Domain api.pre.global-exchange.com
CLOUDFLARENET
Software information

cloudflare cloudflare

tcp/443 tcp/80 tcp/8443

  • Open service 104.18.21.146:8443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=41,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c6ff6b3639-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.21.146:443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=8,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c6ed19b865-SIN


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:8443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=6,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c6dc41f2bc-YYZ


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.21.146:80 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=11,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c68c019aa4-EWR


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=8,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c6392dac70-YYZ


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:80 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=11,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c64cf44e32-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.20.146:8443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c5ff021430-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.20.146:80 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=14,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c60b967c0a-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.20.146:443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=8,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c5ef0ed8ed-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:8443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=10,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c5f864dc99-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:443 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=13,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c5dac51c05-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:80 · api.pre.global-exchange.com

    2026-01-25 13:22 

    HTTP/1.1 403 Forbidden
Date: Sun, 25 Jan 2026 13:22:44 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=13,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9c3814c5dd3f9874-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-25 by HttpPlugin
    Create report

  • Open service 104.18.21.146:80 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:46 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=14,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8959f89fd3c-SIN


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 104.18.21.146:8443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=6,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8935f647ac0-EWR


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=9,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b892dd87363c-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 104.18.20.146:443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=4,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b892b919590f-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:80 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=15,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8928f19cd95-LHR


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8928fcb814d-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 104.18.20.146:80 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=16,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8924c7dab2d-YYZ


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1492:8443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8923af139f2-YYZ


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 104.18.21.146:443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8922f4734b7-AMS


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:8443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=5,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b89228c4dcc5-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 104.18.20.146:8443 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=11,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b8920b589c00-FRA


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report

  • Open service 2606:4700::6812:1592:80 · api.pre.global-exchange.com

    2026-01-03 13:07 

    HTTP/1.1 403 Forbidden
Date: Sat, 03 Jan 2026 13:07:45 GMT
Content-Type: application/json
Content-Length: 64
Connection: close
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
referrer-policy: same-origin
Server-Timing: cfEdge;dur=7,cfOrigin;dur=0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expect-ct: max-age=86400, enforce
x-xss-protection: 1; mode=block
access-control-allow-headers: access-control-allow-headers,access-control-allow-methods,access-control-allow-origin,content-type,x-ge-application,x-ge-sessiontoken,x-ge-usertoken,x-ge-commerce,x-ge-origin,x-ge-branchoffice
access-control-allow-methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
access-control-allow-origin: *
content-security-policy: default-src 'self' https://api.pre.global-exchange.com https://fonts.gstatic.com; connect-src 'self' https://api.pre.global-exchange.com data: https://*.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' 'unsafe-inline' 'unsafe-eval'; script-src-elem 'self' 'unsafe-inline' https://www.googletagmanager.com https://www.gstatic.com https://www.google.com https://unpkg.com https://cdn.jsdelivr.net; worker-src blob:; img-src 'self' data:; frame-src https://www.google.com
Server: cloudflare
CF-RAY: 9b82b891cae6de1c-AMS


{status: 'forbidden', reason: 'Sec by default', errorCode: 1234}
    Found 2026-01-03 by HttpPlugin
    Create report
api.pre.global-exchange.com
Fingerprint:
c0719c03bdfa3552ae4cc76a3d88d7416d2e359e873c4a991ee121428443e86c
CN:
api.pre.global-exchange.com
Key:
ECDSA-256
Issuer:
WE1
Not before:
2026-01-25 12:22
Not after:
2026-02-24 13:22
api.pre.global-exchange.com
Fingerprint:
277b9043bbc53e8704868a4a74f5d2343ec156dd4b64367a5585441373954544
CN:
api.pre.global-exchange.com
Key:
ECDSA-256
Issuer:
WE1
Not before:
2025-12-12 11:52
Not after:
2026-01-11 12:52
Domain summary

api.pre.global-exchange.com 23

1 recorded
IP summary

104.18.21.146 2 2606:4700::6812:1492 1 104.18.20.146 1 2606:4700::6812:1592 1

4 recorded

© 2026 LeakIX v2.0.49
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice