7ZRrgkxRe8ghTIgPSeltc%2FbfrkPMwpLd1an1WzHV9oSnmJPBKwjUcLhRZGkvYGNPYxYZR6ZA96t5tSZX9sNyb%2BEObpi8gpd4uwQbO24v5l%2BNUUFBJ%2FoMMH3J99JvPxBAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660631dc5568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/alphawallet.png

188.114.97.1

200 OK

77 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/alphawallet.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 804 x 800, 8-bit/color RGBA, non-interlaced
Size
77 kB (76630 bytes)
Hash
ca341757938dad47669d05985744f3cf
13a41aa40ad1aacc00d16bbd3d4a1bca7b57ac46
4236dee9c0f9f35556a6a4707860385633401c76936dd860472e8589611176e4

HTTP Headers

GET /next/images/alphawallet.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 76630
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "43ee4e6e5c7b99ed695cd828216194e7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MXQKUo%2BKgAAko2uJIgKcCFBW%2FJwpA8dPBUeBqW6pta81Jha9jeLFLntGvrnjlpJBwJdgVPPwGl6YikkiSkbBjPlkYYOjr6Fsg0MtzAci3ljXsUtxGPeuX7rDYwv9%2FmkHL4o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660633de1568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/zelcore.png

188.114.97.1

200 OK

22 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/zelcore.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
22 kB (21608 bytes)
Hash
04cc72cc7a8bd3f0a94ee62c0d256867
aa92336c8e21d2f4c32b8e9e056cf0ae1ccb6a60
68f6762085adb93d89110b0775186bb6b494ce5620374b1e2b65fb9524c006a5

HTTP Headers

GET /next/images/zelcore.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 21608
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "8013b5e00bdd3eecd909ae64be87298a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j41gvLg4wcUPlIlktxgnibCogDZLfPFIxXswHg6hy4kV79N2%2BsFGCPnPehIn%2F3QDzcmkItlUYmIs%2BbMwDZNm913iOsTmwRnjUSkx%2BmeXt9rsGPw6%2BDt8098%2BAp%2F9xeI9Mes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660633de4568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/safepal.png

188.114.97.1

200 OK

14 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/safepal.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 400 x 398, 8-bit/color RGBA, non-interlaced
Size
14 kB (13650 bytes)
Hash
cfb2db5add05dcdd13b9570bca755712
b9ac8e188d6d65076c6a1a66c57bc94912738e90
f1f1f4c1f7034c6771b84a2f32003a3b1716bc5fb29e4cdd30301813ab3f0ff6

HTTP Headers

GET /next/images/safepal.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 13650
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "4e302bc61f1ef16397c4cf947d56bc11"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wg8CgRlk5pt2egeQPyxoPy2ePMRnU0niM8BSqHA7L4KXGuwT1CBdxTZuSpiqCKwZt65g7p1LNCcNkUT0b0fi1w2l4n%2BQjoG931qjH%2BI4D1fIk9CbTkoskI7sZdKsMjlN1ww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660634e04568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/sender.png

188.114.97.1

200 OK

13 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/sender.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 216 x 216, 16-bit/color RGBA, non-interlaced
Size
13 kB (12872 bytes)
Hash
89fb979a9177fd6abf6b71055274471e
25e6ef31be1d72a8341f83826c341812ba2a4147
10acc7d5b988767d1665f8764ae022935d573300eb7b6fced02c9e09178e90ff

HTTP Headers

GET /next/images/sender.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 12872
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "33bf9a9de68a63341f8fa63f98e5bd42"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iAbsUaJzLViTud8ZSDAVS8%2F0NzKywe4SSHmlz5%2Blx%2BG7XUE4mbx02dVUxDLK%2B93DwzxN5JBlCJLGnlGhXovIYNpo5yaOWqPJTf3ASwCuDfB3UvsVdtI1zq9fMIARM4Vzt6w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660634e07568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/bitkeep.png

188.114.97.1

200 OK

42 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/bitkeep.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 326 x 348, 8-bit/color RGBA, non-interlaced
Size
42 kB (41636 bytes)
Hash
042b3f6ba666683c41aa7b5d007a976e
1f981d8f3fe96b31073d4456b00bd3dbc85a55cb
4a55505ddaf59b0fc6b54da5ec6be90d5ebb4732d494ab290371ce6fdc2883ac

HTTP Headers

GET /next/images/bitkeep.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 41636
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "807f96a1bee90244d44ae50c08c29209"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3Py7Xy%2BpWZl4qBgc4w5AfGAYIsvCfyF9zuj09U9Eqihs3A9Fwv8qhNUEzhMtK3D%2BY2uVmBqemYQ2u0pAq%2BOMKJCHbSwRUAX7LJxifsncpOEaXz%2BYkBfZnwInmyAL1hCUBkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660634e0f568b-OSL
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/images/Aktionariat.png

188.114.97.1

200 OK

39 kB

URL GET HTTP/3
dbfix.pages.dev/next/images/Aktionariat.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
PNG image data, 598 x 594, 8-bit/color RGBA, non-interlaced
Size
39 kB (38647 bytes)
Hash
06c61e6c08c406743c317a93d253817a
0b4f1208e99a972983ce13e3dda27b7d9352f11d
2d1b5545fcd2d4f0403ed4532840bc6eb5dfaaf43b48729c4a6fa59cc96ce1e4

HTTP Headers

GET /next/images/Aktionariat.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 38647
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: "e48e8cbdea247ca3ae17a2a49c9137b7"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rHG%2BsNx9HkfbXVbUhyoM7p90WOOT5R4KTIVcs9AeXrbU9A%2BjeSyZG4MVu%2FRXplM3m26N67QOwZJdl4NyJAExt70WDA1tIp%2Brd8tpuVak0AJJvL8RIOSlEQABy%2BCNWXZJG%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660635e32568b-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-3.6.0.min.js

151.101.2.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d9d"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 20 Apr 2024 16:05:33 GMT
age: 6086753
x-served-by: cache-lga21931-LGA, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 22, 112672
x-timer: S1713629134.749369,VS0,VE0
vary: Accept-Encoding
content-length: 30875
X-Firefox-Spdy: h2

www.cryptocompare.com/media/36798689/trustvault.png

172.67.72.98

200 OK

62 kB

URL GET HTTP/2
www.cryptocompare.com/media/36798689/trustvault.png
IP
172.67.72.98:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectcryptocompare.com
Fingerprint9B:90:03:9A:D5:49:03:4C:62:4D:7A:C4:64:BC:5F:2D:5A:72:01:D2
ValidityFri, 15 Mar 2024 23:44:28 GMT - Thu, 13 Jun 2024 23:44:27 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGB, non-interlaced
Size
62 kB (62539 bytes)
Hash
27573d3265a1ec7647e1757000d02295
263a5b523e02465be0099f027e33aa2bcff28245
4ca43dfdc091439f0f5e98cbac48f1de73a1c87dd32daee2e24ce64bb6728f5e

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /media/36798689/trustvault.png HTTP/1.1
Host: www.cryptocompare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 62539
cache-control: public, max-age=31536000, must-revalidate
expires: Tue, 02 Apr 2024 13:58:47 GMT
vary: Accept-Encoding
cryptocompare-vm: 1
x-frame-options: DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'self'
access-control-allow-origin: *
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 1562806
last-modified: Tue, 02 Apr 2024 13:58:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QnjEUqC538s0Yg6xwokd9L5K%2B2us91p83cu5PKl4xJcViQ4cOPDvHUVJxFNTFccYEVmoM8QFMdU6MnQRa%2BIFj4tMQ781nDeMe2KFD5UqD94j1MoOYAGbOO2pKo3fMYxrBU0MzAeMKg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877660661bf056a8-OSL
X-Firefox-Spdy: h2

bitcoin-trading.io/wp-content/uploads/2021/10/ledger_logo.png

104.21.35.198

200 OK

4.2 kB

URL GET HTTP/2
bitcoin-trading.io/wp-content/uploads/2021/10/ledger_logo.png
IP
104.21.35.198:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectbitcoin-trading.io
Fingerprint9D:EF:4D:B2:D0:4F:FE:F1:E5:C8:D1:67:9B:6F:B5:54:5D:57:8D:A3
ValidityMon, 15 Apr 2024 09:36:09 GMT - Sun, 14 Jul 2024 09:36:08 GMT

File type
PNG image data, 1132 x 1132, 4-bit colormap, non-interlaced
Size
4.2 kB (4246 bytes)
Hash
675bfb13041bf1e2eb68176d89881604
bc95f28550b9ce97c4f2089711e2d7859db905b4
fe59fc6d9ea816894ce565f9ca5ae82f3f78b35d6be4d48661d8e4840b385f57

HTTP Headers

GET /wp-content/uploads/2021/10/ledger_logo.png HTTP/1.1
Host: bitcoin-trading.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 4246
last-modified: Wed, 27 Sep 2023 07:29:07 GMT
etag: "6513d9c3-1096"
expires: Sun, 21 Apr 2024 04:08:06 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2548647
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jmaqELo3hegcA69mX7YKQRUiQWnmgoOG8ew%2FPbLTb1b2ewxArhfRwXdBMVjmsuPe5fF8z979s8qdFeYK%2BLOyOvbvY22yaPWpkBLP2PpdFNFrUIt9weu4dGsEy2hlpCV6fc7GVvc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660664e935687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.dribbble.com/users/1298186/screenshots/4669247/portis_logo_dribbble.png

192.229.220.206

200 OK

17 kB

URL GET HTTP/2
cdn.dribbble.com/users/1298186/screenshots/4669247/portis_logo_dribbble.png
IP
192.229.220.206:443
ASN
#15133 EDGECAST

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.dribbble.com
Fingerprint8B:E8:12:56:9B:B6:EC:A2:BE:49:39:AC:78:8B:48:42:91:15:F1:EE
ValidityTue, 19 Mar 2024 00:00:00 GMT - Sat, 19 Apr 2025 23:59:59 GMT

File type
PNG image data, 800 x 600, 8-bit/color RGB, non-interlaced
Size
17 kB (16856 bytes)
Hash
c1c6b21a6061696e993d660742ba82fa
423e0f79fb76d3cc0ab73a7a1f1b46a7cf875853
2f8894d5e0921b2728ada153b280b6c23637032802fa32295a61716f3c06dd8d

HTTP Headers

GET /users/1298186/screenshots/4669247/portis_logo_dribbble.png HTTP/1.1
Host: cdn.dribbble.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD
access-control-allow-origin: https://dribbble.com
age: 2350499
cache-control: max-age=315576000
content-type: image/png
date: Sat, 20 Apr 2024 16:05:33 GMT
etag: "c1c6b21a6061696e993d660742ba82fa"
expires: Sun, 02 Jul 2028 01:39:46 GMT
last-modified: Mon, 04 Jun 2018 20:51:17 GMT
server: ECAcc (ska/F6F5)
via: 1.1 157ebd6865840045fc8b5ed1cce7e466.cloudfront.net (CloudFront)
x-amz-cf-id: p9Bi7Xzj-sy-vCAztYRD0PXHjKwISbFH2OBAf-Dt9pzl3g552F6R0A==
x-amz-cf-pop: IAD89-C3
x-amz-version-id: bhTnaPFZrM94sXGOJ_khCNbG0Ui5C53B
x-cache: HIT
content-length: 16856
X-Firefox-Spdy: h2

ffnews.com/wp-content/uploads/2021/09/1581439195205.jpg

104.19.154.92

200 OK

2.0 kB

URL GET HTTP/2
ffnews.com/wp-content/uploads/2021/09/1581439195205.jpg
IP
104.19.154.92:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectffnews.com
Fingerprint8A:00:DD:B6:65:71:3E:F9:86:FF:D7:D2:5C:16:F1:65:00:83:28:F2
ValidityTue, 26 Mar 2024 08:55:35 GMT - Mon, 24 Jun 2024 08:55:34 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 200x200, Scaling: [none]x[none], YUV color, decoders should clamp
Size
2.0 kB (1980 bytes)
Hash
46c3a896e715e63d105ceedd7d75557a
12ef8d0ee7e47d2b7021adfa08e4b1ae911edf32
d5251cafbe20716c4288bae00a328d81f78e06d3171c3082019cb596ba746b7e

HTTP Headers

GET /wp-content/uploads/2021/09/1581439195205.jpg HTTP/1.1
Host: ffnews.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/webp
content-length: 1980
cache-control: max-age=31536000
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=2975
content-disposition: inline; filename="1581439195205.webp"
vary: Accept
expires: Fri, 04 Apr 2025 11:07:54 GMT
last-modified: Fri, 26 Jan 2024 12:06:32 GMT
x-rocket: 0
cf-cache-status: HIT
age: 336515
accept-ranges: bytes
server: cloudflare
cf-ray: 877660664b8e56c3-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

icodrops.com/wp-content/uploads/2017/09/8EXrk57o_400x400.jpg

165.22.31.163

200 OK

4.0 kB

URL GET HTTP/2
icodrops.com/wp-content/uploads/2017/09/8EXrk57o_400x400.jpg
IP
165.22.31.163:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjecticodrops.com
FingerprintE3:1A:A8:E3:93:A4:68:1E:4E:BC:4F:26:84:E5:AA:AC:4A:DC:FC:6B
ValidityMon, 01 Apr 2024 11:04:59 GMT - Sun, 30 Jun 2024 11:04:58 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3
Size
4.0 kB (4007 bytes)
Hash
6d1f794435285d6485303241734a2009
db24ec95caf87a959101e196c99a2df9522b9190
17789014f26dd49d41c5987b50fa8fd493c9d94a4f807391f5cf94d71c698cfc

HTTP Headers

GET /wp-content/uploads/2017/09/8EXrk57o_400x400.jpg HTTP/1.1
Host: icodrops.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/jpeg
content-length: 4007
last-modified: Thu, 22 Mar 2018 18:42:23 GMT
etag: "5ab3f90f-fa7"
accept-ranges: bytes
X-Firefox-Spdy: h2

www.yadawallets.com/wp-content/uploads/2021/01/Sparkpoint-wallet-logo.png

35.190.31.54

200 OK

4.0 kB

URL GET HTTP/2
www.yadawallets.com/wp-content/uploads/2021/01/Sparkpoint-wallet-logo.png
IP
35.190.31.54:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subject*.yadawallets.com
FingerprintA8:23:25:38:16:BB:63:B1:AC:55:64:C5:AA:C8:F9:87:E8:3D:94:26
ValidityTue, 02 Apr 2024 19:33:35 GMT - Mon, 01 Jul 2024 19:33:34 GMT

File type
PNG image data, 256 x 256, 8-bit colormap, non-interlaced
Size
4.0 kB (4009 bytes)
Hash
cec42ee7705c1ac0ab713895e963286e
337b6d00958b7bf8e0c5736a4b014bf5a3e654d1
58e7e0f617c9c68799540dd0dec474a5385099a7f76c8b2c0358a7a8c22ff8d8

HTTP Headers

GET /wp-content/uploads/2021/01/Sparkpoint-wallet-logo.png HTTP/1.1
Host: www.yadawallets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: image/png
content-length: 4009
last-modified: Thu, 07 Jan 2021 15:51:56 GMT
etag: "fa9-5b8516b558622"
x-httpd: 1
x-cdn-c: static
x-sg-cdn: 1
x-proxy-cache: HIT
host-header: 8441280b0c35cbc1147f8ba998a563a7
accept-ranges: bytes
X-Firefox-Spdy: h2

s3-eu-west-1.amazonaws.com/tpd/logos/5d79d072c62fd60001ba75a7/0x0.png

52.218.109.211

200 OK

63 kB

URL GET HTTP/1.1
s3-eu-west-1.amazonaws.com/tpd/logos/5d79d072c62fd60001ba75a7/0x0.png
IP
52.218.109.211:443
ASN
#16509 AMAZON-02

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerAmazon
Subject*.s3-eu-west-1.amazonaws.com
Fingerprint49:42:4E:99:9B:99:CB:89:18:03:B0:67:44:1E:3F:5D:9A:CD:21:1C
ValidityWed, 31 Jan 2024 00:00:00 GMT - Wed, 15 Jan 2025 23:59:59 GMT

File type
PNG image data, 274 x 274, 8-bit/color RGBA, non-interlaced
Size
63 kB (62558 bytes)
Hash
fe7f5689adca42603cc0f129417efd62
d1b9d1d47c0fa4734aa84dbe936325a375aeba0b
f03daa5ee1d0fd176d93a7f1256430464dc53a3d3ff3b5ec35834a2f0c11dc64

HTTP Headers

GET /tpd/logos/5d79d072c62fd60001ba75a7/0x0.png HTTP/1.1
Host: s3-eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: urPxMQb04XusF0jHeRSBRXpcmcuqjFtaso4/yxgrzMWMuBv5l1jG4Bo7L8oVK9DXk+pTTTJaTuQ=
x-amz-request-id: 2A0BQP98Y1DY0TVA
Date: Sat, 20 Apr 2024 16:05:34 GMT
Last-Modified: Thu, 12 Sep 2019 05:03:01 GMT
ETag: "fe7f5689adca42603cc0f129417efd62"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 62558

ethereum-magicians.org/uploads/default/original/1X/e726391f66eb7da7a0ed7d780b4df5e8e2416a17.png

184.169.209.62

200 OK

2.4 kB

URL GET HTTP/2
ethereum-magicians.org/uploads/default/original/1X/e726391f66eb7da7a0ed7d780b4df5e8e2416a17.png
IP
184.169.209.62:443
ASN
#16509 AMAZON-02

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectethereum-magicians.org
FingerprintFD:4E:0B:32:38:B0:61:E3:EC:7F:1F:F6:87:C7:FC:DF:0B:7E:76:9C
ValidityMon, 04 Mar 2024 23:57:06 GMT - Sun, 02 Jun 2024 23:57:05 GMT

File type
PNG image data, 188 x 188, 8-bit colormap, non-interlaced
Size
2.4 kB (2385 bytes)
Hash
b858e8f56920fae6be0d6828d553938c
e726391f66eb7da7a0ed7d780b4df5e8e2416a17
90f88ed3a19d87595ba207d19cdf7e390375f96ca25a92f061d85dcb815def40

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /uploads/default/original/1X/e726391f66eb7da7a0ed7d780b4df5e8e2416a17.png HTTP/1.1
Host: ethereum-magicians.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: image/png
content-length: 2385
last-modified: Mon, 18 Jun 2018 18:05:13 GMT
expires: Sun, 20 Apr 2025 16:05:34 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

bittrust.s3.amazonaws.com/1433894569.png

3.5.28.181

200 OK

149 kB

URL GET HTTP/1.1
bittrust.s3.amazonaws.com/1433894569.png
IP
3.5.28.181:443
ASN
#14618 AMAZON-AES

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerAmazon
Subject*.s3.amazonaws.com
FingerprintDC:41:A6:3E:EE:32:6F:36:76:5A:EF:9D:17:AF:14:13:E3:05:C6:D1
ValidityTue, 10 Oct 2023 00:00:00 GMT - Wed, 03 Jul 2024 23:59:59 GMT

File type
PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced
Size
149 kB (149192 bytes)
Hash
32768fd536544331a3df7e7c453c3e9a
8a0a8c485acba739ceee7d87d823969ef63acf1e
8b390909072edf85b195dbb73b5cceb52ae9f19093cce5ae313827590ae9d576

Detections

Analyzer	Verdict	Alert
urlquery	phishing	Phishing - Generic Crypto/Wallet

HTTP Headers

GET /1433894569.png HTTP/1.1
Host: bittrust.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 1KWbJ7NWPGGxsGjNHni0XT3+SbDHE49ju2FBJXEqn4MV7/aEehf22Bg8iclIb0iZUyJe2VaJJGrVdGffDBEhkEAygAEHU+QHh4YC6maLu94=
x-amz-request-id: 2A04K69JY00HZRB9
Date: Sat, 20 Apr 2024 16:05:34 GMT
Last-Modified: Mon, 08 Jan 2024 00:17:06 GMT
ETag: "32768fd536544331a3df7e7c453c3e9a"
x-amz-server-side-encryption: AES256
Cache-Control: max-age=31536000
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 149192

ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=78d167673c

104.21.26.223

200 OK

4.7 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=78d167673c
IP
104.21.26.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98
ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT

File type
ASCII text, with very long lines (26500)
Size
4.7 kB (4683 bytes)
Hash
76f34b71fc9fb641507ff6a822cc07f5
73ed2f8f21cd40fb496e61306acbb5849d4dbff4
6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8

HTTP Headers

GET /releases/v5.15.4/css/free-v4-shims.min.css?token=78d167673c HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y0m6CtD8DsbcSEEmZWlBiCtPYoEJOjg4WFvXQB_Dfl5ywLyU3I37jQ==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HgDW%2F8k5WNmsw4rgvOxTxmzY3UULjEQS7CORZzuYG%2Foucqy2tP%2FA%2FVU%2BqhrmTubeTrZ5Q0llJ79oAM6CpgohOUzPlsOaES%2FWUTBY4%2B%2F5QBXV2KurULVnZa1lEZ7QDKZQYsc2tfxd%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8776606ae87c56a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=78d167673c

104.21.26.223

200 OK

13 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=78d167673c
IP
104.21.26.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98
ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT

File type
ASCII text, with very long lines (60130)
Size
13 kB (13364 bytes)
Hash
a12ec7ebe75a4d59a5dd6b79e2ba2e16
28f5dcc595ee6d4163481ef64170180502c8629b
fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda

HTTP Headers

GET /releases/v5.15.4/css/free.min.css?token=78d167673c HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Y2tX5pL7xORyepMwcvv9roJU2vVKnnnKSxVjTy2mnKBMk2374josmw==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f%2Be74lHmVk4A6tEQMiV8qvdYBYwL6NMAj5KxuNj114KOM69zETY7HwRFhrnNMErNjHZWzt7zGyeixY%2FcCDz0efNETHR3bSfMfJO6mlWIZ0vraPmuedMP303iM92fV9DXDQ9%2BRzXyLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8776606ac86556a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLBT5Z1xlFQ.woff2

142.250.74.131

200 OK

7.6 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLBT5Z1xlFQ.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7632, version 1.0
Size
7.6 kB (7632 bytes)
Hash
5426bf50c8455aab7a3e89d1138eb969
ec0cbbcb4600e691cb24a63451f758727f90a306
17ea10196a490a8d3b8da162c7d4af9c301c5229f70af90dad6fa33eb951d83f

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLBT5Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:38:51 GMT
expires: Fri, 18 Apr 2025 17:38:51 GMT
cache-control: public, max-age=31536000
age: 167203
last-modified: Fri, 22 Mar 2024 00:00:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.131

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 23:13:09 GMT
expires: Tue, 15 Apr 2025 23:13:09 GMT
cache-control: public, max-age=31536000
age: 406345
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.131

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 05:54:09 GMT
expires: Wed, 16 Apr 2025 05:54:09 GMT
cache-control: public, max-age=31536000
age: 382285
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dvh1deh6tagwk.cloudfront.net/finder-au/wp-uploads/2017/09/Coinbaselogo_Supplied_250x250-2.png

54.230.241.35

200 OK

5.6 kB

URL GET HTTP/2
dvh1deh6tagwk.cloudfront.net/finder-au/wp-uploads/2017/09/Coinbaselogo_Supplied_250x250-2.png
IP
54.230.241.35:443
ASN
#16509 AMAZON-02

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
PNG image data, 250 x 250, 8-bit colormap, non-interlaced
Size
5.6 kB (5612 bytes)
Hash
fe6581248a83da4b5f89700649585514
c5e22f2fa2462aabf02da36431c0ecbe4e4e1f65
c3fe6dfac4cb2159854cc9337506d66d5b12f0a39839381484085d04714c40bb

HTTP Headers

GET /finder-au/wp-uploads/2017/09/Coinbaselogo_Supplied_250x250-2.png HTTP/1.1
Host: dvh1deh6tagwk.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
content-length: 5612
x-tachyon-processed: true
x-tachyon-errors: none
x-cloud-trace-context: 85042806749506b536c947eeca7694e1
server: Google Frontend
via: 1.1 google, 1.1 google, 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
date: Fri, 19 Apr 2024 22:25:31 GMT
cache-control: public,max-age=31622400
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qHg9SPyCLOeLepaz1Joj0EQXi3iiULn8VnCvLvmVkaNFAiGs4aBi2w==
age: 63603
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/Ja-xk6ZTXzuGVvqfTRJahBBwJLFE-Dz8pEdyjfRM9jz87fDA_hdYDe3QM70EzyquDw

142.250.74.86

200 OK

213 kB

URL GET HTTP/2
play-lh.googleusercontent.com/Ja-xk6ZTXzuGVvqfTRJahBBwJLFE-Dz8pEdyjfRM9jz87fDA_hdYDe3QM70EzyquDw
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
213 kB (212661 bytes)
Hash
366b192cdcaed2f6e8573dac3f675b36
4fee7a0d9736cfa1976ef40bb6acc8fbfeae75dc
74ae8736520f4575cdb649f658f7dbf7731d0055017f52f0e93833e12d2169c8

HTTP Headers

GET /Ja-xk6ZTXzuGVvqfTRJahBBwJLFE-Dz8pEdyjfRM9jz87fDA_hdYDe3QM70EzyquDw HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 212661
x-xss-protection: 0
date: Sat, 20 Apr 2024 13:26:43 GMT
expires: Sun, 21 Apr 2024 13:26:43 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 9531
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/t8vnANR3Ofzoe1rgCTV5McOtbnXLxt7uTKa7nM9uVxthfeXzOEkLiyf6Mbwo6bf1Gjs

142.250.74.86

200 OK

35 kB

URL GET HTTP/2
play-lh.googleusercontent.com/t8vnANR3Ofzoe1rgCTV5McOtbnXLxt7uTKa7nM9uVxthfeXzOEkLiyf6Mbwo6bf1Gjs
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
35 kB (34752 bytes)
Hash
3329754d3e2f47a8b4117a4891b74bf0
f59632815a228d30adbcf40dae387921f8296e42
6a310238d310ebdee1c6730834384fc3f5ae979e039fae9ff896f009bb1eb3a0

HTTP Headers

GET /t8vnANR3Ofzoe1rgCTV5McOtbnXLxt7uTKa7nM9uVxthfeXzOEkLiyf6Mbwo6bf1Gjs HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 34752
x-xss-protection: 0
date: Sat, 20 Apr 2024 13:26:45 GMT
expires: Sun, 21 Apr 2024 13:26:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 9529
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/4GO-Bjl9nTDw_C2nrM4erEEl26IriD3AxzfLK6Qfp__0LfrxSUxF8MPH4WOgfL8G1g

142.250.74.86

200 OK

18 kB

URL GET HTTP/2
play-lh.googleusercontent.com/4GO-Bjl9nTDw_C2nrM4erEEl26IriD3AxzfLK6Qfp__0LfrxSUxF8MPH4WOgfL8G1g
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
18 kB (17903 bytes)
Hash
8b84cb673eff00939f59498b5dab546c
f6f6696e6a9c7aa34ebbcf788b627299575b3957
788892ae967c4826f07b104726bf5571ebde860b31ded7c6f8cf0a7d1729f7ec

HTTP Headers

GET /4GO-Bjl9nTDw_C2nrM4erEEl26IriD3AxzfLK6Qfp__0LfrxSUxF8MPH4WOgfL8G1g HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 17903
x-xss-protection: 0
date: Sat, 20 Apr 2024 13:26:46 GMT
expires: Sun, 21 Apr 2024 13:26:46 GMT
cache-control: public, max-age=86400, no-transform
age: 9528
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/sjG683ufdRoN5jpY-Ecx4hg5LrQSr7J2B5mqTHFbJZw2H4df5onayMkr7Jx7yCCncqhm

142.250.74.86

200 OK

15 kB

URL GET HTTP/2
play-lh.googleusercontent.com/sjG683ufdRoN5jpY-Ecx4hg5LrQSr7J2B5mqTHFbJZw2H4df5onayMkr7Jx7yCCncqhm
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced
Size
15 kB (15379 bytes)
Hash
20c9c6bd88b87c8c11e08e8976456a3a
721c8dde2623b29322859a440899bed88dfd5eaf
24ffc5778feb003e8f2486c7f06e37ec57db328ecba3a3a74824356612a26fb2

HTTP Headers

GET /sjG683ufdRoN5jpY-Ecx4hg5LrQSr7J2B5mqTHFbJZw2H4df5onayMkr7Jx7yCCncqhm HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Sat, 20 Apr 2024 16:05:34 GMT
server: fife
content-length: 15379
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

keyring.app/wp-content/uploads/2021/06/LOGO-KEYRING-PRO.png

104.21.64.223

301 Moved Permanently

92 kB

URL GET HTTP/2
keyring.app/wp-content/uploads/2021/06/LOGO-KEYRING-PRO.png
IP
104.21.64.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectkeyring.app
Fingerprint74:0F:C0:44:C4:1F:10:C9:1D:D3:4C:EA:7D:F0:28:7A:45:9D:59:D1
ValidityFri, 15 Mar 2024 06:51:18 GMT - Thu, 13 Jun 2024 06:51:17 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
92 kB (91546 bytes)
Hash
ff0a9a9979eb2a80d853dc817ffb1979
bde26403b7fcfc52f74b048384f0b01ecccfd47c
376cc6365be14ce23267f5624723a72d17cba2c2f9b3a5c8212ef6d7c588395a

HTTP Headers

GET /wp-content/uploads/2021/06/LOGO-KEYRING-PRO.png HTTP/1.1
Host: keyring.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 301 Moved Permanently
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: text/html; charset=UTF-8
location: https://keyring.app/wp-content/uploads/2021/11/LOGO-KEYRING-PRO-2.png
expires: Sat, 20 Apr 2024 17:05:34 GMT
cache-control: max-age=3600
x-redirect-by: redirection
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tA15%2FQPC%2FynyghtH6oDAoEOtbNIWY9aqkgD2qzVKBFpWE9USK%2BHZPyBop1Rfkqy8kHJU14Xwto%2B3PKGIujAvMuevNRRQJ6%2BEEMRlFvbOo%2FLQYIoCDrxrFTJ3YZrjpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660659d6d56aa-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/F9cuPNT3VdkBfHm1zv4lfkpvdXHA5fxnaVbL2iDAGGNaIHtg7eNvgX2Bawwg1JbO2SrJ

142.250.74.86

200 OK

93 kB

URL GET HTTP/2
play-lh.googleusercontent.com/F9cuPNT3VdkBfHm1zv4lfkpvdXHA5fxnaVbL2iDAGGNaIHtg7eNvgX2Bawwg1JbO2SrJ
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
93 kB (92951 bytes)
Hash
3b90ace6832e5b149119f4e28697a1cf
6dd8083a824eb19e299338d5346ed382481b02ca
6aba8cac7468a794fe051e3e9e31d24e5d905058a4bfc528cb678019eba30c3f

HTTP Headers

GET /F9cuPNT3VdkBfHm1zv4lfkpvdXHA5fxnaVbL2iDAGGNaIHtg7eNvgX2Bawwg1JbO2SrJ HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 92951
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/5qTn8Cie_rp_XwNdLuLL1XpEFaK6yBUHeuJbyD0pXc4Ix6dcJ6NLoHYCcCE1jiMSp3M

142.250.74.86

200 OK

126 kB

URL GET HTTP/2
play-lh.googleusercontent.com/5qTn8Cie_rp_XwNdLuLL1XpEFaK6yBUHeuJbyD0pXc4Ix6dcJ6NLoHYCcCE1jiMSp3M
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced
Size
126 kB (126192 bytes)
Hash
84d5b489f5b52df070b6008120a06971
e5b1ca752baff184c38596dcab0913968dbb54b9
33200ff05dfe696e49dbdb6b0ea4b8521547db5471a05ed19c1359ce2220fb4c

HTTP Headers

GET /5qTn8Cie_rp_XwNdLuLL1XpEFaK6yBUHeuJbyD0pXc4Ix6dcJ6NLoHYCcCE1jiMSp3M HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 126192
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/CVWMBVPRHmb1tPeP-gSAApuwq9nsbPZ7kY6qz5u71fd7D0pJc2MftVogk4v7fD5HJ2oR

142.250.74.86

200 OK

56 kB

URL GET HTTP/2
play-lh.googleusercontent.com/CVWMBVPRHmb1tPeP-gSAApuwq9nsbPZ7kY6qz5u71fd7D0pJc2MftVogk4v7fD5HJ2oR
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
56 kB (55904 bytes)
Hash
df6070c214734c9a844acac6b07f07fc
a1be253f1446706ec3cf489e10a8d90f61aad007
589bb39fcaa1566d0fdfcb6521a0e9ee2ea158254ddf34f03bea984a45b422fd

HTTP Headers

GET /CVWMBVPRHmb1tPeP-gSAApuwq9nsbPZ7kY6qz5u71fd7D0pJc2MftVogk4v7fD5HJ2oR HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 55904
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQcsfznQP1QJxDpj-78pN5FiUInTPDxY91MNDkG8QgBSne8lEWgicB3eCywth5sRVHanks&usqp=CAU

216.58.211.14

200 OK

5.1 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQcsfznQP1QJxDpj-78pN5FiUInTPDxY91MNDkG8QgBSne8lEWgicB3eCywth5sRVHanks&usqp=CAU
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 225 x 225, 8-bit colormap, non-interlaced
Size
5.1 kB (5132 bytes)
Hash
aadb0f09b96352820a9b1e3c5913f06d
7ca6bc62d0f29e423dc52a920b16c4d4566c39ec
10b428a7626f17703c6fa15ed8fc933ab68e7443427cd7e58c15c879363c9699

HTTP Headers

GET /images?q=tbn:ANd9GcQcsfznQP1QJxDpj-78pN5FiUInTPDxY91MNDkG8QgBSne8lEWgicB3eCywth5sRVHanks&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 5132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 17:24:38 GMT
expires: Sat, 19 Apr 2025 17:24:38 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Jun 2021 02:25:44 GMT
content-type: image/png
age: 81656
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/eH0bEWCoW5a5WkmYsrBNX17Rj50-W45-JsDCvku2TEySTFzs_Jw1oQ9LCLuwNDJRa2o

142.250.74.86

200 OK

70 kB

URL GET HTTP/2
play-lh.googleusercontent.com/eH0bEWCoW5a5WkmYsrBNX17Rj50-W45-JsDCvku2TEySTFzs_Jw1oQ9LCLuwNDJRa2o
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, interlaced
Size
70 kB (70151 bytes)
Hash
b92f371e3728ef11386636b69582ab64
13f6010c9244dd281a03c247587628f075e4bf0f
d1e4d62e67401c1365cc8ddb1388ea42fe7d3f3a23829e2dc15df6c6824df8cd

HTTP Headers

GET /eH0bEWCoW5a5WkmYsrBNX17Rj50-W45-JsDCvku2TEySTFzs_Jw1oQ9LCLuwNDJRa2o HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 70151
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTv9YhdYp_toQcTmozYWNjP8_OypqBx4zkj-jlh0apPWzcJx374lH-KRaFHSL61D7ED_uI&usqp=CAU

216.58.211.14

200 OK

3.1 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcTv9YhdYp_toQcTmozYWNjP8_OypqBx4zkj-jlh0apPWzcJx374lH-KRaFHSL61D7ED_uI&usqp=CAU
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
PNG image data, 170 x 170, 8-bit colormap, non-interlaced
Size
3.1 kB (3128 bytes)
Hash
1160fdc2b14ece708a3a2fb1113bd685
ea6cb71ac8faa64e70c89ef2340a654ae8f9f740
7201065171c0f618d32b7b700c6ab911239d045716c582f1bb71292ef91aa1a3

HTTP Headers

GET /images?q=tbn:ANd9GcTv9YhdYp_toQcTmozYWNjP8_OypqBx4zkj-jlh0apPWzcJx374lH-KRaFHSL61D7ED_uI&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 3128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 17:24:38 GMT
expires: Sat, 19 Apr 2025 17:24:38 GMT
cache-control: public, max-age=31536000
age: 81656
last-modified: Sun, 29 Sep 2019 04:17:43 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/M5MM-IxyhSSpgLokb4dDWL-e0n3G4QFIoUXj195qcP-ORF4qTUHom4cAg3feMU482b0

142.250.74.86

200 OK

35 kB

URL GET HTTP/2
play-lh.googleusercontent.com/M5MM-IxyhSSpgLokb4dDWL-e0n3G4QFIoUXj195qcP-ORF4qTUHom4cAg3feMU482b0
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
35 kB (35181 bytes)
Hash
32d4593117fac669840f9b5c2edbe24b
62656882b7367e4ae6f8e35d471069c39e705122
cf7076e0a00be8e1088ae084d7e350e511be204938eab8b4282a66ad422355f1

HTTP Headers

GET /M5MM-IxyhSSpgLokb4dDWL-e0n3G4QFIoUXj195qcP-ORF4qTUHom4cAg3feMU482b0 HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 35181
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/HusrjtJaiFk2nj6FfYQbewVKIHkmO9KwivN-X-_pOdk0wHrLneT7JfKtXHr7XWCJ0A

142.250.74.86

200 OK

73 kB

URL GET HTTP/2
play-lh.googleusercontent.com/HusrjtJaiFk2nj6FfYQbewVKIHkmO9KwivN-X-_pOdk0wHrLneT7JfKtXHr7XWCJ0A
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
73 kB (73165 bytes)
Hash
14986ea28a861b0433a5004e9f41cb59
60cd0e1002f49a7a4f30cd14de1348a2f933033e
44497fa7c1981ddbf21855fc258f6b38f46a8662b60464d2a3c397121ed3dc3b

HTTP Headers

GET /HusrjtJaiFk2nj6FfYQbewVKIHkmO9KwivN-X-_pOdk0wHrLneT7JfKtXHr7XWCJ0A HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Sat, 20 Apr 2024 16:05:34 GMT
server: fife
content-length: 73165
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/XapLe0eCXaXS1TK-Gy-uKioBDDSjWP9GBJsEG5dNBYvJbgopreJm-fht8p04v3_1ug

142.250.74.86

200 OK

8.2 kB

URL GET HTTP/2
play-lh.googleusercontent.com/XapLe0eCXaXS1TK-Gy-uKioBDDSjWP9GBJsEG5dNBYvJbgopreJm-fht8p04v3_1ug
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
8.2 kB (8221 bytes)
Hash
7392463c6587b378939b0feb5db50c32
77cfa077b3070f3e155d3ced7bfaced505ed9672
6632fb3134d9b0a77eca8368021221b918add7122dd6c6419b4b48c2974b70fd

HTTP Headers

GET /XapLe0eCXaXS1TK-Gy-uKioBDDSjWP9GBJsEG5dNBYvJbgopreJm-fht8p04v3_1ug HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 8221
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/hSuqrK6xxYr9xTBi7LWawuH8WLSpBXP3QUWr5AosjUxZedLHYCEWIQtZAGmeB7x5Bns

142.250.74.86

200 OK

35 kB

URL GET HTTP/2
play-lh.googleusercontent.com/hSuqrK6xxYr9xTBi7LWawuH8WLSpBXP3QUWr5AosjUxZedLHYCEWIQtZAGmeB7x5Bns
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
35 kB (35186 bytes)
Hash
2a5a9029eca64b05cd4927a5c2ede986
091ff6225e53b55ea60b0441fec5b74c28310530
646416e4002429b988adbfb67416cf8e2cf4da3122192343151072ef22a77780

HTTP Headers

GET /hSuqrK6xxYr9xTBi7LWawuH8WLSpBXP3QUWr5AosjUxZedLHYCEWIQtZAGmeB7x5Bns HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Sat, 20 Apr 2024 16:05:34 GMT
server: fife
content-length: 35186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

play-lh.googleusercontent.com/lWSSUqkjBHcT1O5O4MUFWw0K6gbjLuziXswj0USfbb_WgtjZk5FgPHiG1-suYMkMKg=w300

142.250.74.86

200 OK

84 kB

URL GET HTTP/2
play-lh.googleusercontent.com/lWSSUqkjBHcT1O5O4MUFWw0K6gbjLuziXswj0USfbb_WgtjZk5FgPHiG1-suYMkMKg=w300
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced
Size
84 kB (83665 bytes)
Hash
dffb58cc9aa845a79d9e0458aeb88855
0b8de84ef23a2d333204b3a9f5c37575b3b36914
45f1a5e53192a1be57578c16fec80554bfcd907e857ce0c8d07afd20740f971d

HTTP Headers

GET /lWSSUqkjBHcT1O5O4MUFWw0K6gbjLuziXswj0USfbb_WgtjZk5FgPHiG1-suYMkMKg=w300 HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Sat, 20 Apr 2024 16:05:34 GMT
server: fife
content-length: 83665
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcStYOYgG0-6goX5kiAru3Il4AQFobHWEdZNp95X3-U4SYldTq3v2cEl75b4Qy9CkWBVKNE&usqp=CAU

216.58.211.14

200 OK

5.5 kB

URL GET HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcStYOYgG0-6goX5kiAru3Il4AQFobHWEdZNp95X3-U4SYldTq3v2cEl75b4Qy9CkWBVKNE&usqp=CAU
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3
Size
5.5 kB (5480 bytes)
Hash
75d7cb49b267b785b6a6696b617b0ce6
8d01fb7fbd6240c65e75038194f20c3fcdaf70fa
06a57796161b89b33b96a55bc530ca3bc1a2db49f91ff66b6a7f70af079342b9

HTTP Headers

GET /images?q=tbn:ANd9GcStYOYgG0-6goX5kiAru3Il4AQFobHWEdZNp95X3-U4SYldTq3v2cEl75b4Qy9CkWBVKNE&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 5480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 19 Apr 2024 17:24:38 GMT
expires: Sat, 19 Apr 2025 17:24:38 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Apr 2021 18:16:25 GMT
content-type: image/jpeg
age: 81657
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

keyring.app/wp-content/uploads/2021/11/LOGO-KEYRING-PRO-2.png

104.21.64.223

200 OK

38 kB

URL GET HTTP/3
keyring.app/wp-content/uploads/2021/11/LOGO-KEYRING-PRO-2.png
IP
104.21.64.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectkeyring.app
Fingerprint74:0F:C0:44:C4:1F:10:C9:1D:D3:4C:EA:7D:F0:28:7A:45:9D:59:D1
ValidityFri, 15 Mar 2024 06:51:18 GMT - Thu, 13 Jun 2024 06:51:17 GMT

File type
PNG image data, 1145 x 1417, 8-bit colormap, non-interlaced
Size
38 kB (37523 bytes)
Hash
1e72c1e5a9697cca8b0ef1b245f6572b
31f910828f194aefdfa2946d105b449082a8bd84
8db01cd595409fe6bfd931bae5e62e4cdc940074bbad692f64a711c23031e8e3

HTTP Headers

GET /wp-content/uploads/2021/11/LOGO-KEYRING-PRO-2.png HTTP/1.1
Host: keyring.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:35 GMT
content-type: image/png
content-length: 37523
last-modified: Wed, 24 May 2023 04:34:09 GMT
etag: "646d93c1-9293"
cache-control: max-age=300
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9viB296snxIKQMK746Q%2B1NLWkR8J9rOP2c4JR7zFHrDP5gILt6D%2BL1HulY3MSyvMrLokZxyp%2FsYZG2iM6lMPbeJpgW1W0zX58ITj2Wn8fLZqzuaYTebMsIhU4IMIHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8776606ad97256a2-OSL
alt-svc: h3=":443"; ma=86400

syncwallet.online/static/idlefinance-80d51872039fc5e44da8471f772e7b8e.png

172.67.172.120

404 Not Found

0 B

URL GET HTTP/2
syncwallet.online/static/idlefinance-80d51872039fc5e44da8471f772e7b8e.png
IP
172.67.172.120:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerLet's Encrypt
Subjectsyncwallet.online
FingerprintFE:73:D8:8D:AB:E2:5B:F3:E8:F2:64:14:3F:BC:23:B0:41:0A:A5:65
ValidityMon, 25 Mar 2024 23:40:28 GMT - Sun, 23 Jun 2024 23:40:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /static/idlefinance-80d51872039fc5e44da8471f772e7b8e.png HTTP/1.1
Host: syncwallet.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/html
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vbYAvDnhM%2BLZrTPJett6%2Bbf1zD9d0XSmOgmIBpj3%2FPDjEj9VoZzcgBlQxDv0JlaQrUEbzzwRy8Osm4g1FQI6RiRtJAOxYDPoqn%2BXr9KtAJNK9P%2BNABrh85a7ikG6%2BTgoOZrRxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 877660640c2d5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dbfix.pages.dev/next/wallet/bootstrap.min.css

188.114.97.1

200 OK

161 kB

URL GET HTTP/3
dbfix.pages.dev/next/wallet/bootstrap.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
ASCII text, with very long lines (65326)
Size
161 kB (161409 bytes)
Hash
d432e4222814b62dd30c9513dcc29440
2cac4afc120983921411296bd4e8fd8a94ba237e
4ffcc598ee6cff4692c1cea272cd8a2f195f6dec32473e94370d6cdcfa5fe601

HTTP Headers

GET /next/wallet/bootstrap.min.css HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"04280bd0323184761d518cb6baa1b507"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ERMCIathPMPcjgj2Qz7OHjDGn20V0fuQSGRZuRMf%2B5Ih0kZZE9UWB1M6umJB6Z3AnQaaioKvbwE1slXFFfvWQu%2FNi4EkxRfP2dBOB9KvX%2BBV%2F%2F2q1AperTfUcdzxQtzIfA8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062ed85568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Poppins:wght@400;500;700;800;900&display=swap

142.250.74.74

200 OK

3.9 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:wght@400;500;700;800;900&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
ASCII text, with very long lines (4027), with no line terminators
Size
3.9 kB (3937 bytes)
Hash
254cb822e8551e39b1a12d24c67cc8c1
881fb15b8e1f5ea856db86b50aa1f0f95dd05ede
2dd601a904c7ef2e6b9de603410cb6398ba078fa75746c896d9a54c2cfa4e4d4

HTTP Headers

GET /css2?family=Poppins:wght@400;500;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 20 Apr 2024 16:05:33 GMT
date: Sat, 20 Apr 2024 16:05:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

dbfix.pages.dev/next/script/wow/wow.min.js

188.114.97.1

200 OK

8.4 kB

URL GET HTTP/3
dbfix.pages.dev/next/script/wow/wow.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JavaScript source, ASCII text, with very long lines (8521), with no line terminators
Size
8.4 kB (8418 bytes)
Hash
79b52a342e7cd2d0e30573a47488c5d0
41472616d7945fda334dcb1bf9146d90353c31b7
0490fc46ae237e2cecb8b29eb06052c8fdb46604bde842c149b8c74c6788e0fc

HTTP Headers

GET /next/script/wow/wow.min.js HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"51081b4c3feba50bffc12e722e63816e"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EG9GMgz4nX5G4%2F%2FQHxeYPXIdiCf480jIYdXJf7HxRVnDEl%2BZezPu4cJM%2F41DPysPg6%2FUMJQOjhEP%2FJT8%2FaY5ahuRQvNM1ILl7RHroxtARUe47674zmQENBSreZxpvl9G6bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766063eebd568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/script/waypoints/jquery.waypoints.min.js

188.114.97.1

200 OK

9.0 kB

URL GET HTTP/3
dbfix.pages.dev/next/script/waypoints/jquery.waypoints.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (9154), with no line terminators
Size
9.0 kB (9038 bytes)
Hash
305458ba7ac4e6227f0f206f83c2d95e
8d501eaf541ea10d698a11e45ad83d61565656d0
ad2850df0a658368b8cbaa5c749b0ec30e3df597f8e5f642480c6a1e794a6a84

HTTP Headers

GET /next/script/waypoints/jquery.waypoints.min.js HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"d0f361098b3d83b415d71bae38a49609"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jW2lkd2TafnrCybMabtsICTbAUA5QZOEHfP3QUnc91BkPoyhL5ur09DlW6XjIde73nIJ85ki%2BrknU45RBlfbgZg54gHYVQh%2FWF4DpPBl%2BNLYyH%2Bb7XUtcghSQcF1RL9fwlg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660637e4c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/walletpage.php

188.114.97.1

200 OK

46 kB

URL User Request GET HTTP/2
dbfix.pages.dev/next/walletpage.php
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
HTML document, ASCII text, with very long lines (3088)
Size
46 kB (45530 bytes)
Hash
69a024ac5dfc6ec859efe8067f8a770f
b071eca9b84c34186fa0cf97cc49344f20baf8a7
a46524d4cb9a132bc2ffe1fad12e25522c6a8c79234bf6d58affaea6d0724007

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Crypto/Wallet
PhishTank	phishing	Other

HTTP Headers

GET /next/walletpage.php HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"974643615ddaefc33d78de3cd6717fa4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P4ia804MoBfROpcpNOclimwZQ5HnOBg%2Fh28rA33tloXQ1EstPHU9ACv%2FcxXNmT1vMgeSkHEvJv33otSj%2BTT6IWdsdQm0nEHOpHr6fZm3Lqsjaqloff7TA0zCQhhd9elPi3Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766060ae06b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dbfix.pages.dev/next/style/animation/2.6%20animate.css

188.114.97.1

200 OK

25 kB

URL GET HTTP/3
dbfix.pages.dev/next/style/animation/2.6%20animate.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
ASCII text, with CRLF line terminators
Size
25 kB (25427 bytes)
Hash
1c7ad0a97d2dc2da70b8d855ae946cae
7f3596852663437b7f89231cc750628a0d86e403
cb09ab0572c6a6549a782e2843218c00285cb737ae50fe29a5061ca96aff0234

HTTP Headers

GET /next/style/animation/2.6%20animate.css HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"9bab03aa027cf05106b5788cfec2b67f"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PkMRT11lwZagj8KflvFeA0AhNOp97T0hZXTDSRhRv0TTQX9JuCySqhrpseQ1hI%2F97ClhV9QkVD%2FD36q%2FyUYZL3B85T3F92ZwJENSSRFz8VeEEqlpH4scGAUWy2C4iS2y%2FQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062dd79568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/style/walletpage.css

188.114.97.1

200 OK

4.0 kB

URL GET HTTP/3
dbfix.pages.dev/next/style/walletpage.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
ASCII text, with very long lines (4395), with no line terminators
Size
4.0 kB (3985 bytes)
Hash
345868969582bf6debd5f43c483d589f
386f40fbb8436c4bd6991775a5aea9f5ee666f09
c125da16075c4130fac745f916cbbb11b9c30170ad642b34271448ca3e37cabc

HTTP Headers

GET /next/style/walletpage.css HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"aaadb3e41ed21143eec891d50ab0323a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DySOWtbaSPTSStVs%2Ftoe3IrkSCq9PXxr80p%2FnjgtYYP7Yk59PIibADTbC8U5B8Id97hfaZWJbSr6aAkGmyLIrbqKajj2r7dmZ1DMTJH6p5pi2uVf3lvFVclHTKAtTTPQycM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062dd7c568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.affixresolve.live/favicon-32x32.png

0.0.0.0

0 B

URL GET
app.affixresolve.live/favicon-32x32.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon-32x32.png HTTP/1.1
Host: app.affixresolve.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

dbfix.pages.dev/next/rainbow.png

188.114.97.1

200 OK

3.4 kB

URL GET HTTP/3
dbfix.pages.dev/next/rainbow.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
HTML document, ASCII text, with very long lines (3555), with no line terminators
Size
3.4 kB (3358 bytes)
Hash
cdb3691e9ccfe2521e82b46d13693565
3e63240c4fa41f859546ebe0738ddf5bb2574c3e
03dcc3d85a8489403c258b1a48b9dc1ecaf0437cec24077036be410b3797cff0

HTTP Headers

GET /next/rainbow.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8a38baa998eca66ca95bec5e6531c4e4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kum1tR46ztfwp6ViPUK5yHd1LIj4aAh4U0LSBA7yOgO8hphvZjDQda2uLg6lJoOJMjehYex9iYqoWaS%2FWjloAwYgJvm94BhqruUBnssl7J2GpSncU%2BPoYoxH4y1SbFZBjE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8776606a7d5e568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dbfix.pages.dev/next/script/counter/jquery.counterup.min.js

188.114.97.1

200 OK

2.2 kB

URL GET HTTP/3
dbfix.pages.dev/next/script/counter/jquery.counterup.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JavaScript source, ASCII text, with very long lines (2249), with no line terminators
Size
2.2 kB (2183 bytes)
Hash
2c85cd517424b6fa314906e9cb25a5ff
cd86ecb93dfa5a4391d81bddced93b321c4edcf4
a2fdf17654d81fe165edeab2e7f07f1215d25c50aa877c8e7bf97fd5ba72c1b6

HTTP Headers

GET /next/script/counter/jquery.counterup.min.js HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8c8aef9995be85d51831d17732de6eba"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpgsOZW7067nwfb5lQgh697j5TQuYLC3fcqMMKyiILBJxYXnkWgBn4XysQ0%2Fzd2EwpbwTSry9gyyiIXUTwKWzzrUrp%2FN4B2yXZvlDt1be7SUr2WzeCOFCKjXGx4keMduM4U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766063eebc568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.affixresolve.live/wallet/success.gif

0.0.0.0

0 B

URL GET
app.affixresolve.live/wallet/success.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet/success.gif HTTP/1.1
Host: app.affixresolve.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

dbfix.pages.dev/next/rainbow.png

188.114.97.1

200 OK

3.4 kB

URL GET HTTP/3
dbfix.pages.dev/next/rainbow.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
HTML document, ASCII text, with very long lines (3555), with no line terminators
Size
3.4 kB (3358 bytes)
Hash
cdb3691e9ccfe2521e82b46d13693565
3e63240c4fa41f859546ebe0738ddf5bb2574c3e
03dcc3d85a8489403c258b1a48b9dc1ecaf0437cec24077036be410b3797cff0

HTTP Headers

GET /next/rainbow.png HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"8a38baa998eca66ca95bec5e6531c4e4"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sski%2BpoZ34Ng%2F8FD6BsYi2w28hJtaXirCCP76onFwWwiF4cMUIP7k0wMnf3vPbmdokRUi4rcCPLmi8L2%2BymJaeg8IstnTJ5J%2FQ7Xmn%2Fd1WZdJuZSNu4PnBrNUX%2F257zeXfI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 877660630da9568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=78d167673c

104.21.26.223

200 OK

3.0 kB

URL GET HTTP/2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-font-face.min.css?token=78d167673c
IP
104.21.26.223:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint8D:43:33:42:48:C0:F5:34:71:EC:49:69:9C:62:01:4A:6F:41:11:98
ValidityTue, 05 Mar 2024 09:23:28 GMT - Mon, 03 Jun 2024 09:23:27 GMT

File type
ASCII text, with very long lines (3007), with no line terminators
Size
3.0 kB (2956 bytes)
Hash
164aeedbf1c90c5467de5320f9f2d89e
63fdf9f59785c7b84dc82523cc76d81773e9c60b
676748e7bec72f0310e785f353d6b9e33305b577b57a08c57f98d1ce9e77ed25

HTTP Headers

GET /releases/v5.15.4/css/free-v4-font-face.min.css?token=78d167673c HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:34 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"f2e0b2680d9b0bcb6e0039c4424e5a59"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 75d52516d2e9126ccb2b4cf8db62c446.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN53-P2
x-amz-cf-id: ap90Cg72OTfhkSQgDjFLUaueTQ78KOA080OsUWVDtzjGBuh2wrhQdg==
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X28GenFCnAJNhSrImjZ4b4DKjofe6sBGlsN0MTzWkuiiGggO3gE5p90ylch1Y%2F5s1IAHNdOCDYukSicA0hhp0QdmG8XRbGzxDlcRnIYMC2PZWzl5Venlwjx3VPbN%2Bwwy24CZi%2Bcatw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8776606ad86856a8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dbfix.pages.dev/next/wallet/main.css

188.114.97.1

200 OK

17 kB

URL GET HTTP/3
dbfix.pages.dev/next/wallet/main.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
ASCII text
Size
17 kB (17125 bytes)
Hash
7c9507587de46c8c7a9a40d2f8291b33
c1a738f0633b4e6633ebebba6fd2d9ec223584cf
39ba049d03abe5def80830ba38d0f2b432dd7374cac67ffd3c800d9bcc551164

HTTP Headers

GET /next/wallet/main.css HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"3619e37c22455fbccd9440a7a6b3bc7a"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ei58tQk0FwBeAk3tbOCxSfRPJht8AcHTViBBtgpaSYp6tH5kpyedrcTnN2Etfa6e9NNuMzlHZ2vGQRLDb1MgfZ%2BMLGx1Yxfq%2BcrtAoVNDM8Gvce2tgNbhjn5a2PnWtP19AM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766062ed86568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

app.affixresolve.live/wallet/error.gif

0.0.0.0

0 B

URL GET
app.affixresolve.live/wallet/error.gif
IP
0.0.0.0:0
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet/error.gif HTTP/1.1
Host: app.affixresolve.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

dbfix.pages.dev/next/script/script.js

188.114.97.1

200 OK

260 B

URL GET HTTP/3
dbfix.pages.dev/next/script/script.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectdbfix.pages.dev
FingerprintF7:A3:07:F7:C9:71:7D:00:57:C4:AA:B0:83:88:66:D6:58:22:44:AB
ValiditySat, 02 Mar 2024 09:58:28 GMT - Fri, 31 May 2024 09:58:27 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
260 B (260 bytes)
Hash
e291e3345895eb4b37f8e253a66df920
f545f7838902c58ec62694371e8a409bbef9d10b
49c950c9e1dc4a63eabc5ac0338a7f7ae0f9e2a7c5ee97b19759c6527b36cbae

HTTP Headers

GET /next/script/script.js HTTP/1.1
Host: dbfix.pages.dev
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/next/walletpage.php
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=0, must-revalidate
etag: W/"ff05703613e502ff29d732dc285d64f1"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V3cP%2BlpNIXy5I3s30ykvE2WufnjEGY4aXnoK37WEvnYs7WGDC%2Fs4A7ST%2FUZL%2BMzOHojupi%2Bwm5%2B1zP%2BqydWmq35VV3LnkLdBqvlTMaKvkWt1g%2BJeaw1lbLd%2Bt9U%2FO70PhCA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87766063eebe568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

play-lh.googleusercontent.com/XzzaoXwedJjCiQeB4Sh3nOIlB5iR8fOxCTKbFLTiAyJ0JqFJogC3mbA6pj3fIR2y3lw

142.250.74.86

200 OK

92 kB

URL GET HTTP/2
play-lh.googleusercontent.com/XzzaoXwedJjCiQeB4Sh3nOIlB5iR8fOxCTKbFLTiAyJ0JqFJogC3mbA6pj3fIR2y3lw
IP
142.250.74.86:443
ASN
#15169 GOOGLE

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerGoogle Trust Services LLC
Subjectedgestatic.com
FingerprintF5:71:D6:56:B9:45:4B:F5:FD:12:4B:A7:FF:5F:1D:C9:74:FE:B0:C8
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
92 kB (91546 bytes)
Hash
ff0a9a9979eb2a80d853dc817ffb1979
bde26403b7fcfc52f74b048384f0b01ecccfd47c
376cc6365be14ce23267f5624723a72d17cba2c2f9b3a5c8212ef6d7c588395a

HTTP Headers

GET /XzzaoXwedJjCiQeB4Sh3nOIlB5iR8fOxCTKbFLTiAyJ0JqFJogC3mbA6pj3fIR2y3lw HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 91546
x-xss-protection: 0
date: Sat, 20 Apr 2024 16:05:34 GMT
expires: Sun, 21 Apr 2024 16:05:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

kit.fontawesome.com/78d167673c.js

172.64.147.188

200 OK

12 kB

URL GET HTTP/2
kit.fontawesome.com/78d167673c.js
IP
172.64.147.188:443
ASN
#13335 CLOUDFLARENET

Requested by
https://dbfix.pages.dev/next/walletpage.php
Certificate
IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (11461)
Size
12 kB (11892 bytes)
Hash
a1a43123e7eb997678123464a544c864
4e76f44096cd3440b204a2fd320bc4c5a150a61a
e0ec6f89f9bfceba01fed293f5c72200db91c87f0ccde7574623ef9aaf2ff55d

HTTP Headers

GET /78d167673c.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
Origin: https://dbfix.pages.dev
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 20 Apr 2024 16:05:33 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F8gInhyz9CC4LDxjaaWi
cf-cache-status: MISS
server: cloudflare
cf-ray: 87766062ffc35699-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

app.affixresolve.live/assets/qr.png

0.0.0.0

0 B

URL GET
app.affixresolve.live/assets/qr.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://dbfix.pages.dev/next/walletpage.php

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /assets/qr.png HTTP/1.1
Host: app.affixresolve.live
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dbfix.pages.dev/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML