| gift-5.com/volt/gm/?nox=5008844905 |  188.114.96.1 | 200 OK | 14 kB |
URL User Request GET HTTP/1.1gift-5.com/volt/gm/?nox=5008844905 IP188.114.96.1:80
File typeHTML document, Unicode text, UTF-8 text, with CRLF line terminators Hashbb4580696ee9d339bf985fabd9ece118 bc6b6cd86cee81061394067f6514399026ee6a0e 207abb4424ecda83cfeff5eef89972a4f7a961a272086ca6dbad57a63a1e8a59
| Analyzer | Verdict | Alert |
|---|
| PhishTank | phishing | Other | | Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/?nox=5008844905 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GiSUsSZwT42BJIdqOqhX3bVRqLMKf3ZojogsdwuiS2ImU4xD1E7%2FKhf71Z0LISl1n%2BXMlcif6GCgvlv9KL6iq%2BmEZBy00ftTWn6konqmccvBX08vgvtlw6RqgDYK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d223af888f61-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/css/loader.css | 188.114.97.1 | 200 OK | 944 B |
URL GET HTTP/1.1gift-5.com/volt/gm/css/loader.css IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hash1f14c398a81e0d8f7c287260a7793263 8f191747b6483c4dfa463e822fb8a6c04e25179c 9764ef39c9d7ee9c392398fa25429b7090762408fcfcc05633ecc8c7d3650d1a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/loader.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:06 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-1743"
Expires: Wed, 17 Apr 2024 08:37:16 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 29870
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wkiDZDTrq4ysqTz6jXc1Ah1qjUsuVj1ATmisba4GHFoqy3azGCzDruxVac923oKEAM59afDkg81cnOmgivF4YionZW9CzXZx6heRJEVog5pyORnXrAA%2FmFiyuYxo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c8ee992a4-CPH
alt-svc: h2=":443"; ma=60
|
|
| cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css |  104.17.25.14 | 200 OK | 5.8 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css IP104.17.25.14:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hashe9365fe85b7e4db79a87015e52c3db6c 2e2b5eb6e08f0f3d11fe0ada97c962a23ba6a0d9 dec3e9f0190a504ed0c8f4a5e957c107206ba106cac4a1bbb6cbac6369a16d56
GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: text/css; charset=utf-8
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 129911
expires: Mon, 07 Apr 2025 04:55:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0SV%2Fywbs5h8qcaTIANSR%2B02M2aYelDCpQLuA3EIOVJSN%2BYYP0kCKZ9AKMucfY39zVYyyrcH%2FuUTifN106V2lwa3NRXxDkTgj1viQ5vpakpRwc3Dhjv%2BetCcj900%2FSK6L7rSkBO4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759d22cdfb38f61-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css | 104.17.25.14 | 200 OK | 19 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/css/all.min.css IP104.17.25.14:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /ajax/libs/font-awesome/6.4.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: text/css; charset=utf-8
content-length: 18778
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64cac444-495a"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1017299
expires: Mon, 07 Apr 2025 04:55:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WDj1GPfHqHxsMqKX%2BeyIQPnPmB5BhMLSLAwMuPOKXUUzNBA3qDEwlnmXl97KvE3%2FhuIi9TLYdgNquisyzJCIeNQfCelKzL9Wg97MlXRrttfpc5cYpgfREHWks6XNd1a4pI7hWjfc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759d22d0fe48f61-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-1.10.2.min.js |  151.101.66.137 | 200 OK | 33 kB |
URL GET HTTP/2code.jquery.com/jquery-1.10.2.min.js IP151.101.66.137:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32072) Hash628072e7212db1e8cdacb22b21752cda 0511abe9863c2ea7084efa7e24d1d86c5b3974f1 0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-16bb3"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 17 Apr 2024 04:55:07 GMT
age: 18529101
x-served-by: cache-lga13622-LGA, cache-hel1410027-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 52839
x-timer: S1713329707.107275,VS0,VE0
vary: Accept-Encoding
content-length: 32788
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/act/a20180515iggamepc/logo.png |  95.100.154.186 | 200 OK | 6.1 kB |
URL GET HTTP/2www.pubgmobile.com/act/a20180515iggamepc/logo.png IP95.100.154.186:443 ASN#20940 Akamai International B.V.
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
Hasha74329a2054a9e096a43ba8742dd9523 4ccac3041bf854721b91dcb45286b8488dd9f072 cde9945e91f0e51058869d687cd24c8f58804f25623999f1291c71b3697093b6
GET /act/a20180515iggamepc/logo.png HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
etag: "5ff6baa2-3bf2"
last-modified: Mon, 08 May 2023 08:25:46 GMT
server: Akamai Image Manager
content-length: 6055
content-type: image/avif
cache-control: private, no-transform, max-age=43200
expires: Wed, 17 Apr 2024 16:55:07 GMT
date: Wed, 17 Apr 2024 04:55:07 GMT
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/css/style.css | 188.114.96.1 | 200 OK | 8.3 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/css/style.css IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeassembler source, ASCII text Hash3391f5ba4029e8e0274e54379f2a25a8 4cc27aa15e7a2b78ea7f2847dd7820f579bd5698 7cb20747d9704facd91254d2dae77e5ff587c8654aa05172465e8379999f0751
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/style.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-a865"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yp8aER37sGERGZPCQ0O330HGdoqMn0Nt9RfTd8ciUSXFDwcx9ciAigsqxq7TT1Tr00cGpfP3lnI459xOLRh2mRWpCkzlyI3QJzD%2FHkhN2QZgl4xk4tH0ToW%2BpCSG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c5f498f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/css/facebook.css | 188.114.97.1 | 200 OK | 1.3 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/css/facebook.css IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashb66c33cab73a96ec821dd6e64f44b0b5 411fe1cdad302201a2b29522a8ea501ef3769a36 a725aaa81ee06de69e93fa569aed938803a8ddc6142182bac4292821da63a194
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/facebook.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-1323"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=82xNQgovdp8uGbMq7fmzp8ipOgLx14uz14oPh25qd3RzxqRviv04ymE4PWqxQn1h4%2FyJ5RGQf73Y22UZxL7k7Zuy8lfjQ07Fb7so6ZjzPAeTDzm48l9YgAP9tL1E"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c8d1392ce-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/css/animate.css | 188.114.97.1 | 200 OK | 6.3 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/css/animate.css IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hash8eae1a9cfafdc593321d4d59ec4905ea 232f5f3f4c3a0a56823e0e933f9c7fec3aa9cbcc e89c81987c5cbc157097eaa6657d6a594abf030cc89bb63f0d2154d8383e9fab
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/animate.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-13052"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nUngZ0kdANIjP4WK4tKBTGMRLYu2Pdn%2Fpy1R5TnkRWWTOzUEUmILB9BlpS%2FZgRIb1bzHSvKBdQlG4VaxyKEqN4bA47FrZSWuvKcSAERMFaYyOTQhq8FLYjBzj4uH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c8ee592bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/css/international-telephone-input.css | 188.114.97.1 | 200 OK | 3.2 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/css/international-telephone-input.css IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashdd36d1305a152a1330bab1c1432c2b7c 05b97bbc0f2ef12c046b6711cd59055a2ee5fccc 6e21af7a22e5df4f655fa64ec254b07cb0aa724209b70bba04161a822eff2b3d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/international-telephone-input.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-4e43"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G7pqDEiOaJer595wCWAfK1b8G5MFpg19177r8DDNztUpaVcbJR%2BDLRbznBM%2Fm0hVBRq389o7KJCszHVCA9eWtpcQwooQOBMJPvkDdPgmMcSB7Vm98ztu3kln3trG"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c8bac9307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/css/twitter.css | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/css/twitter.css IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashc245b0287c4c449e038f90647c66a2ba 178b16edf03fd0818ebfba454f397f1ffa12c524 9243883be5518a6cfb57d35274f7486f61369291eb4a6884c2b513494b118cdc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/css/twitter.css HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-167b"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W73ijxyGxKHjhDgrPvgViXzSJPq7Y4MlFuv5dXyzpCLOkhQDug22%2Fc4pLJcrwJyW11OpkcPdon6SI3%2BDe%2BPkLHGfnnnVbimjunRl5KDw36AZn2lrjJeP6Hzbyevt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22c88c9abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js | 142.250.147.95 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js IP142.250.147.95:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32180) Hash32015dd42e9582a80a84736f5d9a44d7 41b4bfbaa96be6d1440db6e78004ade1c134e276 8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 14 Apr 2024 23:46:38 GMT
expires: Mon, 14 Apr 2025 23:46:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 191309
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js | 142.250.147.95 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js IP142.250.147.95:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeJavaScript source, ASCII text, with very long lines (32061) Hashe40ec2161fe7993196f23c8a07346306 afb90752e0a90c24b7f724faca86c5f3d15d1178 874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 20:28:31 GMT
expires: Fri, 11 Apr 2025 20:28:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 462396
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/js/slidernotif.js | 188.114.97.1 | 200 OK | 248 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/slidernotif.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hash03f6029516392f1ce262df03393de901 d88548c8d6c92e84646efe7e605f73cac7ca136c 7f0e1993cf5d96d6068606888b26fa168840e8028395c818db1ab4c584eb8775
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/slidernotif.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: W/"660eae7c-195"
Expires: Wed, 17 Apr 2024 08:37:17 GMT
Cache-Control: max-age=43200
CF-Cache-Status: HIT
Age: 29870
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xZ3mQl8r7yqXVMCBLnKT2%2FtwrpRoPbOIqTbDz00ptBcMWc%2BrfeNm1iICmnp0pDBZJ3CR%2BRCaxQsfzFo%2F%2Bt%2ByqlBB99o8rWAGBniUIZfQpSPJlt2NluIWB7AW9zjO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d22e7af9abe4-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/international-telephone-input.js | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/international-telephone-input.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/international-telephone-input.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nehA6xJGRg9tFZ5cSMH6NSyJx%2BYWF7VjxGE3SK0G3YTViJ9Hv4%2BaCpf2HJ1GBktyySBCNkmkwFc6vjC5u7nnO%2BSwkZBIrkMnbMJoRmgoZdkebVcD2IWr%2FjotixSI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d22ccf2592a4-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| i.ibb.co/pZDr8sd/Twitter-Hide-Password.png |  162.19.58.160 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/pZDr8sd/Twitter-Hide-Password.png IP162.19.58.160:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash8d1f08b46884df302bf7300fc234832c 5735d57b6fa211c400d439095d5ff2f5bb57e691 e4cff1f68b85c3343554090b3479273a54e5eed2dbb3e56ceb9f86c4ebe8b0e7
GET /pZDr8sd/Twitter-Hide-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: image/png
content-length: 28029
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/js/kinnonswiper.js | 188.114.96.1 | 200 OK | 1.8 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/js/kinnonswiper.js IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with very long lines (665) Hashb158c7f86309b4bb9ffe0b213ce780c5 fc9a4354e5a4a2d301b7cb543cc58925611058bc 60f4309bcba7b8bb48b751064776d076370356e4acb9f92d8efa8cfb13e8bf91
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/kinnonswiper.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-134d"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rl9siFEAJuX8DmZSnGVH6z8AkllBPoWhPpz2z8pdKUEUu9oG2RQb0k0hwDNAinbP9mp6kni0d2MezNgc2jprbs4Dv0Jia2amO5AMiFGnxPGPcposvf%2B8AmLlOu5H"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22e49078f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| i.ibb.co/PYpHF6b/Twitter-Show-Password.png | 162.19.58.160 | 200 OK | 28 kB |
URL GET HTTP/2i.ibb.co/PYpHF6b/Twitter-Show-Password.png IP162.19.58.160:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerLet's Encrypt Subjectibb.co Fingerprint47:33:B4:39:55:FC:BC:18:08:79:9C:6C:9D:F3:CF:3A:89:C4:99:62 ValidityWed, 07 Feb 2024 12:41:56 GMT - Tue, 07 May 2024 12:41:55 GMT
File typePNG image data, 656 x 656, 8-bit/color RGBA, non-interlaced Hash2fd203703821d5ce5d18bee2a51b779a a78d7b1369ce8bc34de57909af142043cae446f0 6b82611fa96f118128b0db9692dd982ca0fe79b1b4d8048946880600cc4f97c8
GET /PYpHF6b/Twitter-Show-Password.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: image/png
content-length: 28355
last-modified: Tue, 17 Jan 2023 04:04:57 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/js/script.js | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/js/script.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text Hash14182709af442a9b28afbc7cae7fae6b b997aafc4b04a03115fd65f073b82dc5c101d8f0 e890b7b6e63eb1c1636f3e97d0d76f669437ba5ae08c301d645d481db3edadf5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/script.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-2420"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IOFu%2BS7JWjlUvWGJKIs6AxNkjq3qKLOLk28HaGaXdLV9%2F%2FXZaaJn9NwrwtfbKYTnCzm734gofcyz3HIeo98SgM6HbBx0igwHHTntfJD4VUMt0Rj6nWSdc0rLNevN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22e787092bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/kinnonscript.js | 188.114.97.1 | 200 OK | 1.9 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/js/kinnonscript.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with very long lines (5316) Hash105533e2bc7112e47f388ad5f0b343e3 a8be0e27838f342f0e015aec95d53b149b1702b9 a736a25838cc2911f49b5258a3dd0a29a834f82b4ba7ec4e80417fa1638cea7a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/kinnonscript.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-14d6"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nlIllDqDUlrzwN5R5VQnhfCrtCXrhO30m2ScANVOzB7V6MjSfTlO8ZHiKG8MOM%2B8snGG4AmXDE3H7iBuiXdfVbo1n5QffERdK%2BMBkdcnLDzg3eyQxcCXgjQwW8Or"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22e7ee392ce-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/scriptv2.js | 188.114.97.1 | 200 OK | 478 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/scriptv2.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text Hashfc1f68cc588b08f8f0727d54d9dac3eb 1a315cb5b13ab16fbd3f8e18666405300f0e11ea ae71e6cb3213a764989f2f73969982b23b7551df5721a3abac7ca4956b3dca0a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/scriptv2.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-492"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AK%2FPgtoFlxgZ%2FLfEh%2BBua1tVKlY1CuQhtYwDcrrT84tzpT%2Bsc7IWf%2Bc4sYS5sCVLB2tESZw6ffoy5PDxTDwN6RbRYNMt%2BxU5%2FGYCZe%2BORQf9k0mug7RjNO%2FM0pZM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22e7dc29307-CPH
alt-svc: h2=":443"; ma=60
|
|
| fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 IP216.58.207.227:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15044, version 1.0 Hash4806226b885b3b3d0ae52142f6bfb3af 2ea5cc6d5e4adb874989a2b74bda062296fb1ad3 714088bef569d6981bfae79530ef315f4d6505f302a944ce9063601919977e6f
GET /s/teko/v20/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gift-5.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 15 Apr 2024 20:39:40 GMT
expires: Tue, 15 Apr 2025 20:39:40 GMT
cache-control: public, max-age=31536000
age: 116127
last-modified: Thu, 24 Aug 2023 21:55:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/js/international-telephone-input.js | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/international-telephone-input.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/international-telephone-input.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fv5C7JeE7VYNQOw5ZCST1EB6XsvyOEkqwJ6CO5Q1OjcSJoCUKTxg0dgptnousQtpTGvcuvtWlLmvgy8YFIpw8uZ%2BLeXQr1rny6Rhq5gXau8T9noTTr4x%2FXdg5cSt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23068b592ce-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/sliders.js | 188.114.97.1 | 200 OK | 276 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/sliders.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeASCII text, with CRLF line terminators Hash6ed1a9c922d3f5e466c2137c34ab1bb1 dcd4c5a92671db9114baf3c0f25281ddfc6fd2c2 a490dc446aa73f827e330a2edc3392f0ada309507d38c0c2e6633bbfba039e72
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/sliders.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: W/"660eae7c-208"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oUB6q5ozwCc5hDxVtV2%2FPunkZdgUifS8nNtRLZo6HCiCw8YasirPZ9P6qgxC2dJAYSP1TJ7Xb1Wyicl3VlbpR%2BdMxFLR2QY8SEb0CsVFXEtxdJP24mQHEhjzaCi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d22ee8c092a4-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/showHide.js | 188.114.97.1 | 200 OK | 277 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/showHide.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeASCII text, with CRLF line terminators Hashd3e46c4a7d95270da519489746521b1a 5f5a383b6a1a635695e2c72aace79363708f82be 8023fc37af7de956061342860b38dd1646ce1f1fa7ecc2ce703e2b544b2bd283
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/showHide.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
Vary: Accept-Encoding
ETag: W/"660eae7c-433"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cZN3ZvtwFREpQscCyv5nrtLrcgIyoWnnry6Bicsymj1yW45IELgRhELw6F8quqJiYhuk%2BSUlFL9ctoYCzUL8Lkx38Wv%2BqMunXAeMJMX6c1154Gb6UVNm2dikc7dv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d22ecb30abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 | 104.17.25.14 | 200 OK | 110 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 IP104.17.25.14:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109808, version 772.1280 Size110 kB (109808 bytes) Hash005c9aa92b564b73b7582cc4f1fa49cb 373361ed756b1fe68ce2f5968d467826b6973bb5 faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gift-5.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 109808
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-1acf0"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2199930
expires: Mon, 07 Apr 2025 04:55:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q895oliO6LyzTji4hQZco4hMP9sfNulTwWSC435C96%2B47MmDzXFKOr%2BO3muvEWMI8uVCZUeXCiDnXGeT9JlYI9RTUUbUaoV1ZwdjAGNgm3wHMCA%2FQTOa8ZSDP3rBfxJx2sHoMvab"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759d2301f53abe7-CPH
alt-svc: h3=":443"; ma=86400
|
|
| gift-5.com/volt/gm/img/rewardsec/1.png | 188.114.97.1 | 200 OK | 23 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/1.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hash2b83141fe92df240e912a62792089890 cf783459290b916d0720d8b9653ff4786a6128c8 1e2682ea3c731f7e050b9895751a9e043d4dd60bc3937026a6529ca6fc680c07
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/1.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 22953
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-59a9"
Expires: Thu, 16 May 2024 11:29:19 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62748
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wbsnMrutp9D%2BTVlbP81CiLRVopwpgvga4Esz%2Fv3qJnRqzJWmzEe1bl5W57GUqhYn0bf9WhFbj%2Bwz2mfLgETiDjcSgg61LjV1SMs9BjSeGKx85v4tMFFTRlkEm8FD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d230da9092a4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/3.png | 188.114.97.1 | 200 OK | 27 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/3.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hash7ec35954e7a755273162aaf16e47abd4 f205636eab744dbcf68ac827dc8b3660d71a0768 ee6a23c5a8007bb94ac4e620586688696d3e2c0c5a4c1a039cd09dec700a3187
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/3.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 26993
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-6971"
Expires: Thu, 16 May 2024 11:29:18 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62749
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v9ntD%2Biz27jm4h%2B7Nk%2BMzFMzto0Nqb1JDsGnfQO6zaC48jGOJknelsbe8I4hlxk%2BK9rSw3ijsTd5GYweYdB4ucpUXz821g0uH%2BLpItBhsof0kZ0OfewRWttAjJ0B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d230dd5fabe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 | 104.17.25.14 | 200 OK | 150 kB |
URL GET HTTP/3cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 IP104.17.25.14:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /ajax/libs/font-awesome/6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://gift-5.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150020
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "64cac444-24a04"
last-modified: Wed, 02 Aug 2023 21:01:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1017275
expires: Mon, 07 Apr 2025 04:55:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IYcwdN9NM7%2FO6CkZIjhkJ7oYgPjR4cLvKtbGAj8pQcjoBcBzPdvrHjbXjgQM260pn3Sg%2F%2FZuwzI2DKEp8cRZL5gtaJICQrwDlw8C5z5OQXx2wsY8fcqCX2cxpm8JRSgg0WbPGRWk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8759d2301f56abe7-CPH
alt-svc: h3=":443"; ma=86400
|
|
| gift-5.com/volt/gm/js/timer.js | 188.114.96.1 | 200 OK | 224 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/timer.js IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with CRLF line terminators Hash891aceb513c31a7206d2f73633d1a737 0e05d9aada1df33ce204d353551c46872b68a4ce c842923634e0cd87fece55a0d3e4c875a87d8e3a25b1eccb1198e33a66b6558f
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/timer.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: W/"660eae7c-29c"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UvXKuWrYnTGUFg8UTTem7JYRkEmzvdFGaZjAmjYLvj5%2FnBIapYywAuM%2FD5alpagO1QFvzsJuFqK4taA8UkcAQ1YaYhpwdobBW9elmrKWLmBBOjkiviVDpjMr1O3Z"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d22f5aa28f61-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/7.png | 188.114.96.1 | 200 OK | 23 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/7.png IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hash97199f21e0cd1c6538ebc67227bb51ee 068283996bd653641202f3e56bc7fedd24ba612f 70070e7e6e66340db92f775e7c2a7cf1f4d99c96bcbb59f541a02781a8db2bba
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/7.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 22655
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-587f"
Expires: Thu, 16 May 2024 11:29:17 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62749
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m344FNKH3oZld01eHAWG9b2D%2B8RnAdnd6UsaWjHZ1Yy8yaDhXFCzN2gSMbsz%2Bv8iJ74UZHea1g7pz%2F4tnfLgGvXy7TCojOBEK0NwfccJPe4nQ7jkBb%2BnZ2zJ43vl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2314c538f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/9.png | 188.114.97.1 | 200 OK | 239 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/9.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced Size239 kB (239289 bytes) Hash1968070e0f4e0495c60951816bfa9872 32ffefd3e4b6d6a85841c6fd01dd64bbd2d58b19 d9e8ac2810b7db687ea1e4c3fd9f92c551b8c5b778f6b31f5d9c0a897d90a356
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/9.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 239289
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-3a6b9"
Expires: Thu, 16 May 2024 11:29:18 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62749
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8BfWCH4T73JCKqYoJYh1SYYkKYj3YmSYOLq5XpF91fnZhekWPHbxHgKVKy8YRTj3cFpOG14c1iZMu71luOmLLU9tKlOJSSsWJWohXpWXECgXgMQtNtP9KhS5wpwH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2312daeabe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/mt.png | 188.114.97.1 | 200 OK | 17 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/mt.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hashee77c0453cec480b645b22999365ae11 eb3f970366ec00b90426b4cafd90fb53c7aeaf1f 3e8e94b3803658fc997298899ccafcf6cbdcc028ebbe50a954442ab52da28418
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/mt.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 17314
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-43a2"
Expires: Wed, 15 May 2024 20:43:23 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 115904
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gWIR%2FL0lXGJDBpuicD7QqJSUoPULLExKO50X4XMJPm8sFVw5UUa6usHXcez9RRQ2RitfIUAY1oBnIkObsMm5cAvxUOvd1jfKCRnzXmW1CD6Lyj5tdiwqATXiX9iU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d231de49abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/2.png | 188.114.96.1 | 200 OK | 182 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/2.png IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced Size182 kB (181505 bytes) Hash557b0177fc49799efd837c8eea9a5d1a 86737fdc1eac76f4e9be77d0c7023f9c45218e6c e9b29f186a0e02ca17f2ebaadc369f1581be1e74ff8a3799f12daf63c5252297
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/2.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 181505
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-2c501"
Expires: Thu, 16 May 2024 11:29:17 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62750
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k9ItoP%2B%2FV0pUBx05WFj%2FCBgxpceB8MKWJbeGrlwSkP4EDjNAClhzOWUBm%2BxEjmRCKzajwHri%2FbSPz825v96LDdMTDTfmTKLx4bgEmAgOGtJyz02bzKtfSrbr0Uqf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2318c918f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/6.png | 188.114.96.1 | 200 OK | 42 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/6.png IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hashd76ff4640171355fbb4325889bdc5656 4fd11a6e16dccdecf854078c2ddcd90bfebecf19 e3a84a62439ac9c167de5da44dbd9340279b08d34070271e15d09c08214db121
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/6.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 42391
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-a597"
Expires: Thu, 16 May 2024 11:29:17 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62750
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=leuq5ToIeMQ%2BEojWQqh4BPnfl%2BeasySe9Qohyp5SCQVPnnTTjXsxSbvDcXa%2BEpNYqIRI9rRupulNvE5GTytuxSjbiN%2BiW6KQbJnqcV2gxslvm%2BJFUcE8ofMHg331"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2321d278f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/js/click.js | 188.114.97.1 | 200 OK | 119 B |
URL GET HTTP/1.1gift-5.com/volt/gm/js/click.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hash2a1537badc55c1bf1153edfaea57e7fc 93a24d14cc366582ba549e4dee888a360ddf8e91 fb3ce123bf2b6f26db9db85bf757e316316f984d46a8571e7f4dc7d9179450e5
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/js/click.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: W/"660eae7c-90"
Expires: Wed, 17 Apr 2024 16:55:07 GMT
Cache-Control: max-age=43200
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OBxivANUrH9bUHj%2BI04GtkvlvjIxN46QAycex%2BUSgO3cHHHjBtO%2Bojh9Ugu9GtOoMyTFgtliXu4gnSxEOH0sN%2FAgVxrQHfdPNQInqK6by0MnFbTlSSFs9xE5b8Yx"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2306a1992bb-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/Empirez.ttf | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/Empirez.ttf IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/Empirez.ttf HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iR9DahlaL%2FQO7K%2BQfFP2GT%2FTwFH9Wwovrl7CWkGJTAgnnob9aaB32JKOfvuwwbyt4Onk4z0LGWqdI00U3HFo4gNpOgEZeoHLOsFRNnyGmTAzBAOhfoShgxKPdEm6"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2306f599307-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/hexbox.png | 188.114.97.1 | 200 OK | 26 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/hexbox.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hash395dcf575557cfc848423cab5c723ff1 b48230c183a6f8e5453da54137bf5c3da47a2b36 347b3acb1243132fd65f51a542991c7a2a77229d6b12444db724a361eb394b90
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/hexbox.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 25590
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-63f6"
Expires: Thu, 16 May 2024 08:22:22 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 73965
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KRvgATQx%2FpeajQTLcjdQ9A0oi90i38HJKd5w9s7UfU19pbTuMDgFFA61LMA5h83bDZ6hNXKIhiIS5h%2BhI%2FnV1UNRvPg0DYRPHRsWBcSLmDt1TIKHMhy5EBkfx801"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d232592c9307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/bg-sec1.jpg | 188.114.96.1 | 200 OK | 100 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/bg-sec1.jpg IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 858x1280, components 3 Hash90a56879a7845daa138a03e79c226bba ec77f62dcd2118011972f5e6194f6cd7f6990c8f 1d19c4a4825d72ee13e68ba5a648e0111a8c7b80a6509ab66ac2b52b3f9f12db
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/bg-sec1.jpg HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/jpeg
Content-Length: 99679
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-1855f"
Expires: Thu, 16 May 2024 08:22:22 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 73965
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nimsar69umddZEQSqDIeR6XqIBE5mFItiuLfk3govgdWwOw8a2%2FfsjNK7E5c6qTh6CDEa3mBJyp0cVbFQa4oXcIRQoKsDYTpdQUHNC9NGRdbP3U5SW%2BJafF1EcIv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2325d648f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.woff2 | 188.114.97.1 | 404 Not Found | 146 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.woff2 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.woff2 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DP5kM8jNtbFTeoH8YwJObb6oyR%2BJTgtWt7qoJN9TySp5uyGKmt9Qiz7NjYlUlctx6qmb7nzfmAy0ehc%2FYDTyxm6%2Fy8nEITKYEEPZpRXJCU1FfuxeJn0VfmV0%2BKQX"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d230b91892ce-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/yes_selow.png | 188.114.97.1 | 200 OK | 505 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/yes_selow.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 174 x 53, 4-bit colormap, non-interlaced Hashfa85666f76ee2a97bf648bc78f2b269c 1c7a70f86ff7831d8c4c610e7dffa6f05e64fa28 b9db0626fce5f8be2fa98d0154440624180c32c213e8293f1ab7e7f3e4ea6489
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/yes_selow.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/png
Content-Length: 505
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-1f9"
Expires: Thu, 16 May 2024 08:22:22 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 73965
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u7fggyb2rTWETE22mJcCRJudtiIWtAVrCpGtv7pqRayXPaU81ZpeGBpKEKxSTNNG3JxZ6zGQqwxdacikrK6UoauPubZrlzr77BmTXXqzT16nEbCotefYqX1SrfGk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23299589307-CPH
alt-svc: h2=":443"; ma=60
|
|
| fonts.googleapis.com/css2?family=Teko&display=swap | 142.250.74.106 | 200 OK | 56 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Teko&display=swap IP142.250.74.106:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typegzip compressed data, max compression Hashb37e923d75a699fa70f572b6cc9c1c34 228181555acfe6d0f976fc6efcda6b6b6eeb6f22 c0ee124d3538031312fa0211108fbfcef3a16a5efc684d35692ceffbc2e2cc26
GET /css2?family=Teko&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 04:55:07 GMT
date: Wed, 17 Apr 2024 04:55:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.97.1 | 302 Found | 0 B |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Length: 0
Connection: keep-alive
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3xgvpIWbWbBQppsDufT9bVt67P2EkoQacNByJF3Kr7R8OzJ0iKTe%2Bl65B5ZeBBKXO%2FcBT2BLOtQPbR2aKGTXDHtIEGwARs3d0IrhWZQs%2BWY1HjXRpqzwUK0az6cT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d232c9779307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.96.1 | 302 Found | 0 B |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Length: 0
Connection: keep-alive
cache-control: max-age=300, public
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V%2FPWk3vK7SdMdKiAhFpxR%2BWfPiOsuLMy%2F5096ynLtJ8Ueed%2BlAAeumM1a9YesRKEWqXb9OIq4Q8ajQloiW%2FDyCI9R%2Fq5MvVAoGsCbcCLfnXpbtsLCm2P4B5phLMZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d232ddf18f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 188.114.97.1 | 302 Found | 0 B |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Length: 0
Connection: keep-alive
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=my1ZRAcYjrJTgTltkI6UyL9txSoLyhetnhsZgf%2FO%2B5olBkHc2Bs0B61pYaViEdhEjsnGY7Bj%2F8sFi6YMY1VgsbrmNCJCOe6Agd571cT03VpkHu0wFUX9qVjuNQRj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23309939307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js | 188.114.96.1 | 200 OK | 3.9 kB |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with very long lines (7851), with no line terminators Hash8d2b4ecef02a388ed53600a33756459d c3b04cb052a3c9155475d6323479e321341558f6 a14c5b844efb36633e4ac72cb46071bbc2cfa0124f3ad858802cdaeb1474590c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=14400, public
vary: accept-encoding
x-content-type-options: nosniff
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SdV3hTtsD3MOjcjZPhZrgPZJ74aDryS1NTlWeC6QmtzAI9E0Ix8m4S11TQCFWB8HmhzPHYEAgBFgWbkYjD08dFlEo3cXRKPU0bH5JCmz0WpVGjgS9sdZ7WYs7n2a"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d2330e268f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js | 188.114.97.1 | 200 OK | 3.9 kB |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with very long lines (7878), with no line terminators Hash3e1625b93000e1fe8af1f30be9118d30 d48b715ff2a96101129ffd80e411043a8d7ebf19 37c864c157e867d4ebf735955ab611775fa5563ab679750b01531865d878a929
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
vary: accept-encoding
content-encoding: gzip
cache-control: max-age=14400, public
x-content-type-options: nosniff
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R%2FZi2AGZwjoHgL%2BBUqxsaVPkquI4KEqIAeEPd5GJWPQqvpt1eZjx7tzN%2BOiCxxWDeAX%2ByYqDPrDIWNxiZsdtMyjLYM1xM6QpURvf4qARx5NgCQ9dwFSaTAiZJIcM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d23339c39307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js | 188.114.96.1 | 200 OK | 3.9 kB |
URL GET HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJavaScript source, ASCII text, with very long lines (7830), with no line terminators Hash85a063a63b5fbc128fffd718b060f631 8b88e665132ef38fd7e7b8ebf3930bd5807ceefc 970864fd9a42a44c58ec60f521a5357961206e0e9c81182defab7eb4b1ece494
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/bcc5fb0a8815/main.js HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
vary: accept-encoding
x-content-type-options: nosniff
cache-control: max-age=14400, public
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1JyDoBTRj2DCwDb9mUPYQa3UU4oXuKwg0TzfiAw733hQF0tzdRrNvPwcqOAmm550btHxast3TeUiUJ32uFWFv7SH5LTEYd4vBMN8w9mmhe4WvyRPMlt0tytg%2FynC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d2334e488f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/Empirez.ttf | 188.114.96.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/Empirez.ttf IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/Empirez.ttf HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhhPkL0A%2FCNZgjYb9PdBOuvTjCitZqvVTn6MRN65blVnw7%2BjejUu4vLmaO6ZdXA5AhB1T067ONt1pCoN46he%2FXBHPX0%2BgK7soA9FMeZsUbAJfLgd7UbrF3u5PxQA"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2337e7e8f61-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/5.png | 188.114.97.1 | 200 OK | 24 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/5.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hashd55cb20eea71e40a6cfa9828e39cfa4e a7c2cfd6f56b0165440a5b7b2545857c43988bda a8b0bcc600868b94d56a6d3e6cd0d0ee3f1af954f2e3c8939d189c28b1b1eddc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/5.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 23802
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-5cfa"
Expires: Fri, 17 May 2024 04:55:07 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7IDY1N3WuEd0rYRNRw7AupOC0Ts9nrXwUf4sl8T5ZQUIUBPXZMldXGDXUKbRnK2vr2J7LudHFrOzIMxXGz03Tj4EoyJL3jtcg8p20830uLpxqQ9mspcg1OAJj%2BQe"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2311ad392a4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/boxsec.png | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/boxsec.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/boxsec.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8N%2FgX5zPLz%2FSE3lzozJOzgGAvXe0asS59%2B4OGAtlBmhllLlyyY7A2b%2F3l5uhs4ltxUefVQNEGOxGv5REEcQz93JEy411zPc04AHo9P7Z%2B5pG0a%2FS7%2BP%2BAxyO42iP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2325bfa92bb-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/media/kinnon-pindah.mp3 | 188.114.97.1 | 206 Partial Content | 9.0 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/media/kinnon-pindah.mp3 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 48 kHz, Monaural Hash46d794b8fcc24a09e9c43ee4bd88cbd0 ad48470fe3664b0e8802697e86d8b60bfe0fb73d 34fe11bdd5aa6a7295b2153d9124c96938439634ee236d77427ad00327fe7f62
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/media/kinnon-pindah.mp3 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: audio/mpeg
Content-Length: 8972
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-230c"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Content-Range: bytes 0-8971/8972
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vFSO6enjKpes3aERHTbEjWSaNdMFRNEXOxzzqF18RLef4FOn9vdzWG1JuAlK6%2BU%2FKV60IXqFQRFdlbsAOCUy2zeNGFo1KQJiHVH8cSs7LGS3jVsZ0M8MxBngLcYw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d232aaae92ce-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/media/kinnon-stop.mp3 | 188.114.96.1 | 206 Partial Content | 4.7 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/media/kinnon-stop.mp3 IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 64 kbps, 48 kHz, Stereo Hash45525354efd1ff7b26161f1781f6e911 b7e30b88a055e34142e32b197edf61affcca966e 6b17aa45e570e01cdb319f8176d37a2a3127974a658d7c0417d50265d67accf4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/media/kinnon-stop.mp3 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: audio/mpeg
Content-Length: 4676
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-1244"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Content-Range: bytes 0-4675/4676
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PB788zwOyypgJlxk48fzaMAAx1zkWT31O5nYakAXpgTaElvLX8fTH3Fw2ogq2TCIJXT9sVc4pik0Ln8Ngr3A1Fs%2BrJ1xP3uUYFDGB801zlrpWrfSmVxAMJ%2BxQL%2Bv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d233aec28f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/rewardsec/8.png | 188.114.97.1 | 200 OK | 37 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/rewardsec/8.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 400 x 400, 8-bit colormap, non-interlaced Hash47fec83fc73e565c54d692409fa4786a ca2c2bb12e1555c441785d59c9dd98702d455fbd d188c3744d372da844dde6539c967ebe6ab13cd8e99943805ef19cef74e73c90
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/rewardsec/8.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 37093
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-90e5"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MVcnF2obG0EL612%2BEGmDCPyNZpCDLpeiUMDinJmgWF7VJwG32bWVO6qgJk2agUBKz%2FDE9r6LPGIOp5wn2gkEKuJ%2Bl8spIaS7OjmInYhnfosyNwg8uP1HV3rd%2BjrM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2321e8dabe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/cdn-cgi/challenge-platform/h/b/jsd/r/8759d223af888f61 | 188.114.97.1 | 200 OK | 20 B |
URL POST HTTP/1.1gift-5.com/cdn-cgi/challenge-platform/h/b/jsd/r/8759d223af888f61 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typegzip compressed data, from Unix Hash7029066c27ac6f5ef18d660d5741979a 46c6643f07aa7f6bfe7118de926b86defc5087c4 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/8759d223af888f61 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
Content-Length: 11592
Origin: http://gift-5.com
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_clearance=.WAyNamMeLvYgguS.Yoj2fDZOsdmFFm_RfNlZzyz7Yg-1713329708-1.0.1.1-Ue.0N.Rf7rZG4EynnNAHOq7i2zEjHY8_qxCmWd7yb557DCz.nA12O5I07XL0jzgsn54zLzVAYSMiptHGc6pGBg; path=/; expires=Thu, 17-Apr-25 04:55:08 GMT; domain=.gift-5.com; HttpOnly; SameSite=None
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L95aEUuydl5oBIJmlD%2BLol6oj5wgYiKjefpoceIwHjM2RpRyOHQWdutSuPKUfrTLoXMSOBHkqApPTN3dLCDYyEKgFV5ccGAMWP69Y47X6xfioFauupBhcyFPMTSF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8759d2349c8192ce-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/logo.png | 188.114.97.1 | 200 OK | 30 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/logo.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 1074 x 800, 4-bit colormap, non-interlaced Hashcf84432855ca2aa08f50bb5a193cfbfc 92637e2a04468c595da786cd4e5a5c5f4168beb2 d79099f5013a2faabf716dc6ce2cde118040276b62aaea775c866d3f2c2b3ddd
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/logo.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 29843
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-7493"
Expires: Thu, 16 May 2024 20:53:01 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 28927
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=936qOb6ibGfEPnDOY%2BbMgavmYFm0qdXH4db723C7RK0wVF0abNQN%2FeFSkD5LQJYrFGkOFGErpDkW%2F1GbeH7OFERSh0UA7SOm80%2FY1BxMVKEoX3Y0HARkjJtHNGSk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d234d903abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.woff | 188.114.97.1 | 404 Not Found | 146 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.woff IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.woff HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=97MUPORImyTXkpetfZHR9HqmCNEOI%2BZq5bB5u9i7KQgYQ6TPHMuIOuIREJRVSopVxuGuqyC7N%2B%2FbRUUKCTzEHAsfa8WvyKPJM%2FSTNJeCLA34vu0ZEfePYyXAblIO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23369fd9307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/media/open.mp3 | 188.114.97.1 | 206 Partial Content | 13 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/media/open.mp3 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hash58418a30e1310bf4fafa9fa0e57c18d6 b477e72668b181c3080d6b921e2edf15ef134f17 d5ad34e8bb64fba432c1a12b24cd1e532104d0183045e73abaaec72aa824df1d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/media/open.mp3 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: audio/mpeg
Content-Length: 12675
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-3183"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Content-Range: bytes 0-12674/12675
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HOVc79Jxw3Lph4mA7ILqCCI7i6Fv%2F1VK4cqjBfzWjzh8p2eqBrkki8YsT%2FlwV%2F3ZErdGpfyUoPmTpcLfVGsjSQh0iE4NjijOlyGaQoapSOjWqaTR8QmOyWUcryup"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2344da592bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/media/kinnon-popup.mp3 | 188.114.97.1 | 404 Not Found | 146 B |
URL GET HTTP/1.1gift-5.com/volt/gm/media/kinnon-popup.mp3 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/media/kinnon-popup.mp3 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=beiU2rVhhPeKXfKYZVOlYyu6XGi%2BlCsQufyMs1W9X%2F7ArTNRZXdpTU7V5QwMnMz%2B4sOwd2o2o9PqcWydpL%2BgWvKNDtoA3%2BcQlbHk4Vc83SVy1pVC84BhQ2RRSgm8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d233cd5092a4-CPH
alt-svc: h2=":443"; ma=60
|
|
| www.pubgmobile.com/en/images/nav_menu.svg | 95.100.154.186 | 200 OK | 426 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_menu.svg IP95.100.154.186:443 ASN#20940 Akamai International B.V.
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha1f09c4f5c87271dbccf8cb05885ad42 18bbacc9c372dcb6bc77c2475595e058c1ad1594 b0d849e0e910d13bcdab1e94f5c799dda1a9429c908e18069f9dc7f7d551d58a
GET /en/images/nav_menu.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-374"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 17 Apr 2024 04:55:08 GMT
content-length: 426
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_language.svg | 95.100.154.186 | 200 OK | 675 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_language.svg IP95.100.154.186:443 ASN#20940 Akamai International B.V.
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashd8ba211bb1be1a15bf5b0143ca1b009a 215203609a551dcaccf6e434508623f302635f86 a441182568ad88fa9c54384de94a77f64148d3d54df66ea1beff4a11100967c6
GET /en/images/nav_language.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-45b"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 17 Apr 2024 04:55:08 GMT
content-length: 675
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_shop.svg | 95.100.154.186 | 200 OK | 526 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_shop.svg IP95.100.154.186:443 ASN#20940 Akamai International B.V.
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash061f8e3121c0e545cb6277cbdba661e0 680a6ef2b0b5b9ae376ad927055e93e1efca2389 bad9e2db663bbdb4f80bdcb6ea144d69502f9d58bf6fcf19f17e365ffea0220f
GET /en/images/nav_shop.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:18 GMT
etag: "62387c82-3e1"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 17 Apr 2024 04:55:08 GMT
content-length: 526
X-Firefox-Spdy: h2
|
|
| www.pubgmobile.com/en/images/nav_download.svg | 95.100.154.186 | 200 OK | 485 B |
URL GET HTTP/2www.pubgmobile.com/en/images/nav_download.svg IP95.100.154.186:443 ASN#20940 Akamai International B.V.
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerDigiCert Inc Subjectwetv.acc.qq.com Fingerprint5C:D9:77:1B:16:32:99:FE:C5:2E:BD:E3:86:D8:71:22:B0:1B:6A:3F ValidityMon, 30 Oct 2023 00:00:00 GMT - Wed, 30 Oct 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash41c1c00e6070b60d70177ae11625bb86 7f01626c76ce129247860802fd2355f2878fe8dd 0b22f25d8b7421c4c4aec15a9a4781f873545a5732ac128871da40f38c98f4cf
GET /en/images/nav_download.svg HTTP/1.1
Host: www.pubgmobile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/svg+xml
last-modified: Mon, 21 Mar 2022 13:24:17 GMT
etag: "62387c81-3ef"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 17 Apr 2024 04:55:08 GMT
content-length: 485
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/media/close.mp3 | 188.114.96.1 | 206 Partial Content | 13 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/media/close.mp3 IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeAudio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo Hash2056bdcfbd551273ee207f8c6ff9d257 6fe68c9917d3409710aee4147ada311093d33ba6 d7633fdf0d543880acc3fdaf578728d7becc1ff429ba054921d3313f73a5a4a7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/media/close.mp3 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: audio/mpeg
Content-Length: 12675
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-3183"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Content-Range: bytes 0-12674/12675
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ktp2czOxbmkgBfFB6uCJmGwXcebV2J22Pd8URjkPoUzMLjeaCehMOsLuOR5%2FOiTQogX5R1TNo0lSqKQdjDqzVWea0fB5Lwc3HiM7lXNj8pE%2FMk5aD%2B8n8R3o2ZGY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d234dfd18f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/icon-twitter.png | 188.114.97.1 | 200 OK | 775 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/icon-twitter.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 86 x 86, 8-bit colormap, non-interlaced Hasheb831e400b1f4c58afab87c690b6cbf6 0cf28ef4dc9287c3236bfdab7f09933779749c6a 3a35924c470064b59c9e785d07e6876690ee1177b73a0d169de6695313bd9dc8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/icon-twitter.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 775
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-307"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kh4RvUtCMks2F7dOz9KwcuquOkBjyD5E39Pgcjdq0%2FrJvH5CU%2BRxsEBnYl3Sw0PcTm65Y8yr6jgGxoMwrZJgf13smCVCG4e%2FeAMQnQ%2BX6ZHimF1fV%2BOg8MVlwC21"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2355b579307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/icon-facebook.png | 188.114.97.1 | 200 OK | 3.0 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/icon-facebook.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 1024 x 1024, 4-bit colormap, non-interlaced Hash3a060aee536fa81819122333f6f83f35 3267734a47be526dc3235d716e7d7c8a84300be8 4a1673430f37a8693e3ca8008dec7d08b617b2c8e2832231f5269e1d717bd74e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/icon-facebook.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 2962
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-b92"
Expires: Thu, 16 May 2024 11:29:21 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62747
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FkeliM8qNWfJkov376K0PuSsIes%2BLyKzvZy6mADTHKnkh%2B70hzFCqYF8oTa0nZTx4N1zZmxId5q8rlj9ql%2Fhj8aUfqmgSzaGojxvMs1d7Ip%2BzgnHyuxMC4IC8K4d"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2374cc29307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.ttf | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.ttf IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.ttf HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hic9YbSX7qA534n8HSkn5V6tih9bqU9fqhpuJedbHCsj0JSayegUIPgwZ8Wdu4BPRog5mLczXJKA4u3InDJ%2BbuPXMinCHlB34J1KtjnZc5qhdfr7kN3O982sbHt8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d235bf0b92a4-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/kinnon.png | 188.114.97.1 | 200 OK | 14 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/kinnon.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 1280 x 54, 8-bit colormap, non-interlaced Hash8ef7b962fb3277123f7cb8a82204cdc1 4afaa123a49fc86663585661753e315cf2940989 7c4c6d58827b20cf0d9b022bb1dd663a7c7e11ba779bc01f35a0b6a9297c1c5e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/kinnon.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 14358
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-3816"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3MqX6TzFja6tpXc0ncxAsRLEtE7qpJTWnsstbPpXABrbCjb1lm3%2FzQjO1n0aUu7IYAJOHlJyhv0VsliylLes8%2BCJcjQIPeF6AmB%2BlW0L77bU6RBIZwGU33qi7H0%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2351937abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.woff2 | 188.114.97.1 | 404 Not Found | 146 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.woff2 IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.woff2 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N7zft4bxqbhl5LbM8ApSyUFkpLmihQtLLe19zAWAVtcXGABKzWKrZxYCSj1XLH%2FsNRF5dtZScnxE0NSy1c4SJ6XTrC0y9nun7YURVBCd6JPfO56qFbTqYkpwDelp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d237db88abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/icon_2.jpg | 188.114.97.1 | 200 OK | 41 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/icon_2.jpg IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3 Hash267b63fbdd9bc92f7246dbce1e9bd055 27a18b8b0286595e4dc1a2f3086478c520b8400f eba1ed536697f30fa875b4b7be80d3c8ae8e698ab37e5dccbdb522b224d0b24e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/icon_2.jpg HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/jpeg
Content-Length: 41220
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-a104"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x68hYpvTTbJdy6XLH5yKHPTUbOM4SIMb%2FtoVwm2xVT%2BJs%2BdXWaod7s1QxgmqnLEU8lcGZ%2FaA9ZFD2LMhD5gQxRGIBLLDWeRH0LLHlLceZQu0rK5YNGeQ3kp%2FhOQO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2355eae92bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-1.png | 188.114.97.1 | 200 OK | 268 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-1.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 50 x 50, 8-bit colormap, non-interlaced Hashadbd18e84262ab084bd3df2dfd4bab1f 36977069dd06949eff7dde3aad14c4801e44d324 20b7d3871d1a6ad6187e20a6c5f8a27b347e0060bc016e882026a55d0b0cff60
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-1.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 268
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-10c"
Expires: Thu, 16 May 2024 20:53:01 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 28927
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uovD5VoGTEqrasaBwj6%2BMozJiIaFUpnbyEZ9miaPle1Oi5AvbABHQYGN2N%2FLIM%2B3UjowMhXEKFzSbqT1yxo0IOs3EvPojw%2Ff%2FXicQk0riCCrmF3KWeQCuyG%2BhUX%2F"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2380bbfabe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.woff | 188.114.97.1 | 404 Not Found | 146 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.woff IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.woff HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rhji4CBGhIQF%2Bm%2FG1GIh7To%2BsWVOjxXIhtLjMf7aWxXxxYCs0lFrju%2FrgXRZEfGd8xxuraJ%2BszFwPFsIPLSPo8e0V4tS37YviBuP%2BsNDsC%2B4SMI3pktZpwtM6p5t"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23828c092bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-2.png | 188.114.97.1 | 200 OK | 461 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-2.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 51 x 42, 8-bit colormap, non-interlaced Hashb5448202d3c938d562e54f56b17d0fca db8d27e773905767adcf0415e91626d3c43fbd31 85114b53d0a02d02821cf1a4995af771fa250e9e3f1db1084813b8488bf73be7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-2.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 461
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-1cd"
Expires: Thu, 16 May 2024 11:29:21 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62747
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yEuabY5w8RXx9lnUJ020sqENbDTbM1mpiEBxvtF3elp7Q7RIySY0wYRM9RHu2HZPeNMBVD5XtdeUBQ1n5HhpeNL1DA5lDSB8PYv9IpPY7yuMO3t%2F8z8fJ4goo6tO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2384bf6abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/icon_fb.png | 188.114.97.1 | 200 OK | 3.1 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/icon_fb.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 512 x 512, 4-bit colormap, non-interlaced Hashbedc806e16cbe3dbb90de1790adce6da 8e2efd0afe04a0d6b39c5f22ae8597a4704a5777 63e21af008d3e310fa4e9e8f14cd9585b31d0ecb359abdd4cd1a237c930a0856
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/icon_fb.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 3109
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-c25"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vjvBCK2j9uhhO2MZg3oXYqqSxrz9mR3sDhTzVEMfYPzrbRQQkCsuwvo18QZfU68xAwmHECWOQZwUe0B95ajsTZkCtuvpns9bjSEsVcWL0X0C51KCXFwVFXshRNc7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2377ce09307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-3.png | 188.114.97.1 | 200 OK | 374 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-3.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 52 x 37, 8-bit colormap, non-interlaced Hash2cab6a226c0a13d7135a52207c444300 1b25d6a6a67ae82e3e74fda39d72982e5a109e33 b6af1febcf285505241c3b539b152fe148e7a96a739ecf18a67825cd162cabb6
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-3.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 374
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-176"
Expires: Thu, 16 May 2024 20:53:01 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 28927
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DDz8PtvxSu19HIJeP%2B%2F%2FE4ozJ5fTJ856s3KBvDCw4eGz7WWjeQ9iIqz%2B2VlHNb%2Fwg%2BZJomHmmdMBZSN1%2B%2FC%2BAjf4jcJQYpC2dgnoLLnlEokuAAo3YbP97FdB2b3l"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23858f892bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/fonts/selow.ttf | 188.114.97.1 | 404 Not Found | 109 B |
URL GET HTTP/1.1gift-5.com/volt/gm/fonts/selow.ttf IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeHTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/fonts/selow.ttf HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/css/style.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DzGjE7%2BXoGou%2FL98ABEfnfBHrFiEf6qF1PdRLz5iGQnj1Gzs8xLbXYvqMq3p%2F0%2Bs2goQOxZu%2F8CYaCXcoiNO4Olwv11iPh4NP8iPUNJeQKl56HfkqhDD1rjhkGtM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2387c1aabe4-CPH
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-5.png | 188.114.97.1 | 200 OK | 392 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-5.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 51 x 51, 8-bit colormap, non-interlaced Hashae488386911b28a42846d0d9df6b8c58 54d1a2b9321c53634b9f45f64f2a1e224d78bc7b 567be788b1f03b45c11b75753e55aba755ca3091de71f34bb056e4c5ffc299dc
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-5.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 392
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-188"
Expires: Thu, 16 May 2024 20:53:01 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 28927
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DJR2NWLSdJtKG%2F1A4ZkcQN3r9SWp%2B5CXB0PAeOwg9RfHs6VdKadc%2FAIO874SSYMgoIin1BSbG16phovPj%2F2aKQXv%2FG9%2FIEmVESWIF6PV6ESLK8PnXi4%2FeVo0nc64"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d238892892bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/alert.png | 188.114.96.1 | 200 OK | 871 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/alert.png IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 86 x 86, 8-bit colormap, non-interlaced Hash3ae2ab14f816f70670daba25e0b82cdd f2a63c03d3befff14be0feaf93edfd2716f0434f 5d9386d7006ab89c1642a58d566cef421200af743b6dd1a62d41d01a1cee53cb
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/alert.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 871
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-367"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RHtuRiNjokddx72ClFHIA6XqIIPinEq2CvpZTMzeMlISOk%2BlR1E2c8VNYHQDJVAj9YoO73v4CAGTC76glpbsLK5BSj53YWUcNDc5CqrtXSa4xR2jHMUof6djxTxJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d236d9748f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-6.png | 188.114.97.1 | 200 OK | 1.3 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-6.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 184 x 140, 8-bit colormap, non-interlaced Hash1700e2a7e8f71b522591ba0c621c0d59 6d15ce633979efdc98c0bd756626a1b5453dff7b dcf3f1273924bc3c6ee68ede1ebf3da0b49163fa60742b7c4045cd298a3596a4
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-6.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 1335
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-537"
Expires: Thu, 16 May 2024 20:37:17 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 29871
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LsdPWKH3v458WQSWQIi7WlQ3VfhULZU704jIUngIbHJYThkdnLkERYK7R2%2BwSSTlPgDtK2%2Fg%2FR%2BZ7Ujs%2FgdtDaxxWMVlZI512ieyKsIHANwhEtNV6iRPCTFQ2Rmd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d238bc4eabe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer.png | 188.114.97.1 | 200 OK | 10 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 1280 x 189, 4-bit colormap, non-interlaced Hashc82a2540ff04df8b7a0fe7ef0cf662c1 3616d40f3b934277c6dc2066a45dbfda956fdaea 99fe23d0cc25ec3726a6a6beab09fce07ca82f1684f7d4b1dbf38a8df71f9471
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 10189
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-27cd"
Expires: Thu, 16 May 2024 20:53:01 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 28927
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O9LFRBgdbQsZyXhFLb%2FlLiZto8A%2F0d8S1ZT9Cvo6Rpq4Gx2ylMjZGMv%2BzUyvSyYPlquTUIOsHYss1nQbRUMthqaOFsJbBxzHmbEo26zkI7ud5F3WyypdB1KsV0dq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d238c95292bb-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/seclink-close.png | 188.114.96.1 | 200 OK | 357 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/seclink-close.png IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 30 x 31, 8-bit colormap, non-interlaced Hash85c830305588a8cd531e58c596955d65 b3eae37151b64511e4c5cd789cfb1e1d439f2230 7cb061cba6e394d6f912df727082955923843a2a67a4efe59a359edce4e4a5a7
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/seclink-close.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 357
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-165"
Expires: Thu, 16 May 2024 11:29:22 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 62746
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J07fibL3hAl88giMc9L%2B%2FPH2eBPIOIhC5VftsI%2Fdvvc65kZR6FvoH%2BSwY8JCJs5s%2Fb3S9LdlkIwabS08wHtuNTwEBdiO4MXkJfhOF48gXsulpPo1M6waQSW7HQ1V"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d238cafb8f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/event-title.png | 188.114.97.1 | 200 OK | 102 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/event-title.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 1280 x 220, 8-bit colormap, non-interlaced Size102 kB (102326 bytes) Hashe8137ea162f826eb5207f9a43396bb01 d1380e47c633ebf49c32ce478da2a7ef93183eb7 9e92f9ab466c1cbd4d9787eeda59895e1172eff1e8bfb2073f21ca211220a7d3
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/event-title.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:08 GMT
Content-Type: image/png
Content-Length: 102326
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-18fb6"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A32GHKkuJ6Qzj9s6wGE8XPo7tR5vaQI8m4b9NxZF4q2rTP0PI3LsRzpMOf23WMk6EhnsN0RZbWJJCfEd2yPaq%2BsQx4QbKzTkU8ntw%2B7QGTMQ%2BI%2BD2FoM2zl7oe4j"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d234dceb92ce-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/loading.png | 188.114.97.1 | 200 OK | 901 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/loading.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 88 x 88, 8-bit colormap, non-interlaced Hash54084688530b12e0acdec18cb35845a4 e5bc353194a01156a7a37f93678717bfbb48f329 0a24af65e56d3addb0d465364d716b7a545f45ce39c65108b68bff76cf556331
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/loading.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:09 GMT
Content-Type: image/png
Content-Length: 901
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-385"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yuMJWQJ5m6zXhq9jkuw2PEeyJWJBxGHqPmNsmJKQ5M6vNQf5a4R0eXKmhHdpcSEgwcsi3Dx8o3XqJZlP3WLKha4RLnM79HLv4WQNzql98YmAgtbNDpL3anO6YzJ8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d237b8c692a4-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/footer-socmed-4.png | 188.114.97.1 | 200 OK | 450 B |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/footer-socmed-4.png IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typePNG image data, 50 x 50, 8-bit colormap, non-interlaced Hash50e84b21b03baad8e7c331bbc41a3989 3007786bca7260f59f4b89371c60dee440930aa0 e9b6b6f470a5ad6c59e1b418d41c539f2aa905ebda9e6ddf3b42bafc0e244474
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/footer-socmed-4.png HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:09 GMT
Content-Type: image/png
Content-Length: 450
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-1c2"
Expires: Fri, 17 May 2024 04:55:09 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CMcy2W5imHDugpZ6YJnxXCqGNz3SG8ogybcIhUvdHP1FcWfv%2FameR%2Bg4shV9IJJkWdVId637zkuYeNK73IRAEC2EwfmETwKXmuzew8E5jVRI%2BzQElIxQrILx85TI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2388d9f9307-CPH
alt-svc: h2=":443"; ma=60
|
|
| gift-5.com/volt/gm/img/st/icon_2.jpg | 188.114.97.1 | 200 OK | 41 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/st/icon_2.jpg IP188.114.97.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 554x554, components 3 Hash267b63fbdd9bc92f7246dbce1e9bd055 27a18b8b0286595e4dc1a2f3086478c520b8400f eba1ed536697f30fa875b4b7be80d3c8ae8e698ab37e5dccbdb522b224d0b24e
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/st/icon_2.jpg HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:09 GMT
Content-Type: image/jpeg
Content-Length: 41220
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-a104"
Expires: Fri, 17 May 2024 04:55:08 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 1
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jZhmZ%2F2NlPYi%2F84IdFxtFN%2FfbewjwH8FvpfwXb99pqVr6gUoGDR3ea5aRoAI29gmggDRsfVgsiJL29ljQhvEfwoUk6bdhRVVn2HIjj7GGFnoJ6qNJczFX5Qc0daj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d23a7e10abe4-CPH
alt-svc: h2=":443"; ma=60
|
|
| stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 31 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (30837) Hash269550530cc127b6aa5a35925a7de6ce 512c7d79033e3028a9be61b540cf1a6870c896f8 799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 17 Apr 2024 04:55:07 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9e01696f4dd85a48838a9ea9ee82ef4a
cdn-cache: HIT
cf-cache-status: HIT
age: 1248217
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8759d22d2eefbe60-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm/img/namlogin.jpg | 188.114.96.1 | 200 OK | 56 kB |
URL GET HTTP/1.1gift-5.com/volt/gm/img/namlogin.jpg IP188.114.96.1:80
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x576, components 3 Hashd59618f7a077da240805debf4bc44b58 c16918282f5e387619a7a906deb98d34a41adaee a1eca54f62bb10fb78ca7dc96aae9dbdbdbebe977c8f79f6fa7c14707fa8fda8
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm/img/namlogin.jpg HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/volt/gm/?nox=5008844905
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 04:55:07 GMT
Content-Type: image/jpeg
Content-Length: 55546
Connection: keep-alive
Last-Modified: Thu, 04 Apr 2024 13:43:24 GMT
ETag: "660eae7c-d8fa"
Expires: Thu, 16 May 2024 08:22:22 GMT
Cache-Control: max-age=2592000
CF-Cache-Status: HIT
Age: 73965
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Tacoo5SSqd1lhsMEbuNc2JUNxmarva5C%2B%2BO%2BTKPHeEncTG03LNvTf4IViX3MWIFYGJ5rO0PPdNeYvi%2By7oLN516Shq8XMtm7f%2BRZgnenihhYLJ7bgOybWxtQKMbf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8759d2329da28f61-CPH
alt-svc: h2=":443"; ma=60
|
|
| | 104.25.234.53 | 301 Moved Permanently | 79 kB |
URL User Request GET HTTP/2IP104.25.234.53:443
CertificateIssuerGoogle Trust Services LLC Subjectis.gd Fingerprint07:55:40:B9:B9:73:9E:7E:B3:EB:D2:D2:64:32:2F:46:65:CB:FE:50 ValidityMon, 11 Mar 2024 02:39:59 GMT - Sun, 09 Jun 2024 02:39:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Tencent | | PhishTank | phishing | Other |
GET /dUUJrX HTTP/1.1
Host: is.gd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 17 Apr 2024 04:55:05 GMT
content-type: text/html; charset=UTF-8
location: https://gift-5.com/volt/gm?nox=5008844905
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=ZaYzA40sFjFMzymJLOG0XFBa3.YIPxtkZZZItvz4Zxs-1713329705-1.0.1.1-xV.HkzxiXnLY4nICAgluQF68RbZc.xU5UJSwlYZNpfhiq9P.RbHldEbmQVBHXH0YKS9IkpdVw7McOep8hMbVuw; path=/; expires=Wed, 17-Apr-24 05:25:05 GMT; domain=.is.gd; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 8759d220291360db-LHR
X-Firefox-Spdy: h2
|
|
| gift-5.com/volt/gm?nox=5008844905 | 188.114.97.1 | 301 Moved Permanently | 79 kB |
URL User Request GET HTTP/2gift-5.com/volt/gm?nox=5008844905 IP188.114.97.1:443
CertificateIssuerGoogle Trust Services LLC Subjectgift-5.com Fingerprint4C:69:6D:04:43:4A:06:41:B3:79:77:1A:46:2A:C6:D5:81:8D:BB:7C ValidityFri, 23 Feb 2024 12:45:23 GMT - Thu, 23 May 2024 12:45:22 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /volt/gm?nox=5008844905 HTTP/1.1
Host: gift-5.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 17 Apr 2024 04:55:05 GMT
content-type: text/html
location: http://gift-5.com/volt/gm/?nox=5008844905
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uw1Wo3b0eyNkH97BMQVIbC%2F2ffrHd5Pj3JaT%2BuiLpIf7lJg%2FS6UOtwYukVRiGI0OQHWH6RyKSUex5qSXM27DF6WbvmeU7wPc9yavFZL0wsgXazo3SXhkj3R0%2BVAB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8759d2218f7cbe5b-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700|Teko:300,400,500 IP142.250.74.106:443
Requested byhttp://gift-5.com/volt/gm/?nox=5008844905 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash807349734f3707b50b73c3fd626526e8 2f3ab67f0ffa01bc1f0c180cae9085ecc8d96d63 ce7d7e11e41b1b3619cbdf436bbf2557fda2d97d434e65fab281207ffae5c0d0
GET /css?family=Roboto:300,400,500,700|Teko:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://gift-5.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 17 Apr 2024 04:55:07 GMT
date: Wed, 17 Apr 2024 04:55:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|