Report - owlto.finance/soneium-badge

Report Overview

Visited public
2025-03-18 09:17:46
Tags
URL
owlto.finance/soneium-badge
Finishing URL
owlto.finance/soneium-badge
IP / ASN
104.21.71.2
#13335 CLOUDFLARENET
Title
Owlto Finance

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
bsc-dataseed2.ninicoin.io	420882	2019-04-12	2021-04-10	2025-02-27	1.0 kB	1.4 kB	13.248.176.134
rpc.ankr.com	538448	2007-04-23	2021-10-24	2025-03-14	1.0 kB	1.6 kB	136.175.126.220
www.google.no	25607	2001-02-26	2012-06-26	2025-03-12	798 B	580 B	142.250.74.131
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-03-12	434 B	380 kB	142.250.74.136
wss	unknown	unknown	2025-03-02	2025-03-16	2.9 kB	664 B	57.181.46.43
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2025-03-12	1.8 kB	1.7 kB	216.239.34.36
binance.nodereal.io	unknown	2021-07-19	2022-10-20	2025-02-27	1.0 kB	1.4 kB	54.77.108.101
owlto.finance	unknown	2023-04-01	2023-04-01	2024-12-15	28 kB	23 MB	188.114.97.1
rsms.me	102779	2010-12-05	2014-10-14	2025-03-14	1.4 kB	479 kB	172.67.197.50
bscrpc.com	227661	2021-11-22	2021-11-24	2025-02-27	1.0 kB	1.6 kB	136.175.126.220

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2025-03-18 09:17:29	low	Client IP	13.248.176.134	ET INFO Observed Commonly Actor Abused Online Service Domain (bsc-dataseed2 .ninicoin .io in TLS SNI)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-03-17	medium	wss	Sinkholed
2025-03-17	medium	wss	Sinkholed
2025-03-17	medium	wss	Sinkholed
2025-03-17	medium	wss	Sinkholed
2025-03-17	medium	wss	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	From	Size	First Seen	Last Seen
	wasm:owlto.finance/assets/vendor-274fd628.js%20line%20361%20%3E%20WebAssembly.Module	Wasm	0 B	0001-01-01	2025-05-08
Pretty URL wasm:owlto.finance/assets/vendor-274fd628.js%20line%20361%20%3E%20WebAssembly.Module IP 0.0.0.0 ASN #0 Introduced by wasm Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-08 04:18 Times Seen4629321 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	owlto.finance/assets/soneiumBadge-9102fe25.js	ScriptElement	6.1 kB	2025-03-18	2025-03-18
Pretty URL owlto.finance/assets/soneiumBadge-9102fe25.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-18 09:17 Last Seen2025-03-18 09:17 Times Seen1 Hash 8cc40f1a2ade037d74922819817311ae 9b428f2ee69930947b6ba4da25eebc8ac1577b86 0909d6b5ca91ef2d07d0b999540fed3ce1e10a505b586cedde352b62d1839974 Loading...

	owlto.finance/soneium-badge	ScriptElement	416 B	2025-03-18	2025-04-09
Pretty URL owlto.finance/soneium-badge IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-18 09:17 Last Seen2025-04-09 09:30 Times Seen2 Hash 174bd0cae67f5e2c59bdcb7e2c9d130d 336892a26d67e900cb118bc2fd4afd9876cec61f 0c6fa85c9a437f7886cfcd2ce6e0b323260f3e94c069a946a63710c244f6d961 Loading...

	owlto.finance/soneium-badge	ScriptElement	790 B	2025-03-18	2025-04-09
Pretty URL owlto.finance/soneium-badge IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-03-18 09:17 Last Seen2025-04-09 09:30 Times Seen2 Hash f62f78ac8eaccb87fcc8af698fec3518 1c63e34b8dee03629c5b1cf952e7fedb15190a9d 04f30921b273d02edaa5001fd7537e20eea8bd38c0e7a91e71831eea41aedb69 Loading...

	www.googletagmanager.com/gtag/js?id=G-9K176ETP4Z	ScriptElement	379 kB	2025-03-18	2025-03-18
Pretty URL www.googletagmanager.com/gtag/js?id=G-9K176ETP4Z IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-18 09:17 Last Seen2025-03-18 09:17 Times Seen1 Hash 84ebd48de48540f054058825ece29fa4 9925968353228efa8543b956928f3b61cd398be0 8d7655af7058b90d60eee6bc9a6e0e6e9cfad4692d2a4b23d6ff5906ea4a0409 Loading...

	owlto.finance/assets/Main-141c8f2e.js	ScriptElement	0 B	0001-01-01	2025-05-08
Pretty URL owlto.finance/assets/Main-141c8f2e.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-08 04:18 Times Seen4629321 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	owlto.finance/assets/vendor-274fd628.js	ImportedModule	0 B	0001-01-01	2025-05-08
Pretty URL owlto.finance/assets/vendor-274fd628.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-05-08 04:18 Times Seen4629321 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (70)

URL IP Response Size

rpc.ankr.com/bsc

136.175.126.220

204 No Content

0 B

URL OPTIONS
rpc.ankr.com/bsc
IP
136.175.126.220:443
ASN
#62902 AS-ASPHERE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectenterprise.onerpc.com
Fingerprint0D:AB:A1:72:B0:60:49:83:87:54:53:10:A5:AF:54:B3:DC:55:17:D6
ValidityWed, 12 Feb 2025 16:27:30 GMT - Tue, 13 May 2025 16:27:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /bsc HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 18 Mar 2025 09:17:29 GMT
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version
access-control-max-age: 1728000
content-length: 0
X-Firefox-Spdy: h2

owlto.finance/assets/iconPark-repair%201-9bdbcb4d.svg

188.114.97.1

200 OK

838 B

URL GET
owlto.finance/assets/iconPark-repair%201-9bdbcb4d.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
838 B (838 bytes)
Hash
a1a2b444f51dacab106e3a9d719762f0
10d4d2b8ab1fecbaf496a9b252adb420e3f2e130
3671ff967def5a9dfb2a546581d12e01620c8bd12b6011b79230b7b0cc0caa7e

HTTP Headers

GET /assets/iconPark-repair%201-9bdbcb4d.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
etag: W/"67d914c3-346"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F7bljbUyVmS%2B%2BAVC458UnCf1Rk0wLGs5xUxwPafWiFFtoQhisxE8xV%2FEULEDPNju6bkM9G%2Ff7qya8Rgoj3Dem4knh76NI%2BS69OmgsSYu7D98AdQTG2BAKdep8YwW8R%2Fk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf3f0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2564&min_rtt=749&rtt_var=1669&sent=5911&recv=164&lost=117&retrans=117&sent_bytes=7028394&recv_bytes=19685&delivery_rate=781467&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6772&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/icon/chain/Soneium.png

188.114.97.1

200 OK

24 kB

URL GET
owlto.finance/icon/chain/Soneium.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced
Size
24 kB (23592 bytes)
Hash
8e19839e321512a61ffec77385116f79
38b54a0d88574a5f2409db81d39e5971d0be5884
5cf26cb20176bed319ac5bc3560b3b44cbb6b9d2616c009189d3db43f0ab5d65

HTTP Headers

GET /icon/chain/Soneium.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: image/png
content-length: 23592
last-modified: Tue, 14 Jan 2025 02:50:40 GMT
etag: "6785d100-5c28"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3343
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7FWj4qQkeusVBMiPrn3l1qGaA%2FuQYx4%2FIPn16zYFvGmTonIeVE8mE9xBwENjyz%2FRAnFdla26pdQA7eWuBrdQ530vznXJgFPbqHgw%2BlKpHUMihKkz4mcacut7kfMs0sac"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a32e0e840b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2062&min_rtt=749&rtt_var=976&sent=6251&recv=182&lost=134&retrans=134&sent_bytes=7418110&recv_bytes=23483&delivery_rate=687588&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7452&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/eco-26332651.svg

188.114.97.1

200 OK

31 kB

URL GET
owlto.finance/assets/eco-26332651.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
31 kB (31002 bytes)
Hash
3f2465cff41b4e41c02178274a0d643a
503268affa94b3afee90127f2eccc0890d5863af
26332651dff9d74f742a1b3b0019d87661e7b0b1bf886ad88dc0cee856feff0b

HTTP Headers

GET /assets/eco-26332651.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-791a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3343
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x0aKiMPszPkM0AP0x9SoiGXOXFNW80v8eJyiNfmc7IsXmmfpfEzKxGNENpTqj5dHVGBf3rr248TtPWVF0ausGdVRn7gL1CRdkJNKg5%2Fs1Rgz9yXchssIc1oZxgollIsE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ec90b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5790&recv=158&lost=117&retrans=117&sent_bytes=6890918&recv_bytes=17469&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6746&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/icon/ui3/bg.png

188.114.97.1

200 OK

183 kB

URL GET
owlto.finance/icon/ui3/bg.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced
Size
183 kB (182957 bytes)
Hash
20039079c1779ee116127922a037e84a
b4375a914ac420e8e563629981565f06feaa12a5
e71d5bbb1706f3241f2e969ecf63162752bb2d4e6c625b912a945fb1a82b5362

HTTP Headers

GET /icon/ui3/bg.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 182957
last-modified: Mon, 05 Aug 2024 03:39:56 GMT
etag: "66b0498c-2caad"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3342
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2B7Y1Brq%2F%2BE0xLC%2BE1onD5G4mSBVMRGiEeNifSYuYiWLL4TzGzf5vKTXsuX%2F%2FYAdfjnou4PN1mbv%2F%2BpYAmulmkKElaia2y4%2Bb%2F0m1LB685KM79RBMWvZDAERkol55PZ0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf4d0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2564&min_rtt=749&rtt_var=1669&sent=5922&recv=164&lost=117&retrans=117&sent_bytes=7041426&recv_bytes=19685&delivery_rate=781467&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6775&x=1", cfExtPri, cfHdrFlush;dur=0

rsms.me/inter/inter.css

172.67.197.50

200 OK

12 kB

URL GET
rsms.me/inter/inter.css
IP
172.67.197.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectrsms.me
Fingerprint72:B0:4B:3E:B6:61:F9:AC:AF:2F:C8:FB:1B:15:2F:41:75:48:34:20
ValidityFri, 14 Feb 2025 15:43:43 GMT - Thu, 15 May 2025 16:42:09 GMT

File type
ASCII text
Size
12 kB (11497 bytes)
Hash
1454fd08f0a55e5811dddf1d02acc997
3e9cb739b9e8b732b556fddafd71c89cbfafa2f5
46d01c7807f64a24c1b2853b756ef15f3a2facdf4a9f066eaf5d39c0c9935441

HTTP Headers

GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: text/css; charset=utf-8
content-length: 1305
x-origin-cache: HIT
last-modified: Sat, 16 Nov 2024 01:00:53 GMT
access-control-allow-origin: *
etag: W/"6737eec5-2ce9"
expires: Wed, 26 Feb 2025 00:43:33 GMT
cache-control: max-age=14400
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 1E82:1B1AF0:B622F:D6B3C:67501A41
age: 291
via: 1.1 varnish
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1734585302.456582,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 75b640c9ed5b3de824c525b35b12e6866da49a11
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0B64Vq%2FrNWXX%2F5Ka4mTjk5qqT5%2BrrWyS34cw9MrPk6uIX9Fib7iDN7pNj8S77wrfWwDMtGmMN9u12lu181SfHB2kdroPARQIJyodyBoSoFn7IeecRQ%2BAnwD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a3015b3356af-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=518&min_rtt=457&rtt_var=138&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3186&recv_bytes=1072&delivery_rate=6341605&cwnd=254&unsent_bytes=0&cid=c816276171d16d6e&ts=38&x=0"
X-Firefox-Spdy: h2

bscrpc.com/

136.175.126.220

204 No Content

0 B

URL OPTIONS
bscrpc.com/
IP
136.175.126.220:443
ASN
#62902 AS-ASPHERE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectenterprise.onerpc.com
Fingerprint0D:AB:A1:72:B0:60:49:83:87:54:53:10:A5:AF:54:B3:DC:55:17:D6
ValidityWed, 12 Feb 2025 16:27:30 GMT - Tue, 13 May 2025 16:27:29 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: bscrpc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 18 Mar 2025 09:17:29 GMT
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version
access-control-max-age: 1728000
content-length: 0
X-Firefox-Spdy: h2

owlto.finance/assets/banner-soneium1-41c571a8.png

188.114.97.1

200 OK

5.8 kB

URL GET
owlto.finance/assets/banner-soneium1-41c571a8.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
Size
5.8 kB (5811 bytes)
Hash
121d367253d694a028977544b77a32df
903e15bbd57724a6a09c5aefb883974c3e47d117
41c571a83ecac2e1bf917ca5231d18038c50692cab6c5c5af695e179f34e01a7

HTTP Headers

GET /assets/banner-soneium1-41c571a8.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 5811
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-16b3"
accept-ranges: bytes
age: 3344
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ar9Iq5uaF8ER%2BieXx8MlAYOPAYhFwePXtQEObK8d3FHNwCsKqEdizqRi90BMLB9ckepeiI2GQXRJ8jh1sLzIVTvpNdXJ7RjI54aaPMQUZ7BkvrGoq4wEE4h%2FRl3G6mDa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298e8f0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3738&min_rtt=749&rtt_var=2858&sent=5384&recv=147&lost=110&retrans=110&sent_bytes=6417292&recv_bytes=13434&delivery_rate=23563703&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6723&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/OKX_Wallet-8e152bd0.png

188.114.97.1

200 OK

16 kB

URL GET
owlto.finance/assets/OKX_Wallet-8e152bd0.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced
Size
16 kB (16353 bytes)
Hash
2670a1accce6654847af8054a18012f6
31caaf5a16061f7105ded41d873918460f339e83
8e152bd068a87bef83bc8a60d2d252b4eda8eabec2506c883edbd97b33719372

HTTP Headers

GET /assets/OKX_Wallet-8e152bd0.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 16353
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-3fe1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B48917k1jdLQM3sb2%2F5V4W3Kd5ad07JCaX7%2BW7gbzXC0KQrrtkITrLnFgmAoZiMVFfz0VzF3sgfruHQWD6uPo%2F8h0xZpnoYzRvmLfgjKfUWHJA5OERfTLUmA7Ps9RmKV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298ea20b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5668&recv=155&lost=110&retrans=110&sent_bytes=6749792&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6738&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/arcoDesign-apps%201-56db2384.svg

188.114.97.1

200 OK

801 B

URL GET
owlto.finance/assets/arcoDesign-apps%201-56db2384.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
801 B (801 bytes)
Hash
70491ec61ab4b233e7e7bf579621f5c2
ce076b55c210147819efb5166036431b8c2d31bd
745ac7cad79cdc2704652b6dc1676b3e440f9cddff7632f50c3dba3fe1844b43

HTTP Headers

GET /assets/arcoDesign-apps%201-56db2384.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-321"
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X7KIjVRx%2BKyZeri3QwnCy4NmvDmoXxjd13733i3SmTrZudHsXXuz%2BMLjXbTkPpdHFNnJLJ8DOHL8EUV5XeS8rFpXZw19Z15BpuqFefaOfSyNezr%2FRCNuzlwaeeqTQ7U%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ed30b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5718&recv=155&lost=110&retrans=110&sent_bytes=6809792&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6740&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/gatewallet-d97099e0.svg

188.114.97.1

200 OK

5.5 kB

URL GET
owlto.finance/assets/gatewallet-d97099e0.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
5.5 kB (5514 bytes)
Hash
4e8e1928476c4bf867f401e9fa8bc457
add3446d52a6d450d83285efba3d9e9cf2dad8ee
d61f2f29ff4a05fa6a28d13d39f81608407acc1c9a7a5e29ea05769b66371860

HTTP Headers

GET /assets/gatewallet-d97099e0.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-158a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VFxmGE6w1cTEx0BEKRWKK9scHcoTRmPMfUHjV6YZXDnByQJV4NHfCI2HUa2Ix1Y4H7Z%2B3NViiPQviC2DNdTuC%2FJkfR7p5fsNSH%2BZ3f%2BYjVzRtZXO%2FTTANxjce0o6A6b%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299eb80b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5662&recv=155&lost=110&retrans=110&sent_bytes=6744104&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6735&x=1", cfExtPri, cfHdrFlush;dur=0

wss://nbstream.binance.info/wallet-connector

57.181.46.43

101 Switching Protocols

0 B

URL GET
wss://nbstream.binance.info/wallet-connector
IP
57.181.46.43:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subject*.binance.info
Fingerprint9A:5B:65:AC:39:BF:33:54:71:1E:BC:0F:55:92:A7:82:EA:92:99:11
ValiditySun, 09 Mar 2025 00:00:00 GMT - Tue, 07 Apr 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet-connector HTTP/1.1
Host: nbstream.binance.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://owlto.finance
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0d4t9jk3hUi53EbwSOBw6w==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 18 Mar 2025 09:17:32 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Fbyzku776Ol/nZENt/c0cRzVMo0=

owlto.finance/assets/Main-141c8f2e.js

188.114.97.1

200 OK

816 kB

URL GET
owlto.finance/assets/Main-141c8f2e.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type

Size
816 kB (815490 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/Main-141c8f2e.js HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: application/javascript
last-modified: Tue, 18 Mar 2025 06:38:02 GMT
vary: Accept-Encoding
etag: W/"67d914ca-c7182"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=On1%2BF1JqkJ2UiianO%2B1hGeytW8TJwMPDdSac6mmmJmoocy85djhDDZDv6uX36k%2F%2F15rRkgBiITSoVrIssf%2B1x%2F75un3pOfffssSFFP2xw3nYjzMQN9j4SFJxlgMulpC0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a300ff030b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3367&min_rtt=930&rtt_var=2060&sent=138&recv=18&lost=0&retrans=0&sent_bytes=149496&recv_bytes=2609&delivery_rate=55490812&cwnd=105600&unsent_bytes=0&cid=abd8579419c21740&ts=643&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Owlto_Dark-fdcaab93.png

188.114.97.1

200 OK

36 kB

URL GET
owlto.finance/assets/Owlto_Dark-fdcaab93.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 2781 x 581, 8-bit/color RGBA, non-interlaced
Size
36 kB (35607 bytes)
Hash
246310f507479561a839d00adeb82b79
a30c612278037ae9a255e1758e097afcb0b56b80
fdcaab9310e72eeaa4cd38636d9c2fb9db01c5d5b534fa03da69d7b8d6c15856

HTTP Headers

GET /assets/Owlto_Dark-fdcaab93.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 35607
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-8b17"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3344
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pQsNsimUqVi09ieerGPMnxZu0ugLFi6zBJUZKjwbUsojct9rVPad%2BEoX50NbOzoz37HNhS3qrgSNRxb0jO%2BeveiSVswxjAr1XdfqC8wsqaLrWpZ9TTf8xchBTpvT0%2F%2Fm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298e980b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3491&min_rtt=749&rtt_var=2636&sent=5411&recv=153&lost=110&retrans=110&sent_bytes=6445821&recv_bytes=15293&delivery_rate=468632&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6729&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Metamask-f899f9fb.png

188.114.97.1

200 OK

10 kB

URL GET
owlto.finance/assets/Metamask-f899f9fb.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 86 x 84, 8-bit/color RGBA, non-interlaced
Size
10 kB (10052 bytes)
Hash
f96f4fa1dbbe541752d43d1afea00d30
6a35ed8f1720f9635d902dfda54c41c748302fa8
f899f9fb4bef506350b929ee0bbf71ba6a50b6f52612cc659c092fa68fb238d9

HTTP Headers

GET /assets/Metamask-f899f9fb.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 10052
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-2744"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3341
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J2v34mvKqK0BNJ756utqepyG8iBBAN3sQhBtFjJZMXVagsmCLsheLL3ui1TynSDGjg94Hd08YYD%2BMI8xrglke7vu1GoYklCXxepQBNvxHaK%2FwCuO3uc2UrRw0E8iAh2v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298e9e0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5797&recv=158&lost=117&retrans=117&sent_bytes=6899015&recv_bytes=17469&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6751&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Coinbase-82f8510a.png

188.114.97.1

200 OK

7.5 kB

URL GET
owlto.finance/assets/Coinbase-82f8510a.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 86 x 84, 8-bit/color RGBA, non-interlaced
Size
7.5 kB (7454 bytes)
Hash
0b81f97a375033178e35172c91486832
2c2fed49582bc7fdff13df0b8c23de80859e0b0b
82f8510a165c605ab2c1485fc1658c3b9fbb76f9c5558a9b9c5b5c733d851393

HTTP Headers

GET /assets/Coinbase-82f8510a.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 7454
last-modified: Tue, 18 Mar 2025 06:37:53 GMT
etag: "67d914c1-1d1e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KDPfB2kP8%2FHmoCygG741fNefkgiubFHzRqiAd4jm7zMA82PT5AqefTUZPhmSD7G5KgE%2FcpFBCmBEX0yvZ%2BVK0ngZWsaz9J0p9V7x6A5vUtdTNOP02onJzWDOlF89weHi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298eb30b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3491&min_rtt=749&rtt_var=2636&sent=5453&recv=154&lost=110&retrans=110&sent_bytes=6496190&recv_bytes=15663&delivery_rate=468632&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6730&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/ctk-light-c41d4620.png

188.114.97.1

200 OK

112 kB

URL GET
owlto.finance/assets/ctk-light-c41d4620.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 617 x 161, 8-bit/color RGBA, non-interlaced
Size
112 kB (111977 bytes)
Hash
4f8922688b4ae7731d06f3b8da622615
33ce02f6bc3ce4712ec054f403d84cdf7a614a74
c41d4620012a7352db08f03ac2ee285056a75fa444630408190ae1c1bbadd551

HTTP Headers

GET /assets/ctk-light-c41d4620.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 111977
last-modified: Tue, 18 Mar 2025 06:37:56 GMT
etag: "67d914c4-1b569"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zh%2FS5NWinHIeYiJlsMC2oGA5CWFf5L3FreU5GwtbgO2EAsyRCNqtJLB76joRXJifeQQKnjiiLV4XWn2lM47145dgTN8uvX3Lm1nk54qAZAJq8%2FzRTygn8F6Q%2FBM%2FXOMW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf430b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2564&min_rtt=749&rtt_var=1669&sent=5912&recv=164&lost=117&retrans=117&sent_bytes=7029426&recv_bytes=19685&delivery_rate=781467&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6774&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/api/bridge_api/v1/all-tokens

188.114.97.1

200 OK

64 kB

URL GET
owlto.finance/api/bridge_api/v1/all-tokens
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
JSON text data
Size
64 kB (64542 bytes)
Hash
4d0804b1587c81c5808e623fdc5983f8
65179f5ee89b4d3205f95e7b9dddd8d28993d598
786f9848e0d7b399144ac02b386dd5c5c7617b22cc755a5700f359c029a740ef

HTTP Headers

GET /api/bridge_api/v1/all-tokens HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
additional: a3f99ff9bbb90861adad13a49a2920ff2eb6563b8b92ff439e57e97ee487bb95
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-log-id: 20250318171730858279399042459992
content-encoding: gzip
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jcYDtty2QoYR0pfvpuINlFOkuz%2B9cH3Hjou2fSAcIlVvPxRFoz5sD7Uvj9o%2Fktf0MUQ0IOXKuyPpWXwVXkZrHYCBahibyJZGJ6Q2Z%2BjsqFR5OWG0zQe25HFKWUgFnsBe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32a38120b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2434&min_rtt=749&rtt_var=1035&sent=6206&recv=174&lost=134&retrans=134&sent_bytes=7370981&recv_bytes=22123&delivery_rate=172360&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7045&x=1", cfExtPri, cfHdrFlush;dur=0

wss://nbstream.binance.click/wallet-connector

0.0.0.0

0 B

URL GET
wss://nbstream.binance.click/wallet-connector
IP
0.0.0.0:0
ASN
#0

Requested by
https://owlto.finance/soneium-badge

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet-connector HTTP/1.1
Host: nbstream.binance.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://owlto.finance
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q3qq6UUSgKy7Du2KOErDow==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

owlto.finance/assets/checkin-b9854232.png

188.114.97.1

200 OK

28 kB

URL GET
owlto.finance/assets/checkin-b9854232.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 462 x 462, 8-bit/color RGBA, non-interlaced
Size
28 kB (27478 bytes)
Hash
2b21424b1e6d37fe1080c852690d0870
b8363b2a66dc1e3bb3faa0a3345edf38acffad16
b9854232ca5f2dd7a1a53013fb7e28335a3898ae592ac8afaf3679d6bfa68587

HTTP Headers

GET /assets/checkin-b9854232.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 27478
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-6b56"
accept-ranges: bytes
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bm11%2BLAf3W4eKJUxT2pbkeSwqu%2Bzg8%2BOHVcKM%2FDTQ5KbBiiEGI8L59pq3O36cakp%2BvZ1%2BdL7QMxD6hcMAhAKzVnClrDEBV3hBuqkk%2F5O2no1sdZJP4ZlS4nTSwV4c67r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a32bba870b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2179&min_rtt=749&rtt_var=1013&sent=6215&recv=177&lost=134&retrans=134&sent_bytes=7380475&recv_bytes=22573&delivery_rate=54879&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7074&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/iconfont/iconfont.css

188.114.97.1

200 OK

1.7 kB

URL GET
owlto.finance/iconfont/iconfont.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (1943), with no line terminators
Size
1.7 kB (1722 bytes)
Hash
f95d1333183b5d6c23935d6ff67c2dc2
6fe0c0c48f4fcc3febbeaff2c456e4a677e4a175
b26b7139823f286c191d6633d8c9809a862d12e265eac10e36dd0a1c1722e986

HTTP Headers

GET /iconfont/iconfont.css HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: text/css
last-modified: Tue, 18 Mar 2025 06:38:34 GMT
vary: Accept-Encoding
etag: W/"67d914ea-6ba"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
content-encoding: gzip
age: 3290
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X%2BGrmf%2BKQn67w6KbwCweBEnkfa6HpOP6PVZZfKT%2B6FChB%2FKz6W8MjD6R85ojruZ45rFzCajjYsekmr6wBcy3rI3JqBqe9hxs%2BdmROtphOYgFY3h4GC7hk63Zrxq1DEfe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a300feff0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4819&min_rtt=3822&rtt_var=2145&sent=13&recv=12&lost=0&retrans=0&sent_bytes=4130&recv_bytes=2341&delivery_rate=155398&cwnd=12000&unsent_bytes=0&cid=abd8579419c21740&ts=239&x=1", cfExtPri, cfHdrFlush;dur=0

rpc.ankr.com/bsc

136.175.126.220

200 OK

370 B

URL POST
rpc.ankr.com/bsc
IP
136.175.126.220:443
ASN
#62902 AS-ASPHERE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectenterprise.onerpc.com
Fingerprint0D:AB:A1:72:B0:60:49:83:87:54:53:10:A5:AF:54:B3:DC:55:17:D6
ValidityWed, 12 Feb 2025 16:27:30 GMT - Tue, 13 May 2025 16:27:29 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (380), with no line terminators
Size
370 B (370 bytes)
Hash
218b944e3be8b3c49d506aa211fc0208
e161376f2f249e70ca8004ee30822397dc36f62b
c2a53cb620ab90fa69db522d9bed93f89a6f165492ce520200cec8734fd64372

HTTP Headers

POST /bsc HTTP/1.1
Host: rpc.ankr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 148
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json
content-length: 165
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version
access-control-max-age: 1728000
X-Firefox-Spdy: h2

wss://nbstream.binance.com/wallet-connector

18.179.124.16

101 Switching Protocols

0 B

URL GET
wss://nbstream.binance.com/wallet-connector
IP
18.179.124.16:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerDigiCert Inc
Subject*.binance.com
FingerprintDC:5E:B6:FE:3E:A9:63:38:16:AB:57:DA:E0:4F:51:4B:FA:2B:49:43
ValidityFri, 13 Dec 2024 00:00:00 GMT - Tue, 13 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet-connector HTTP/1.1
Host: nbstream.binance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://owlto.finance
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K/adOUSsOVNXG5IeKJ/T8A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 18 Mar 2025 09:17:33 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DYcRD8A+/bPdCks25x8zkPOfWuc=

owlto.finance/api/bridge_api/v1/get-all-chains

188.114.97.1

200 OK

29 kB

URL GET
owlto.finance/api/bridge_api/v1/get-all-chains
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type

Size
29 kB (28550 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /api/bridge_api/v1/get-all-chains HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
additional: a3f99ff9bbb90861adad13a49a2920ff2eb6563b8b92ff439e57e97ee487bb95
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-log-id: 20250318171731343896854644733945
content-encoding: gzip
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FG0spSuK3Tj1Q4puCpa4fSF6XO0PeIac%2FA2VCiyOCtZvxb7SHxjOo%2BJ%2FAwwLTzBqXZs35Inl4mr1YCu6j1Fc4MLVLJXuIg18bg1O0EMoFaGPwYZNrmGwGQe6XO8T2TL%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32c2b690b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2298&min_rtt=749&rtt_var=996&sent=6241&recv=179&lost=134&retrans=134&sent_bytes=7409389&recv_bytes=23034&delivery_rate=1926652&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7334&x=1", cfExtPri, cfHdrFlush;dur=0

region1.analytics.google.com/g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=2&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=scroll&epn.percent_scrolled=90&tfd=7004

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=2&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=scroll&epn.percent_scrolled=90&tfd=7004
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEA&_s=2&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=scroll&epn.percent_scrolled=90&tfd=7004 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://owlto.finance
date: Tue, 18 Mar 2025 09:17:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

owlto.finance/assets/TokenPocket-c7571ac8.png

188.114.97.1

200 OK

20 kB

URL GET
owlto.finance/assets/TokenPocket-c7571ac8.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced
Size
20 kB (20264 bytes)
Hash
afa96478c80e8a90c02cf84a77f6e9fe
3f184dace740d30a4b32785ec2b065a60cccf40b
c7571ac88b6542e10cf832a1c920abc1bca52d3de3cb1af3b6ad00612c80e545

HTTP Headers

GET /assets/TokenPocket-c7571ac8.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 20264
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-4f28"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QDoLzo%2BuEsJD7nefkybevD%2FLQ5FkZm0G7JD4tFcMKMRoCldl7kIDsTm1qKChVoCIg3ey88%2ByjJTWfcbY1WNJkbDfHnNELoaUzsJeRvlVzYLcN0dmvzXWkzePKfNVnkL3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298eac0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5644&recv=155&lost=110&retrans=110&sent_bytes=6722664&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6734&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/github-83e5a947.svg

188.114.97.1

200 OK

1.0 kB

URL GET
owlto.finance/assets/github-83e5a947.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1028 bytes)
Hash
6d7f4bdae5b6c32128e745e536335702
7acb96b7a94ec8d612c697dd969d374a2d429b0b
ba6f4e88766642e8f6ab6ed3f919ea86bef74493723a61598ede891d3a04aec6

HTTP Headers

GET /assets/github-83e5a947.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-404"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jQsXggIts0DkykXuW9NO9rBMyD%2BeiLYJULBVL5L68nbRj%2B0v8Pyw2vVY9h34RycA%2BgK0msYIqX5MxWP1P5GBu1i556EfOAyM9CXgNjgyeUhY4ouHmKj%2BNt%2BsgPd%2FBv7n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329bf0c0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2756&min_rtt=749&rtt_var=1712&sent=5815&recv=163&lost=117&retrans=117&sent_bytes=6915450&recv_bytes=19640&delivery_rate=960875&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6766&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/soneiumBadge-1e11c8dd.css

188.114.97.1

200 OK

19 kB

URL GET
owlto.finance/assets/soneiumBadge-1e11c8dd.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (19288)
Size
19 kB (19289 bytes)
Hash
ba3885ae338ce4df5593ae99ae99cff6
b538a2f86e95eb95e15edcfd51fc018d2b72eecc
1e11c8ddd3685c59eefdf9b49bc1e49989699c23e84bad068af70d8d89881c14

HTTP Headers

GET /assets/soneiumBadge-1e11c8dd.css HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: text/css
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
vary: Accept-Encoding
etag: W/"67d914c3-4b59"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3226
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kzJ06qZRsbtti%2BTB%2FBnCKNMXB8q7fjn1y6c%2FrBSOOEPMgYEOcQW334%2B7YbuQnMBoHNmB7Wv1oHJdslS91idiRqcTBmkcDtI0EYLmYsw2NKz5iv82tgAz4FhZuN7O09Vf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32a2fe70b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2507&min_rtt=749&rtt_var=1185&sent=6198&recv=171&lost=134&retrans=134&sent_bytes=7365223&recv_bytes=20927&delivery_rate=4241&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=6835&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/soneiumBadge-9102fe25.js

188.114.97.1

200 OK

6.1 kB

URL GET
owlto.finance/assets/soneiumBadge-9102fe25.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (6443), with no line terminators
Size
6.1 kB (6148 bytes)
Hash
91c5992ba823601e71f51599d11b855f
825e021766c106320bda8ef25034a8498ec0af2a
bd45d8bcd5d4f6dff7dfdb764a025b22b96480b8cda87eb3dc5c3eee567ce934

HTTP Headers

GET /assets/soneiumBadge-9102fe25.js HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/assets/Main-141c8f2e.js
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: application/javascript
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
vary: Accept-Encoding
etag: W/"67d914c3-1804"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 0
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yqfbNgOUI2sA0I95RwLxokTb8ONbvFOBs7FXwImNabe7F3QSweYEV6PB%2F7MzLvlSLkSyMGYOwP2n6bb2g6EI7MUo8L6b18toPokpBuN7vMTxauTEv7B3zSovaHmO5Fh0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32b49bd0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1933&min_rtt=749&rtt_var=751&sent=6272&recv=184&lost=134&retrans=134&sent_bytes=7443091&recv_bytes=23574&delivery_rate=15964442&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7467&x=1", cfExtPri, cfHdrFlush;dur=0

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9K176ETP4Z&cid=1780445294.1742289444&gtm=45je53d3v9119422827za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&z=1442861360

142.250.74.131

200 OK

42 B

URL GET
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9K176ETP4Z&cid=1780445294.1742289444&gtm=45je53d3v9119422827za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&z=1442861360
IP
142.250.74.131:443
ASN
#15169 GOOGLE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subject*.google.no
FingerprintF2:05:97:F0:57:2B:A2:B3:28:EF:72:32:F4:69:9F:14:E9:B2:3B:16
ValidityMon, 10 Mar 2025 08:38:47 GMT - Mon, 02 Jun 2025 08:38:46 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9K176ETP4Z&cid=1780445294.1742289444&gtm=45je53d3v9119422827za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&z=1442861360 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 18 Mar 2025 09:17:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bscrpc.com/

136.175.126.220

200 OK

370 B

URL POST
bscrpc.com/
IP
136.175.126.220:443
ASN
#62902 AS-ASPHERE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectenterprise.onerpc.com
Fingerprint0D:AB:A1:72:B0:60:49:83:87:54:53:10:A5:AF:54:B3:DC:55:17:D6
ValidityWed, 12 Feb 2025 16:27:30 GMT - Tue, 13 May 2025 16:27:29 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (380), with no line terminators
Size
370 B (370 bytes)
Hash
f687e3ed2520b8e3d1b97ae34a9a90d8
da239dea57d4b8031cd67106091c4f034971a5d5
ac064dc2ef43824cbb8fe3b887ee98cfd835b0685c48d0715af256d88007a1c7

HTTP Headers

POST / HTTP/1.1
Host: bscrpc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 148
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json
content-length: 165
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version
access-control-max-age: 1728000
X-Firefox-Spdy: h2

owlto.finance/api/lottery/maker/sign/contract

188.114.97.1

200 OK

685 B

URL GET
owlto.finance/api/lottery/maker/sign/contract
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (741), with no line terminators
Size
685 B (685 bytes)
Hash
4b8cc2921a1f4fa6dfdd2d4793a69989
2857d834dfe61eac4baef3e720b9794597dc72b2
2b84ebac1f426c297b93801298f3a088563b653c8d2fe48083c30e0487383f85

HTTP Headers

GET /api/lottery/maker/sign/contract HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
additional: a3f99ff9bbb90861adad13a49a2920ff2eb6563b8b92ff439e57e97ee487bb95
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json; charset=utf-8
cf-ray: 9223a32a48230b59-OSL
server: cloudflare
vary: Accept-Encoding, Origin
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aN7Poo042V5agFTWUkJbq2rgje%2FlZ8%2BETVGTc6EEBtfq9wb%2BKd01pclCUe9kldBLY1ZxAWQjc32hvPm2Q2K4ij5N7U0DbUg%2BfrMA4St%2FoKfbhsd%2BxyCgHCjJ8G5qPfuf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2434&min_rtt=749&rtt_var=1035&sent=6204&recv=174&lost=134&retrans=134&sent_bytes=7369035&recv_bytes=22123&delivery_rate=172360&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7032&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/api/bridge_api/v1/get_all_exchange_infos

188.114.97.1

200 OK

451 B

URL POST
owlto.finance/api/bridge_api/v1/get_all_exchange_infos
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (511), with no line terminators
Size
451 B (451 bytes)
Hash
d48a1f193be87f19395efaae348e0bb8
43072b5dfb96b2003bfb5c4ec1997c237336bf57
f56204e29f0a5aebe90fd3e98905ec9cdf54916021f932cb1fa24963ee79bef5

HTTP Headers

POST /api/bridge_api/v1/get_all_exchange_infos HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
additional: a3f99ff9bbb90861adad13a49a2920ff2eb6563b8b92ff439e57e97ee487bb95
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
x-log-id: 20250318171730582833901845541887
content-encoding: gzip
cf-cache-status: DYNAMIC
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Eu7Y1QiEA%2FGAn3r5AZfgSDuVM0tdT45yvWURsWCIhTfKfBH6MGo9%2FwxzQKwj3Ly28LOUILmhAodNlQ7xpVwoOrUlNmMUVlLu15sIO1XF5XfyI%2FrmC7JMHEBzuKCK0GLi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32a48270b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2434&min_rtt=749&rtt_var=1035&sent=6205&recv=174&lost=134&retrans=134&sent_bytes=7370074&recv_bytes=22123&delivery_rate=172360&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7044&x=1", cfExtPri, cfHdrFlush;dur=0

www.googletagmanager.com/gtag/js?id=G-9K176ETP4Z

142.250.74.136

200 OK

379 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-9K176ETP4Z
IP
142.250.74.136:443
ASN
#15169 GOOGLE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type

Size
379 kB (378717 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gtag/js?id=G-9K176ETP4Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 18 Mar 2025 09:17:24 GMT
expires: Tue, 18 Mar 2025 09:17:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 123893
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bsc-dataseed2.ninicoin.io/

13.248.176.134

204 No Content

0 B

URL OPTIONS
bsc-dataseed2.ninicoin.io/
IP
13.248.176.134:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subjectninicoin.io
Fingerprint35:6F:89:DB:4F:87:B5:01:CD:F7:7E:1C:A1:C4:FB:0E:C0:52:6D:78
ValidityWed, 12 Jun 2024 00:00:00 GMT - Sat, 12 Jul 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: bsc-dataseed2.ninicoin.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 18 Mar 2025 09:17:29 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2

owlto.finance/assets/Symble_Round-9db1d785.png

188.114.97.1

200 OK

11 kB

URL GET
owlto.finance/assets/Symble_Round-9db1d785.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced
Size
11 kB (11177 bytes)
Hash
2f3e3ce3f982e32f21361642335a00b7
efd3d4e875980ab8c4b507762c43b76c597909f5
9db1d78597c8196b2791a185988d371951ddd6ecf15a959a642964bd7f9dff48

HTTP Headers

GET /assets/Symble_Round-9db1d785.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 11177
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-2ba9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3340
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CpqqCN7bH2bySgzcQgY%2Bp3xrcHL8PUW%2FHwjk%2BtN5QCrIlLmRAIF9jv4a%2BiI66gVms3jEC7MgxVKwGiPWezSew2gK%2FRgZynIoqEA6PelvSnCKSiMcVsVhUu%2B2v4Ku1HMd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298eb00b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3491&min_rtt=749&rtt_var=2636&sent=5575&recv=154&lost=110&retrans=110&sent_bytes=6641639&recv_bytes=15663&delivery_rate=468632&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6731&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Zerion-6caf4d5b.png

188.114.97.1

200 OK

4.6 kB

URL GET
owlto.finance/assets/Zerion-6caf4d5b.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 86 x 86, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4579 bytes)
Hash
d9c51e4fc9e203ce677670f22e183c2a
bfd06f176b73cd906de99b0b12b39a41c6d80337
6caf4d5b416305359619b9b2dfad581f352f5efd5037a2f7b8bc1e9ba2cc9e7b

HTTP Headers

GET /assets/Zerion-6caf4d5b.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 4579
server: cloudflare
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-11e3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
accept-ranges: bytes
cf-ray: 9223a3299ebb0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

owlto.finance/assets/medium-07a73765.svg

188.114.97.1

200 OK

789 B

URL GET
owlto.finance/assets/medium-07a73765.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
789 B (789 bytes)
Hash
4e8e446ff843bf7bb39f9e1499f3dd5f
219874c84ceb16c8db6ea868a732849d182b258d
b15df2476c56a8062b3e7e34381cc3294dddcce478c2e52c3bc66bddc1e6800f

HTTP Headers

GET /assets/medium-07a73765.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
server: cloudflare
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
etag: W/"67d914c3-315"
content-encoding: br
cf-ray: 9223a329bf0a0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

rsms.me/inter/font-files/Inter-Regular.woff2?v=4.1

172.67.197.50

200 OK

111 kB

URL GET
rsms.me/inter/font-files/Inter-Regular.woff2?v=4.1
IP
172.67.197.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectrsms.me
Fingerprint72:B0:4B:3E:B6:61:F9:AC:AF:2F:C8:FB:1B:15:2F:41:75:48:34:20
ValidityFri, 14 Feb 2025 15:43:43 GMT - Thu, 15 May 2025 16:42:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 111268, version 4.66
Size
111 kB (111268 bytes)
Hash
3875f83574973c732136a45f628e64a6
b7a0b6fbebc40eb29b76cf135c4b7be50b981b4b
e06f6b1bc553aaea4e4668023ed0ab0a147129c3107f511bc7d03d361b0ae085

HTTP Headers

GET /inter/font-files/Inter-Regular.woff2?v=4.1 HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://rsms.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: font/woff2
content-length: 111268
x-origin-cache: HIT
last-modified: Sat, 16 Nov 2024 01:00:53 GMT
access-control-allow-origin: *
etag: "6737eec5-1b2a4"
expires: Thu, 13 Mar 2025 17:25:36 GMT
cache-control: max-age=2678400
x-proxy-cache: HIT
x-github-request-id: 9CC6:2FD932:1C5CD0:2249C9:6737EF82
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1731722360.708284,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4af8cf999d437765238cd770ec6450ad7820df4c
cf-cache-status: REVALIDATED
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4fpAlguFh7OG8tpYgDNzvNznLFUpGf2gQ6mT64zD%2BLecpXTIkd9xeSNQH9YleRzcDl5pDFS8OAa%2Bq6BUQnIf%2BlGK4BdD1IeZrmrp8kIwg2TKOR0o77sN2tmo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a329ff54712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2827&min_rtt=1369&rtt_var=1761&sent=80&recv=7&lost=0&retrans=0&sent_bytes=87972&recv_bytes=1516&delivery_rate=16151696&cwnd=48000&unsent_bytes=0&cid=74c85dbd22798711&ts=62&x=1", cfExtPri, cfHdrFlush;dur=1

owlto.finance/assets/vendor-274fd628.js

188.114.97.1

200 OK

10 MB

URL GET
owlto.finance/assets/vendor-274fd628.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type

Size
10 MB (10118512 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/vendor-274fd628.js HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/assets/Main-141c8f2e.js
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:26 GMT
content-type: application/javascript
last-modified: Tue, 18 Mar 2025 06:38:12 GMT
vary: Accept-Encoding
etag: W/"67d914d4-9a6570"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BJvY1GoMC%2BI9XJOAHdQt%2FhE0S4XKE66yIHsHQfxkCFy9HD7NG7amK5cSfbXplWVk3S3QcZsbq6R%2BDArDT3Yv2xMhS8Fz%2FYEpcIfMTcBF9wxmey%2B7RaSMnW4105W3JjeC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a308dd010b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1496&min_rtt=930&rtt_var=338&sent=529&recv=41&lost=0&retrans=0&sent_bytes=616315&recv_bytes=3935&delivery_rate=16702536&cwnd=105600&unsent_bytes=0&cid=abd8579419c21740&ts=2283&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/bank-837b09df.png

188.114.97.1

200 OK

313 kB

URL GET
owlto.finance/assets/bank-837b09df.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 1104 x 276, 8-bit/color RGBA, non-interlaced
Size
313 kB (313411 bytes)
Hash
6f1a92a22a48676313ba297a2381bd82
3604b4e60b3e946315315777d396426fff8c476a
837b09df179fcae5a0a981d29fe1816cf39f135e10115828c6b11e2979f27d03

HTTP Headers

GET /assets/bank-837b09df.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 313411
last-modified: Tue, 18 Mar 2025 06:37:59 GMT
etag: "67d914c7-4c843"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3341
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oIZASQrR%2Be5vdxr0QnpzLku4y5LdLLJug4SfBMKGTYe7Aa1IuG8Kqrw3zVwHz4cUoiZ%2F14owOMEOxnqNHpEpvykOI3LxlhylCN0B095Zkz5AI7XL05Pcecti1URC6WQb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298e9b0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3491&min_rtt=749&rtt_var=2636&sent=5421&recv=153&lost=110&retrans=110&sent_bytes=6457821&recv_bytes=15293&delivery_rate=468632&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6729&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/RabbyWallet-c5ceabee.svg

188.114.97.1

200 OK

4.5 kB

URL GET
owlto.finance/assets/RabbyWallet-c5ceabee.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
4.5 kB (4483 bytes)
Hash
efbeda061a56a8e5765f29b5b043387e
2e6f987d3bfdd820ac83a227b4b9f92caa5840ba
3af8245ef91c89106460c2f8b6e5c5354718a55f051f095df50f07b17656b1d4

HTTP Headers

GET /assets/RabbyWallet-c5ceabee.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-1183"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3342
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9lwclp0rmCNO03SdVn289%2B5SDDxAN5sQAKR3jaUaGHWdVj4tN26AQ%2B2xXjwwpQamJ2FJhVgBozwKvShplVzkzFtVtfOV5AMKYADGO7OTiUp0l7KLHWyknJOcJuywjzQG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3298ea60b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5665&recv=155&lost=110&retrans=110&sent_bytes=6747182&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6738&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/soneium-badge

188.114.97.1

200 OK

3.7 kB

URL User Request GET
owlto.finance/soneium-badge
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
HTML document, ASCII text, with very long lines (3919), with no line terminators
Size
3.7 kB (3733 bytes)
Hash
5dac4136cd51f28080bd2000da00e260
fc862547658522b637208f2239633a5b25e7f6aa
41f3705ce81bdf09c3327894100451bf266ddb5696c8b5d28735364e79c86a4b

HTTP Headers

GET /soneium-badge HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:23 GMT
content-type: text/html
last-modified: Tue, 18 Mar 2025 06:38:34 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EzLt81Dm4bLDjdZOBu2MBTFAddXtnu%2F9opXnppGYp6mvw9dLOfRHmJcMSy8Tg9WEC40v518KMTaSHPcB8ka%2Bhgsum9BJc%2FxBDfXp76cQoyWbFGq3NjqoGt0PplKRIxIE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a2fdfde30afa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6348&min_rtt=447&rtt_var=11806&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3279&recv_bytes=1258&delivery_rate=7515570&cwnd=254&unsent_bytes=0&cid=cdef9e2b487ab01c&ts=275&x=0"
X-Firefox-Spdy: h2

owlto.finance/assets/if-moon-ea5e21c5.svg

188.114.97.1

200 OK

548 B

URL GET
owlto.finance/assets/if-moon-ea5e21c5.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
548 B (548 bytes)
Hash
5a86ec719121fb607a573e5d2374fd04
e3defbee7b2c839dcb048107aef1bf603a68e077
9a82787622712ab879372ce4c30c0a787a350cfa1990aa22b63f06a376ef58c5

HTTP Headers

GET /assets/if-moon-ea5e21c5.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
etag: W/"67d914c3-224"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2FA9JTqfWNyklcvV9UQzH8BZ3lr57TaDmq%2FaF8FKQkUj6TElC%2BZVzGhx3LrTC3A6Yh93fy%2BNvBjmE2cyUzSKKsbULN0jgDVAW61hTShz9Atbts%2Bjebecw0ulwjhk%2BFXA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ed00b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5678&recv=155&lost=110&retrans=110&sent_bytes=6761792&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6740&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/GitBook-f6d469f5.svg

188.114.97.1

200 OK

2.4 kB

URL GET
owlto.finance/assets/GitBook-f6d469f5.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
2.4 kB (2417 bytes)
Hash
0a6527a9b736220fbcbb72de2b03a1af
3d90d49f8343c423fbf7c16d75c20c599b8e7faa
62b5d9134aa0854b69183c428c6c13cdb08030a5207a770a4df09302e5f50440

HTTP Headers

GET /assets/GitBook-f6d469f5.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:53 GMT
etag: W/"67d914c1-971"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CsWCtnj7dsyj11p1ZoXF%2FSZzQxwsyTZKd%2FV65O%2F8G8xgxCNW5AhqMY4%2FyALFSWaMhz30tbjU9TPMns9HwjdrnrQzxb0hVCvIXMn%2BVK1P94mtVDWYmzYOPOjYcLILEbhS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329bf0e0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2877&min_rtt=749&rtt_var=2026&sent=5813&recv=161&lost=117&retrans=117&sent_bytes=6913463&recv_bytes=19549&delivery_rate=10647766&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6759&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/favicon.ico

188.114.97.1

200 OK

17 kB

URL GET
owlto.finance/favicon.ico
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel
Size
17 kB (16958 bytes)
Hash
9a3668077948666d503cba8eafc3a11f
f8ffaf69ed87df81fc71a16ac0463d1078ede35e
0f7a6e512702da032df56cae14a6b60fbe2d9465f4aa3c748022ea5135cb965d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:26 GMT
content-type: image/x-icon
last-modified: Tue, 18 Mar 2025 06:38:34 GMT
etag: W/"67d914ea-423e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3332
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3YSnaAMIyE%2BMl7uVXcugGRZAsLHyAPBg4tvUaQOtAQRvkUPndOEwO2JNwwzKb3nHGLUUr0NmjDQHv3XHQlJeP7kYiZ8AID2J1lATcVp2rW95v9rTnM9itJZnOP4ErhvN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3105a940b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1265&min_rtt=930&rtt_var=339&sent=683&recv=52&lost=0&retrans=0&sent_bytes=799533&recv_bytes=4735&delivery_rate=14415706&cwnd=105600&unsent_bytes=0&cid=abd8579419c21740&ts=2701&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/ze-award%202-b1a8a74c.svg

188.114.97.1

200 OK

814 B

URL GET
owlto.finance/assets/ze-award%202-b1a8a74c.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
814 B (814 bytes)
Hash
ab374e160b6023bd6a4e52336a3a465d
d57439b180303c70ba9fc119ed979817e4eb4549
68ce5c70c07f86ba0eeba7c2ce02d5a29e6b7bbdd9f4acf5651d03ca31e33f01

HTTP Headers

GET /assets/ze-award%202-b1a8a74c.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:57 GMT
etag: W/"67d914c5-32e"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=01iI78BC2InRK0wMe1QsU9ZQ70S0aETmsETqI7YZrmOEawwmYSQAldsGFR%2FowSUEo1xRxjQC4Dl%2BQGTi6ab0CuBjlpIXvVD9mqO%2F7%2F07X7NVxsHCckxIUAYrTLTI4tV9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ecb0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5678&recv=155&lost=110&retrans=110&sent_bytes=6761792&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6740&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/discord-e639140c.svg

188.114.97.1

200 OK

1.7 kB

URL GET
owlto.finance/assets/discord-e639140c.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.7 kB (1673 bytes)
Hash
27f23f17aad3251e54b134119bd63698
fb58ef47d976ae4d7c308ce0e39ab004c15d066f
95ae14a1fc6e83550b95ea810be2aaedb54d86063627325ef730b0a785569a1b

HTTP Headers

GET /assets/discord-e639140c.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-689"
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n5p7PX26iLlQygwhD26oNqm3Y206p1fe5xOUbJz5YhN%2BBddzThOWjhY2SnEy%2FuOwzUol5sRO69RJaYJCAldOSQ0PHR4YzdqjbntcEfXvAyQe%2B%2FXZE1LBb5skJJEfYPaR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329bf080b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5810&recv=158&lost=117&retrans=117&sent_bytes=6911913&recv_bytes=17469&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6755&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/soneiumBadge-9102fe25.js

188.114.97.1

200 OK

6.1 kB

URL GET
owlto.finance/assets/soneiumBadge-9102fe25.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (6443), with no line terminators
Size
6.1 kB (6148 bytes)
Hash
91c5992ba823601e71f51599d11b855f
825e021766c106320bda8ef25034a8498ec0af2a
bd45d8bcd5d4f6dff7dfdb764a025b22b96480b8cda87eb3dc5c3eee567ce934

HTTP Headers

GET /assets/soneiumBadge-9102fe25.js HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://owlto.finance/soneium-badge
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: application/javascript
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
vary: Accept-Encoding
etag: W/"67d914c3-1804"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: MISS
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=olXkpRVoCpz3XH3roGtXorXwjqJ7hi9Vl47Pm0qYsYExEgIjMGqvV4M9wIvg6b%2BICReSRlPmPB%2BMUdIlYkphWyTZITVAzNnNaWYufCSGIzJgzkvY6VP%2BZzhVQJPyaFFe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a32a2ff20b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2189&min_rtt=749&rtt_var=964&sent=6247&recv=181&lost=134&retrans=134&sent_bytes=7414400&recv_bytes=23438&delivery_rate=24780&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7443&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/aliiconfont/iconfont.css

188.114.97.1

200 OK

1.5 kB

URL GET
owlto.finance/aliiconfont/iconfont.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (1651), with no line terminators
Size
1.5 kB (1484 bytes)
Hash
0ad88d4fc90e180224528024f6ee9a5e
2942748e9b47d77b3ad98de58d3b8efaf312667b
d173fff47a02ab8cafa5a14e67426366907ee25fc1efaac635465460e7b21bad

HTTP Headers

GET /aliiconfont/iconfont.css HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: text/css
last-modified: Tue, 18 Mar 2025 06:37:52 GMT
vary: Accept-Encoding
etag: W/"67d914c0-5cc"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3291
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SfkHEzSHZg1W%2BqPYXcpnxj3AQHbB0nk3GqtIIL6Ujcvhqq1knJ8VqGgTfMWWPFTK6GU7eZJrIYztv5YeJbuwsxPkW2gJKioGGm2Qc%2F75fDI1I8OKcPGc%2BNeXdsAgkeeL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a300fefc0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4501&min_rtt=2276&rtt_var=2244&sent=27&recv=13&lost=0&retrans=0&sent_bytes=18711&recv_bytes=2385&delivery_rate=6188&cwnd=13200&unsent_bytes=0&cid=abd8579419c21740&ts=244&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/index-eb5b5da1.css

188.114.97.1

200 OK

446 kB

URL GET
owlto.finance/assets/index-eb5b5da1.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
446 kB (446502 bytes)
Hash
d48f9eb746488379421d6acbe5e8be8e
33c23712d745315bae1af9904d7eb1c83d788fe6
eb5b5da1c5072528b804b454910e3c95347414bdb853cf388d0170e1684abf51

HTTP Headers

GET /assets/index-eb5b5da1.css HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: text/css
last-modified: Tue, 18 Mar 2025 06:38:00 GMT
vary: Accept-Encoding
etag: W/"67d914c8-6d026"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 1417
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rOO7x4od4PrVvEyqiUxyIEnn5SsoO3NvSzljtKNE43MKpLb%2Bc1EDivd2YEwbIp59NCdx20GdXa6ZfrBj8WXeSxg04cTuwtrYO0vckrEBnPk%2BeRY2YJxYGgVxJx%2FhqjdS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a300ff050b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4486&min_rtt=2276&rtt_var=1712&sent=49&recv=14&lost=0&retrans=0&sent_bytes=45080&recv_bytes=2429&delivery_rate=59758&cwnd=26400&unsent_bytes=0&cid=abd8579419c21740&ts=246&x=1", cfExtPri, cfHdrFlush;dur=1

region1.analytics.google.com/g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1051

216.239.34.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1051
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
Fingerprint16:BA:A3:B5:22:51:BB:87:46:7F:17:3F:9D:14:B3:35:F0:FE:B1:8D
ValidityMon, 10 Mar 2025 08:35:59 GMT - Mon, 02 Jun 2025 08:35:58 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-9K176ETP4Z&gtm=45je53d3v9119422827za200&_p=1742289444174&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719~102887799&cid=1780445294.1742289444&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1742289444&sct=1&seg=0&dl=https%3A%2F%2Fowlto.finance%2Fsoneium-badge&dt=Owlto%20Finance&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1051 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://owlto.finance
date: Tue, 18 Mar 2025 09:17:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

wss://nbstream.binance.info/wallet-connector?env=browser&protocol=wc&version=1

18.181.73.148

101 Switching Protocols

0 B

URL GET
wss://nbstream.binance.info/wallet-connector?env=browser&protocol=wc&version=1
IP
18.181.73.148:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subject*.binance.info
Fingerprint9A:5B:65:AC:39:BF:33:54:71:1E:BC:0F:55:92:A7:82:EA:92:99:11
ValiditySun, 09 Mar 2025 00:00:00 GMT - Tue, 07 Apr 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet-connector?env=browser&protocol=wc&version=1 HTTP/1.1
Host: nbstream.binance.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://owlto.finance
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uZeFa9YPo9gsRedo0HfcTA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 18 Mar 2025 09:17:36 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4UUu2bFQElTa1yG8tfFwc2yij4w=

binance.nodereal.io/

54.77.108.101

200 OK

370 B

URL POST
binance.nodereal.io/
IP
54.77.108.101:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subject*.nodereal.io
FingerprintC6:91:90:0D:EE:3C:8C:8F:95:A6:0A:58:6A:D8:9E:F9:06:B3:FD:A5
ValiditySun, 15 Dec 2024 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (380), with no line terminators
Size
370 B (370 bytes)
Hash
0c5562a200e2229ad62e1ec9f90f81bb
b335770e4056a07d13fe4e6a40c5040bbca965cd
21a8dcc66c732e9f646a048f5f28b5bda44946fce160129504b704ca1e24764f

HTTP Headers

POST / HTTP/1.1
Host: binance.nodereal.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 148
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 5220894f3387ecca12df8ac14ab53125
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2

owlto.finance/assets/ctk-dark-ec857daa.png

188.114.97.1

200 OK

11 kB

URL GET
owlto.finance/assets/ctk-dark-ec857daa.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 617 x 161, 8-bit/color RGBA, non-interlaced
Size
11 kB (11364 bytes)
Hash
2f871c4220280a64b2a0f5d14b4d63f3
71e7d2079caead477fb4d870d95cf31433a6c7e6
ec857daa97342375b43b1fe8339a29ca19196d21461be419bce2b5f1aca3592f

HTTP Headers

GET /assets/ctk-dark-ec857daa.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 11364
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-2c64"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qNBFXvmhlmm%2F9IpApQNilXfNYFbnrWPF8NS%2FugjrP4SLq9rBiE4I4AVlgpvguxRCpd%2BkrbZPfYo3fDh3QiQHcOfAqZfxntPWxCE%2Fk6yJMJ9w9rE%2BLU4%2F%2FaOrrmz8VXVD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf420b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2472&min_rtt=749&rtt_var=1436&sent=6167&recv=165&lost=117&retrans=117&sent_bytes=7333476&recv_bytes=19731&delivery_rate=15532680&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6782&x=1", cfExtPri, cfHdrFlush;dur=0

wss://nbstream.yshyqxx.com/wallet-connector

8.212.49.60

101 Switching Protocols

0 B

URL GET
wss://nbstream.yshyqxx.com/wallet-connector
IP
8.212.49.60:443
ASN
#45102 Alibaba US Technology Co., Ltd.

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerDigiCert, Inc.
Subject*.yshyqxx.com
Fingerprint70:8D:7E:3E:9B:4A:16:70:7B:90:3A:A9:A7:A9:39:07:53:F7:F9:8C
ValidityFri, 30 Aug 2024 00:00:00 GMT - Tue, 30 Sep 2025 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /wallet-connector HTTP/1.1
Host: nbstream.yshyqxx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://owlto.finance
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Io6znZwQTmK/0a6qQlqUXQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Date: Tue, 18 Mar 2025 09:17:37 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZhjMSbWeitC0jV4JVxryUFgSLu8=

owlto.finance/assets/power-dark-3c485b06.png

188.114.97.1

200 OK

8.1 kB

URL GET
owlto.finance/assets/power-dark-3c485b06.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 210 x 44, 8-bit/color RGBA, non-interlaced
Size
8.1 kB (8106 bytes)
Hash
730d69b46a5742db5b00efb0e7a98f7e
f5497b55dbb39804c00e316aff21f93209af2ceb
3c485b0603b671676f31ad3bb207b3d33a70afa252cc842036fd3b98105c59ad

HTTP Headers

GET /assets/power-dark-3c485b06.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: image/png
content-length: 8106
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
etag: "67d914c3-1faa"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3226
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BAUKf0quZCZSXUUCmPTmIuSZjZDSm0MrlXCzwV6V46GacV8l5KbyEP7pIg7SwgcuqjXeL%2Bt85W32CokSNiTjh9P9Kw%2BuDnC5ssCPNCbMSqd6V1mzREFR%2BcpT4smJahL0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a32e6f110b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1869&min_rtt=749&rtt_var=691&sent=6399&recv=187&lost=134&retrans=134&sent_bytes=7591318&recv_bytes=24345&delivery_rate=1824628&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7504&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/vendor-860cb88a.css

188.114.97.1

200 OK

331 kB

URL GET
owlto.finance/assets/vendor-860cb88a.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type

Size
331 kB (330799 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/vendor-860cb88a.css HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:24 GMT
content-type: text/css
last-modified: Tue, 18 Mar 2025 06:38:00 GMT
vary: Accept-Encoding
etag: W/"67d914c8-50c2f"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 3290
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q69TcwKNSUXnKXsVkrwuXpwOWDBkHgL2hngYfpc0Hyr5b1q6tQu%2FwjGVnNo2c4VNn%2FGQyJqkXFEi0RacNREsWuGLW6aExvC84xcL5%2FcdfNSxJj6W95HoOkInHUwdyb9w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a300ff040b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=4819&min_rtt=3822&rtt_var=2145&sent=15&recv=12&lost=0&retrans=0&sent_bytes=5511&recv_bytes=2341&delivery_rate=155398&cwnd=12000&unsent_bytes=0&cid=abd8579419c21740&ts=241&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/antFill-twitter-square%201-b082ca59.svg

188.114.97.1

200 OK

835 B

URL GET
owlto.finance/assets/antFill-twitter-square%201-b082ca59.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
835 B (835 bytes)
Hash
7ff3d6165885e002114315f42a5e84ea
42c267fe41f2af88a7d02be018a50e8280737dd7
8998b993896810056f0a50c0237924b9e2929ea7450f5fa192c97172b7e3b6f4

HTTP Headers

GET /assets/antFill-twitter-square%201-b082ca59.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-343"
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fx1dajCgDUoDyKQ43WXq4c1auEMR%2Fg3z5EwLuIW9V4CeHqpuJxG8%2FknZ4jxNvwlPbUnyvDpoNSpcOtNTVkZArmjr3UoqfOCr8l2meSyVDO1ymtkuoaRIB3BeZR8c7R5h"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329bf070b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5808&recv=158&lost=117&retrans=117&sent_bytes=6910689&recv_bytes=17469&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6753&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Beosin-dark-abf544f2.png

188.114.97.1

200 OK

53 kB

URL GET
owlto.finance/assets/Beosin-dark-abf544f2.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 1178 x 361, 8-bit/color RGBA, non-interlaced
Size
53 kB (53344 bytes)
Hash
719c49b921690628d500c5ed7ff5c53a
198d542806af8856a195bbd64744da247466ca5d
abf544f23c136f53ed38ac986e42d7053f6ff674bbf6c0acc30d945d835373d5

HTTP Headers

GET /assets/Beosin-dark-abf544f2.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 53344
last-modified: Tue, 18 Mar 2025 06:37:53 GMT
etag: "67d914c1-d060"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Wv8spZYs%2FQofIOC%2FIswnQEDNCtFdtM9pqohvShY0cjgfqu95%2FKjtgrLHqVm64H4NU%2FGG5LqWbkkMfLAVZvp4Hi1NmD%2FlvhUNnx8LV1obOQ9V%2Bdy%2BdYNZEbR%2F%2BwvDiUMa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf470b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2564&min_rtt=749&rtt_var=1669&sent=5817&recv=164&lost=117&retrans=117&sent_bytes=6916789&recv_bytes=19685&delivery_rate=781467&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6770&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/Beosin-light-b72faff6.png

188.114.97.1

200 OK

54 kB

URL GET
owlto.finance/assets/Beosin-light-b72faff6.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 1178 x 361, 8-bit/color RGBA, non-interlaced
Size
54 kB (54116 bytes)
Hash
0557b4537f314f001d45f19fcb25163b
3f0b67200f7d5d8f16c83502f7f75ec7b5700738
b72faff61d54030b3ad9dd8cbe22aa00a1898401c2a579c4ce482b7fdb68f439

HTTP Headers

GET /assets/Beosin-light-b72faff6.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/png
content-length: 54116
last-modified: Tue, 18 Mar 2025 06:37:53 GMT
etag: "67d914c1-d364"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LDLOfGbSS8hvz5TpP5plCGzPBOWCqQbCjOkytuJ4HfLjhlteK%2FryU7OACYJZ4Ey6eeE8BjxM2hfR5QVFLV8Aer7t7lx%2FLIBgKWNfT2MJKbkOJ3kzRh5OdMQnngjv7vQO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a329cf4a0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=2564&min_rtt=749&rtt_var=1669&sent=5864&recv=164&lost=117&retrans=117&sent_bytes=6972210&recv_bytes=19685&delivery_rate=781467&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6771&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/vendor-274fd628.js

188.114.97.1

200 OK

10 MB

URL GET
owlto.finance/assets/vendor-274fd628.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type

Size
10 MB (10118512 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/vendor-274fd628.js HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://owlto.finance/soneium-badge
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/javascript
last-modified: Tue, 18 Mar 2025 06:38:12 GMT
vary: Accept-Encoding
etag: W/"67d914d4-9a6570"
content-encoding: gzip
cache-control: max-age=14400
cf-cache-status: HIT
age: 4
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RhsBzzSy9DnaAz6UFNGBUXWw%2BG6ku7cis2UNTGKfL%2FyhFWrQ%2BjCfgOjIC2yQFzYA7Fybz5XgcE2mHf%2BPnBxOcq4nPbfHKZyy01dH0aSOk3nGxzzBR6gKPwNijRflBRf%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a326996d0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1886&min_rtt=749&rtt_var=1076&sent=2900&recv=127&lost=0&retrans=0&sent_bytes=3451365&recv_bytes=8352&delivery_rate=35715397&cwnd=651600&unsent_bytes=0&cid=abd8579419c21740&ts=6258&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/binance-871ed508.jpg

188.114.97.1

200 OK

21 kB

URL GET
owlto.finance/assets/binance-871ed508.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 512x512, components 3
Size
21 kB (21084 bytes)
Hash
c4150381439518fde8cd45441ba47eda
10d778191ad41655329bc623314461f62b7d5a52
871ed5083c1c8d8a8d3dee069bcda8f16a35c91362265fedf11d3974bd693409

HTTP Headers

GET /assets/binance-871ed508.jpg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/jpeg
content-length: 21084
server: cloudflare
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: "67d914c2-525c"
accept-ranges: bytes
age: 3338
cache-control: max-age=14400
cf-cache-status: HIT
priority: u=4,i=?0
cf-ray: 9223a3298ea50b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri

owlto.finance/assets/if-ui-note%201-ebe94958.svg

188.114.97.1

200 OK

1.2 kB

URL GET
owlto.finance/assets/if-ui-note%201-ebe94958.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.2 kB (1169 bytes)
Hash
305825ea6f128c31bd4d20a4cc50f946
3bb3ab68c8640a4c2015bad629f9abdba6742d6a
c89beb9744ecf112e23cce3b7cda3a1013b7ef61c3def5e577c6b359d8f7be95

HTTP Headers

GET /assets/if-ui-note%201-ebe94958.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:55 GMT
etag: W/"67d914c3-491"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3338
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=45LecI%2Fw%2BtOvmpaghkQYyq2sVAAQZq0oyqdLz32ZPGeFhB2JgIlr%2BpN85gpk1rpM3E7nLBPH%2F1znMfcME7CY8kiHwEepI9BnCkBDAFJTB7k0zru5lQiN3RJACM28sMec"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ed20b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5789&recv=158&lost=117&retrans=117&sent_bytes=6889745&recv_bytes=17469&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6745&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/clock-cced0744.svg

188.114.97.1

200 OK

1.8 kB

URL GET
owlto.finance/assets/clock-cced0744.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
1.8 kB (1753 bytes)
Hash
a10cbc4cb9da92ea46b796526aa2566a
0702798c19f75928b7bfb0636da7aec744c6f128
d29447f690d14a414688899211b073d94cbbbb29cce13d2e21d9674fdde22fe8

HTTP Headers

GET /assets/clock-cced0744.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-6d9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sLq8VN3q7hU6dPUXu9Xg4RQpwns6h035eJWfmCM34tGtFrwH1oZ8Qin36O57w%2Belh3IZRvsFcvGlzV32rZHdUJ6afqphQsb%2Bg2lRMmoxEVJU4nw6tX8oQlfFp0mCnKIo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299ebf0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3073&min_rtt=749&rtt_var=2179&sent=5786&recv=156&lost=117&retrans=117&sent_bytes=6888214&recv_bytes=15757&delivery_rate=26172399&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6742&x=1", cfExtPri, cfHdrFlush;dur=0

rsms.me/inter/font-files/InterVariable.woff2?v=4.1

172.67.197.50

200 OK

352 kB

URL GET
rsms.me/inter/font-files/InterVariable.woff2?v=4.1
IP
172.67.197.50:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectrsms.me
Fingerprint72:B0:4B:3E:B6:61:F9:AC:AF:2F:C8:FB:1B:15:2F:41:75:48:34:20
ValidityFri, 14 Feb 2025 15:43:43 GMT - Thu, 15 May 2025 16:42:09 GMT

File type
Web Open Font Format (Version 2), TrueType, length 352240, version 4.66
Size
352 kB (352240 bytes)
Hash
2bf3d951bf9d6109437ea0874bbf12fb
f55b18fdf5a4fbca23e23010fbe89df27d70d1ff
693b77d4f32ee9b8bfc995589b5fad5e99adf2832738661f5402f9978429a8e3

HTTP Headers

GET /inter/font-files/InterVariable.woff2?v=4.1 HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://rsms.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: font/woff2
content-length: 352240
x-origin-cache: HIT
last-modified: Sat, 16 Nov 2024 01:00:53 GMT
access-control-allow-origin: *
etag: "6737eec5-55ff0"
expires: Tue, 25 Feb 2025 23:41:18 GMT
cache-control: max-age=2678400
x-proxy-cache: HIT
x-github-request-id: EDFE:36974E:105558:13C393:6737EFB2
via: 1.1 varnish
age: 3558
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1731719238.376128,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 778bf727ca414347b266454f1cb40e0fc4f9154c
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jT1M1RHKyMgPLxlMdKwjcnIzthJuK1Lik6A%2FcYQU3AOZwU4dtHsM6hzgFmOCtIWoTmKnx7pP%2BgPVw5sFba38nz61Ia14MEBFqqfrhaAcDy%2BjTYk6dcNspZXS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9223a329ff4d712f-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3243&min_rtt=1369&rtt_var=1852&sent=10&recv=5&lost=0&retrans=0&sent_bytes=3972&recv_bytes=1430&delivery_rate=46236&cwnd=12000&unsent_bytes=0&cid=74c85dbd22798711&ts=58&x=1", cfExtPri, cfHdrFlush;dur=0

owlto.finance/assets/badge-c411936c.png

188.114.97.1

200 OK

140 kB

URL GET
owlto.finance/assets/badge-c411936c.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
PNG image data, 748 x 772, 8-bit/color RGBA, non-interlaced
Size
140 kB (140161 bytes)
Hash
8eb38c621d750d02b9c1454dc0fb6575
e13951f65d4a9303599f4d248f6bd71fa5f2ee07
c411936cd1d3c26bcde2b58bcbcfb42b79c521100bc0fa4d6cdc5a784fd41e6e

HTTP Headers

GET /assets/badge-c411936c.png HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:31 GMT
content-type: image/png
content-length: 140161
last-modified: Tue, 18 Mar 2025 06:37:57 GMT
etag: "67d914c5-22381"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3226
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QEBou9wcWJmQvtSEaMPOsy9SEDbELbbZN2lR7OJmLImzCMhO1Ilvf5haVaDeVEf5ZItDL2w6YWIwlcYxfW2DdSVWtsm1pRCVgi7%2F3HoF%2FROF4lJDyZ3MM91Y2Yv4N%2FKo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a32e5f0a0b59-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1869&min_rtt=749&rtt_var=691&sent=6278&recv=187&lost=134&retrans=134&sent_bytes=7446854&recv_bytes=24345&delivery_rate=1824628&cwnd=638568&unsent_bytes=0&cid=abd8579419c21740&ts=7500&x=1", cfExtPri, cfHdrFlush;dur=0

binance.nodereal.io/

54.77.108.101

204 No Content

0 B

URL OPTIONS
binance.nodereal.io/
IP
54.77.108.101:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subject*.nodereal.io
FingerprintC6:91:90:0D:EE:3C:8C:8F:95:A6:0A:58:6A:D8:9E:F9:06:B3:FD:A5
ValiditySun, 15 Dec 2024 00:00:00 GMT - Wed, 14 Jan 2026 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS / HTTP/1.1
Host: binance.nodereal.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://owlto.finance/
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Tue, 18 Mar 2025 09:17:29 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2

bsc-dataseed2.ninicoin.io/

13.248.176.134

200 OK

370 B

URL POST
bsc-dataseed2.ninicoin.io/
IP
13.248.176.134:443
ASN
#16509 AMAZON-02

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerAmazon
Subjectninicoin.io
Fingerprint35:6F:89:DB:4F:87:B5:01:CD:F7:7E:1C:A1:C4:FB:0E:C0:52:6D:78
ValidityWed, 12 Jun 2024 00:00:00 GMT - Sat, 12 Jul 2025 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (380), with no line terminators
Size
370 B (370 bytes)
Hash
189809261ee0e0b1e30a1364732db061
5ff4d25747dedfe0584dd6d3f6f15b19a3cccf5a
70e83bd401d3da8b37c7c05cfe8be62017d8d7f70ee2a2ff2ff205ceaa77d078

HTTP Headers

POST / HTTP/1.1
Host: bsc-dataseed2.ninicoin.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 148
Origin: https://owlto.finance
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 1be0c3893a0dd51e02a52d860ac06b72
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2

owlto.finance/assets/WalletConnect-eef2ba73.svg

188.114.97.1

200 OK

2.2 kB

URL GET
owlto.finance/assets/WalletConnect-eef2ba73.svg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://owlto.finance/soneium-badge
Certificate
IssuerGoogle Trust Services
Subjectowlto.finance
FingerprintB0:AA:29:9D:80:70:06:9D:F3:40:F2:23:E9:BC:B4:0A:C3:9C:F4:D6
ValidityThu, 23 Jan 2025 12:04:04 GMT - Wed, 23 Apr 2025 13:01:19 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2164 bytes)
Hash
4fc525c7a16d7e56b8029337fdffdc7d
6b56e6d1b6b7d1dff8206eeb222d16393c05d9ee
babea47b276ffcfa04c00ac72453beb1781b44bc9c2fc2e388734c5350c5764c

HTTP Headers

GET /assets/WalletConnect-eef2ba73.svg HTTP/1.1
Host: owlto.finance
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://owlto.finance/soneium-badge
Cookie: _ga_9K176ETP4Z=GS1.1.1742289444.1.0.1742289444.60.0.0; _ga=GA1.1.1780445294.1742289444
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 18 Mar 2025 09:17:30 GMT
content-type: image/svg+xml
last-modified: Tue, 18 Mar 2025 06:37:54 GMT
etag: W/"67d914c2-874"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3339
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SYLDIs%2FWZXdaSIR34ayuBiawvTBpj9oDAnXX8WdLpxf20DhVYud4a7PCuBhJma1I9I0k9VjjF3H7au%2FHcNoMYQhncxmvweroQ8DfW%2FJOaefeACF%2FUkKH5vIRWi6IMIJi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9223a3299eb50b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3209&min_rtt=749&rtt_var=2541&sent=5642&recv=155&lost=110&retrans=110&sent_bytes=6720977&recv_bytes=15709&delivery_rate=11780481&cwnd=912240&unsent_bytes=0&cid=abd8579419c21740&ts=6733&x=1", cfExtPri, cfHdrFlush;dur=0

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (70)

URL OPTIONS

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers