| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js |  104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221737
expires: Sat, 28 Mar 2026 11:55:02 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hWlR8W3lK60vMmm0butsQn%2B7eHCWZ9vPpZ7cevU0Z2fjo7ej6laKJea1hNytohnvmMroS4qzw6jYA69wV3OjQMIZP%2FLouNe6ZG%2BbPbLRiUdpBQBF36ZEgC%2FrQjlyttRZWKE2hgm8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c9556c0e0156cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/105394074/ | 104.21.27.52 | 200 OK | 20 kB |
URL User Request GET steamgifts.cfd/105394074/ IP104.21.27.52:443
CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with very long lines (18863) Hash28587aa1c4d45ad9e351d9627198a7f8 15603b7db75ddc6df8ce5dc39b90929da90b20ea f9541ebd11ec03e291abd701f3633a4c798e49e7ca4ab03534840c169864c714
| Analyzer | Verdict | Alert |
|---|
| OpenPhish | phishing | Steam | | Quad9 DNS | malicious | Sinkholed |
GET /105394074/ HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
cf-cache-status: DYNAMIC
origin-agent-cluster: ?1
referrer-policy: no-referrer
server: cloudflare
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-encoding: br
set-cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; SameSite=Lax; Path=/; Expires=Mon, 07 Apr 2025 15:54:57 GMT
token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; SameSite=Lax; Path=/; Expires=Mon, 07 Apr 2025 15:54:57 GMT
cf-ray: 92c955495f6b5685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/f157423a4085bb28dddb0e6d2937fb52d341c7aecd12.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/f157423a4085bb28dddb0e6d2937fb52d341c7aecd12.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/f157423a4085bb28dddb0e6d2937fb52d341c7aecd12.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8JgWEEj8866i3FcaRSJzGhGOVbM0tZFCJ31TTEyzFDedVej3tLSoUmUHCsq2jyuWyqE56JsT0jeadah7sbDA%2BCTfMRFF0nIuaY4WMy22gkcVwg0sI1wk3pi6AE%2BYA1BVcA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554efdf762fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=867&x=16"
|
|
| store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 90 kB |
URL GET store.cloudflare.steamstatic.com/public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hasha7fe9657cb2146ae9baa78e057565188 156dd1e295e0edc29e5dd29a88072837e4e5e836 c09162ea223934810c124eae0509a55055554a9874c1cbf3b93f62fee76112d4
GET /public/javascript/dynamicstore.js?v=OzwSXx1UJWs8&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 23886
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "p_6WV8shRq6b"
x-integrity: "sha384-eAXVC2lfQvv+58wRUmjA0t0qd1NVJbXr3Mv8QthCHePdoxi0o1SYYL2F6BfWblzz"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f8a656c7-OSL
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:54:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c9555aae2656cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221734
expires: Sat, 28 Mar 2026 11:54:59 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vdq26mtknKogjFehwY9w%2Ffkn1GXgTcK1MWcyWMaAV%2BhHyBEZujEq3%2B5uiJDcURY8oE6qTUdwIB1AzSz5PUYWhYuAhrUETK1umjq2I8F2rj5mr%2F9pB45838mFmVNIHLLHarRWDh2x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:54:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221734
expires: Sat, 28 Mar 2026 11:54:59 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WcuYnc5AzaKk%2FTWJCl5krEuBm57Wi%2BrRcTYSS802wX9zEPA9OyENipj7gRtpsJtVLgt0kMnq7wfyP5Yz%2FyBHBK2LwpcdLeUfUlFDwO2KdVWsYFczw%2F69fRHECCY3XFoAsWXFLLJd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c9555c89a756cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c9555dfbf756cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221735
expires: Sat, 28 Mar 2026 11:55:00 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8w0OnJkrfeNDbnlqWhmQEQyiyfEeZ3zGIj8bq7OWXQPc2xusQNSSVuHpNgwhM5ya1rNqG4u4K1V4V3dJfOGXAN9E3LvxoWAKcWnPjVM53Mb3dz3So3Gb1BsHuLLt7UNSv5eRdh%2B%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/1ea95b1955f23776a837464caf842f6ea21a73b5a0df.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/1ea95b1955f23776a837464caf842f6ea21a73b5a0df.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/1ea95b1955f23776a837464caf842f6ea21a73b5a0df.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=35d6hfsQ2F4pFfNLitulBziL8flF7yePd3IMfrb%2FYHR5GKEBut0HVwYJai%2FeSQVAM3bxh5bWVnfRMG3Ott3oh8jN4nG2pgn3eZ6qzLYJrTj54etvghBXK8ZB4ite50YzHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1dfe62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=904&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/8398298ad8f9377690596a56e077eacc6c7ec828a21a.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3%2Fz%2B1T8etl94Evn7HqiX%2BD3bs%2FZ7o4s5uUNUYup4l%2BqzscTmCx%2Fb1I73%2F5IsOwZ8%2BwhzW%2F6Pqdl43TxBaZeC56hIKPjSZqRcpwyUfLc3Kj7o5GBSj2Rw08zOgJrFM2ZMbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f9e1462fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=943&x=16"
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/f5be0223b11d7facb082959adf2f573a4e9071b5a92b.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WRIzeJpRuaSHkHfVeQ6ZT7zFoXn6FLs%2Ba7Qx%2FlraBQc3zyRGU%2BqUguEsRsdQFV8JsO4rUlVmCtPEXFsV6ialrLumkKY14bVRk9TptObRKYUQMUQ5P28uhWpImT66Xt03gw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fce2162fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=967&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 88 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with very long lines (1819) Hash60923cf3e9d6939285a441252888ee50 1a73e20979967a195297e374d3cac53d09656263 a7d6bba4b46a63b2143e6859964ed98a0aadbe119beefe9e2933c6d195071f02
GET /public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 22681
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "YJI88-nWk5KF"
x-integrity: "sha384-a/TVvvtx0PrHcUSWtiQmMdUcn+gQFqkVaXK0ttoavoqscWgjZogQO2TaB4AKuyZm"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9555128eb56c7-OSL
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 18 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with very long lines (1667) Hash8f02f2cc325f5fc0f058b59c2dd76a13 f2efa26cd913b23fff0945bd061b16243a56fe35 86f92f513c4197f3cd8f3bcc101eb46c8345b4dbcc53d4d3897d49425012f30b
GET /public/shared/css/shared_responsive.css?v=CG8Em6e-Ozq3&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 6190
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "jwLyzDJfX8Dw"
x-integrity: "sha384-Lb2gma3Nbwyr1uN7iJLyPgRVG2ZWtDBiP0ZoJUWnIOP7Fzeojzid9zovwDbZnAdW"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f89356c7-OSL
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/64402686e6ffe93666f930a4033a8e901f663bece333.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/64402686e6ffe93666f930a4033a8e901f663bece333.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/64402686e6ffe93666f930a4033a8e901f663bece333.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fsHqBTKHQ%2BiPrQzrvWFk5q7tNED5xomkaBObb%2B4p0fC0Ut258CvhVOn3UP2j3drIqp3pu5BIJelwHK5FBcERkHfXumRKlL1zM0LmCO0HMZbMmgyat1iwfDr7wkntwlu3rw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1e0062fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=913&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/1cb7df5c555015b39b34ee74d56af9adcbf14ba95908.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IwxQDfaDEArPDm7Oy81AWEP%2Br2FtuCv9yUjD4foFYtJQniHO0EUgLg6%2FaTvUm8WJOrffGr%2BN%2BcvZfbleiUk5O16q3ox5G7%2BTZcpbPSin9YwalJegQ1j5qDVGiYJevKpJOg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f9e1562fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=958&x=16"
|
|
| store.cloudflare.steamstatic.com/public/images/footerLogo_valve_new.png | 172.64.145.151 | 200 OK | 2.6 kB |
URL GET store.cloudflare.steamstatic.com/public/images/footerLogo_valve_new.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 176 x 50, 8-bit/color RGBA, non-interlaced Hash86a9ccc0b872f22006a48bc6c2500f4e 0edccf2cbc869816135c6ff4c3eee0c49d0f41c1 d8bbe461137d50211568449468a1981ef189248200eadd48c3141a9df0b8f7fc
GET /public/images/footerLogo_valve_new.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 2584
cf-ray: 92c9555118e356c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:18 GMT
etag: "649bb1f6-a18"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 2099
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/images/v6/logo_steam_footer.png | 172.64.145.151 | 200 OK | 2.8 kB |
URL GET store.cloudflare.steamstatic.com/public/images/v6/logo_steam_footer.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced Hash41e851f8e42b6bf3414278871e93e8a2 a3811c7e1157f77950ec1f0558293bc90e432e82 399f74c4e69eac8b59b149293f9a573955fef0a62b242cfa70346070013e0966
GET /public/images/v6/logo_steam_footer.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 2843
cf-ray: 92c9555118e056c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:22 GMT
etag: "649bb1fa-b1b"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 6825
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221736
expires: Sat, 28 Mar 2026 11:55:01 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A4ciaRCyO8HOwsMr%2FEjWXUCJqLpFBEwvwdFelbtCj7EHcoGzhKY7xfcca69juEbNNRQO5T3MSDxC1YaGGh6ysKvL8lminBMNZqd%2BDXtF2HcTQucr5bhlVryDuY1GdQtQOLkJQtPS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c955640f2956cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js |  151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5141
x-timer: S1744026901.416478,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/251f7d5029015202580d10431d0b7137111679262904.woff2 | 104.21.27.52 | 200 OK | 29 kB |
URL GET steamgifts.cfd/251f7d5029015202580d10431d0b7137111679262904.woff2 IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 29104, version 0.0 Hash38a35c7070979fb4c845de40cada43c5 b0f804f348b746449e6589b92dff685509737dad fcff4301dc083af2be2b990bb6485e9e06ce9d2b373a7acf8a74f61ea69d861a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /251f7d5029015202580d10431d0b7137111679262904.woff2 HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: font/woff2
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3cx5dcQTol3tcOZTcJGhgsQIzXddf1gLNqc%2FFZ7A32AcePvgcQciKpPfD8rngz1pSmYWw52Qpj%2FL8mIZuYTauC4DbRKR%2BpC%2BQJ3yi0nTYpX5jnmT%2BBb8ovgfw1SdspTyWA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-disposition: inline
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
last-modified: Tue, 01 Apr 2025 09:36:17 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9556de9ef62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=5844&x=16"
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/3dbbedb79df27663753777929c237e76b23e1fba921e.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uppQMZXp9BA3vxdZ0iwAZ29%2BTGiViSlB3z8C%2F3MOmaV65QfRzoukYN7t3FGPyuBdBqOxHczIYPVoFinTghhr6xooLBg3XTIlPInrnjn9FnayJiDIt9z6HdF4qHFIY3OMBg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554eedee62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=856&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/d1112f42a24075dcb5b1c07b232f81448e5655adb676.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t5zjMlLcisAL8%2FGmleIUmQlXpg62C1PTdjN%2Bnm%2BgnFzgbFAx9pXAxFU%2BWRoWi2hfSdg6FnLOxCqFdWExrUo6cNqkhZMHMUbMvqR6YVJUJ49EG2mUUYEmsy4gmjMgWFNJvw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f6e0d62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=925&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 155 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (4310) Size155 kB (155032 bytes) Hashb9140144d1f6f3585f072d8ed76c3f1c 9b49bf0ab8430d9e1634eb0404f91090d164f684 77541b020cfcaa46f7dce2b17aef172d4bba24b7d58829c1edd4ec0b55e9d496
GET /public/shared/javascript/shared_global.js?v=tbaNc6xLj9BJ&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 43588
cf-ray: 92c95550f8a256c7-OSL
server: cloudflare
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "uRQBRNH281hf"
x-integrity: "sha384-1pPtJ/JOB13QW5Zne7lqRPczvll4VluqDhexAkYDHcCGIMtTydL1eSoYO58WLvAE"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 32 kB |
URL GET store.cloudflare.steamstatic.com/public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash2ae63a61b205e2b91662db381b68e79f 5c217e7480b9b3825f5367536ca949fb668e4c83 c5262d351b071f637d56c9d81ad7b341c2c69bcf7716f88909d703203278a8e3
GET /public/css/styles_about.css?v=KuY6YbIF4rkW&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 5371
cache-control: public,max-age=15552000
expires: Sun, 30 Mar 2025 05:34:25 GMT
etag: "KuY6YbIF4rkW"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 10170473
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95551392356c7-OSL
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 | 172.64.145.151 | 200 OK | 3.6 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeSVG Scalable Vector Graphics image Hash31aabe1e01f27b3b9b47d7265807afc2 a430f5a8a81145215c41c3ba80929627e570d81e 3a4d08139646d567a612f75b8179641c570d490f8013478d131266ed21f3d453
GET /public/shared/images/header/logo_steam.svg?t=962016 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/svg+xml
content-encoding: gzip
cf-ray: 92c9555108d756c7-OSL
last-modified: Thu, 14 Nov 2024 00:18:58 GMT
etag: W/"673541f2-e3e"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 3815
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|
|
| store.steampowered.com/dynamicstore/saledata/?cc=BY |  96.6.17.126 | 200 OK | 29 B |
URL GET store.steampowered.com/dynamicstore/saledata/?cc=BY IP96.6.17.126:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerDigiCert Inc Subjectstore.steampowered.com FingerprintD1:63:2B:87:0C:48:95:7A:BC:F5:BE:8D:96:58:14:CB:4F:9F:D5:50 ValidityTue, 10 Sep 2024 00:00:00 GMT - Thu, 11 Sep 2025 23:59:59 GMT
Hash7d8e35afa8792b923f4e6c5906e7c4b5 32168fbcd8a98b424f566046d3680648b49ac633 d5c8f5fb29ca010ec4c6e11774d17b0cc27b21304811521e29141f581c061e87
GET /dynamicstore/saledata/?cc=BY HTTP/1.1
Host: store.steampowered.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/json; charset=utf-8
X-Frame-Options: DENY
Cache-Control: public,max-age=300
Expires: Mon, 07 Apr 2025 12:00:02 GMT
Last-Modified: Mon, 07 Apr 2025 11:55:00 GMT
Content-Encoding: gzip
Vary: Accept-Encoding, Origin, Accept-Encoding
Strict-Transport-Security: max-age=10368000
Content-Length: 49
Date: Mon, 07 Apr 2025 11:55:02 GMT
Connection: keep-alive
|
|
| steamgifts.cfd/3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3f51187818b7cde26da510a10594f3213ee28cdeb696/bdf997526965a6c3fd37231628bce15baa50f62dd225.js HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:59 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yPDy%2Fw4UHtogxuHqsX%2FZ2fZ6FrRlGw0JRaFf9ZSkcTK0oXPVAHN5athOnjHxWB%2FEuQLTLj2DUbIOGfYMFQkelNFTtzYaDR06sVXXsuQM9rceeIflqE7fXHVtoH74xosEaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9555abf5862fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=2731&x=16"
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5594489db6d1817e59055d860d6adb88f6b6eab02e94.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qr%2B38v8jR%2F5GBkkS6V8jF862HxMd16RxctKq7mwmmC2QvgyV5mr3H7i4Dn8k9NDj56iWOs7bGeIsmjX7zzMePUFjb%2BQZeCee6RkwGF8nkDD1QdFWDGrHoPvK26WpJtK6Lg%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554efdf162fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=862&x=16"
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c95550bfcf568f-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221733
expires: Sat, 28 Mar 2026 11:54:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pTYz8DVcZrWIlUznKLwzsliIBudKNDN7zN2SxH2nkqCYpiVSTlSgf5namBheAyzbvNu35%2BYD8nZCLqggImogJ9Il%2BumzmVqYDHmVfxXRrbWSigFnLN4H2osiQtBejyHQIEIbkoXK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460312
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5139
x-timer: S1744026901.023819,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5142
x-timer: S1744026902.578321,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015 | 172.64.145.151 | 200 OK | 123 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Light.ttf?v=4.015 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansLight4.015;Plau;MotivaSans- Size123 kB (122660 bytes) Hashd45f521dba72b19a4096691a165b1990 2a08728fbb9229acccbf907efdf4091f9b9a232f 6b7a3177485c193a2e80be6269b6b12880e695a8b4349f49fccf87f9205badcc
GET /public/shared/fonts/MotivaSans-Light.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/octet-stream
content-length: 122660
cf-ray: 92c9556dcb6c56c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1df24"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/c6219c54c01085c851a30c0b32ea3769a3cc6ddb2d69.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/c6219c54c01085c851a30c0b32ea3769a3cc6ddb2d69.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/c6219c54c01085c851a30c0b32ea3769a3cc6ddb2d69.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JS9DbDv6R7fO%2FeVOIEY5Wy5ffzzDS5jpSdTp5n%2F8%2F4O4UEkvJ3WVpadXHPyWFblAG%2BMAbjyhNVMiB%2BQP7KQh451vaS%2BdkFaeRK6ytpcyFsn0G2GUKYxlnIj16s0qX6uAnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554edde762fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=910&x=16"
|
|
| store.cloudflare.steamstatic.com/public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 127 kB |
URL GET store.cloudflare.steamstatic.com/public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with very long lines (391) Size127 kB (126952 bytes) Hash8691b14cfb318c7308c26512dd0faa6d 3ed80a944d9244ce45e58ea03c1f2fc9ae33d5b1 f92a97cebba8dc05f38a307e21a9466c8e125b99f0750e0ca17f80242e20c2c0
GET /public/css/v6/store.css?v=5_pmjscCAXNy&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 29484
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "hpGxTPsxjHMI"
x-integrity: "sha384-Uvx68TopYVoBEUtDZCXPOmSCYeG9gf8aG0+zUzh8IQV1CPTAi7OpM5lczQiagf1X"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95551392156c7-OSL
X-Firefox-Spdy: h2
|
|
| cdn.cloudflare.steamstatic.com/store//about/logo_steam.svg | 172.64.145.151 | 200 OK | 2.5 kB |
URL GET cdn.cloudflare.steamstatic.com/store//about/logo_steam.svg IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeSVG Scalable Vector Graphics image Hashba1eadfd02abb260074971789870ce10 e329edad609b0c2b7a567ff1964f59833d401c66 9720a2b19519e0d51f44f91d7dd0cd57ccee7347efe38f5815acc6d984f79a8b
GET /store//about/logo_steam.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/svg+xml
content-encoding: gzip
cf-ray: 92c9555128f256c7-OSL
last-modified: Thu, 14 Nov 2024 00:19:00 GMT
etag: W/"673541f4-9da"
cf-cache-status: HIT
age: 4514
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221736
expires: Sat, 28 Mar 2026 11:55:01 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CgEw5MEH7DIYpuPrN12GzGWeoCIthuKHzf7ISqK3yhlIVUoMaFJ768uy7zqREnRSgJTNeQnLKdmTCLT%2FAoloyNJmrTfR0hCW6fkm7oOAJJ4mymvK90KSxVZqd2Zju9T3HzB4u%2BQY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c95565499856cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015 | 172.64.145.151 | 200 OK | 119 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Thin.ttf?v=4.015 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansThin4.015;Plau;MotivaSans-T Size119 kB (118736 bytes) Hashce6bda6643b662a41b9fb570bdf72f83 87bcf1d2820b476aaeaea91dc7f6dbedd73c1cb8 0adf4d5edbc82d28879fdfaaf7274ba05162ff8cbbda816d69ed52f1dae547f6
GET /public/shared/fonts/MotivaSans-Thin.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/octet-stream
content-length: 118736
cf-ray: 92c9556dbb4f56c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1cfd0"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.cloudflare.steamstatic.com/store/about/icon-macos.svg | 172.64.145.151 | 200 OK | 1.2 kB |
URL GET cdn.cloudflare.steamstatic.com/store/about/icon-macos.svg IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeSVG Scalable Vector Graphics image Hash204dd244cb3943172c9fc0b4cd26934b a7ab714e22a8950762bbbb4a2f8844b917f6bb8c a8f67eb0aee3d58bb70293466744088c2ac93154e5aa26c2bf2c5d5366d1d89f
GET /store/about/icon-macos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/svg+xml
last-modified: Thu, 14 Nov 2024 00:19:00 GMT
etag: W/"673541f4-4ac"
cf-cache-status: HIT
age: 4513
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9555128f856c7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/251f7d5029015203521737594c5c740b0a005d05 | 104.21.27.52 | 200 OK | 288 B |
URL GET steamgifts.cfd/251f7d5029015203521737594c5c740b0a005d05 IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashc65165dde5b859ce768b3baa1bf09153 2ac4ed64b379a280ed0ca2a4555a8694db396636 2dee9b88d78bbfeb4d73c747fbb9fcb1755b5556fe759fe47030c9b1a10f755c
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /251f7d5029015203521737594c5c740b0a005d05 HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:54:59 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aQY76cGJGriS%2F8HeVzAbPoP9N1CfJStVu7XZsJXsavwEpsD1C6zXJMhUGMX%2FVitEh%2FTgKQ%2Fr8pnR8NrGPPMKJ64IT0zELbH68K1bxk5ESSVuG44opgZ%2FM9RE0c5VfHpSpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"120-KsTtZLN5ooDtDKKkVVqGlNs5ZjY"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cf-cache-status: DYNAMIC
cf-ray: 92c9555a0f3b62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=2585&x=16"
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/5cfc058abb60c01ae4c9c129362903003628a845a086.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MbrSg6sOvvKNOcS0%2B1dqJdHieAHb1%2BLxG5yVoWphVvIz4TYnDjPtNdwrq6230dJaZS6WiEwEFc%2FqixrmvNoLa7%2BFZH4ACP9xH6uoxjGwfMgIIzN506BB3jPMEViebBu3ww%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554eedf062fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=910&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0fb4b83e318d364bee7ca5f4289f9aab836890698b15.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yFguzQo5P1dtEM1mWKtZSOffnQXguea3z4V7nq%2BYO4dhGgf9pCz4XwdbC%2B0IxatAL4lpq8wdIobmqcRlGRXMtV8iv6WOvG0rpSjus11IJGBGI1wvBk1fam7iSonjrfGVSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f4e0a62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=917&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/372152a59e5ae998be8370070c3bf9cef88a14321be9.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EQ6x6ClCQzqRH1xjy%2Byxc%2B63PbNvtp9o1ARE%2FQ033%2Fb0q5JXk7QUgxkzNy8gLiDNbVJDDEoMP%2B0hPhA0uNCLG3xxd%2FVMcTHJkIQzAU2%2BBu6FHaI0vC2Po0EFIn%2Bn1Q9Csg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fae1d62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=949&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 | 172.64.145.151 | 200 OK | 291 B |
URL GET store.cloudflare.steamstatic.com/public/shared/images/header/btn_header_installsteam_download.png?v=1 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 15 x 13, 8-bit/color RGBA, non-interlaced Hasha2796187c58c7e948159e37d6990ecc2 4209cd85add507247f9ce5a87a8c9095b54ee417 23341256db7f44b1f3811880fa2bae6b7748bbf6b62c544a162e38cf0d5c5082
GET /public/shared/images/header/btn_header_installsteam_download.png?v=1 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: image/png
content-length: 291
cf-ray: 92c9556d8b0e56c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:11 GMT
etag: "649bb1ef-123"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 3772
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/e880501f476f5849c40acbd72c7366f982f4db8e5b16.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FcPKNtPvXeye4iRedVnal%2Bv9GYplO45IxFqijF%2Bg4vYyXbGrANOBs2bRDugQfNZ5NgjPCjeHinfnWgEz0mQQjofRvBOaut0RUE2t%2F1L7VHzP5h0f7mLbDECYNln6FSzEIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554eedef62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=911&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png | 172.64.145.151 | 200 OK | 161 B |
URL GET store.cloudflare.steamstatic.com/public/shared/images/popups/btn_arrow_down_padded.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 19 x 12, 8-bit/color RGBA, non-interlaced Hashf2dae37acac6b9d5a91caf1885c2f7d0 5f80fdde9f702a1d7589bc5faf88c14066e26c32 93b1fbe4f6245b62bfd4c8c3347abe0fe67ed711315e59bfadaebc9873d8d9b5
GET /public/shared/images/popups/btn_arrow_down_padded.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=7sR4EhV3nKzm&l=russian&_cdn=cloudflare
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: image/png
content-length: 161
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-a1"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 2182
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9556d9b2356c7-OSL
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4432e65627c08771821b56a937ca65c8d98f3ee2ca25.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4432e65627c08771821b56a937ca65c8d98f3ee2ca25.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/4432e65627c08771821b56a937ca65c8d98f3ee2ca25.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CKza4Mgt2Pezm34iM0KKwCaitCx39DtBCQEtos8iKOmJn%2Fr2BiGl00TSQK%2FbrDd3thVFD9drZbkpJLpKvQtwYDAruQ42RJDJFUKvit8bfI6%2BFDzV2mA%2BLBoeW1IDkqu2MQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554ecde462fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=863&x=16"
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/2b9636ebd4881503fe0feb7521ca9184d669153f0cc9.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/2b9636ebd4881503fe0feb7521ca9184d669153f0cc9.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/2b9636ebd4881503fe0feb7521ca9184d669153f0cc9.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F0wmQh8GcZUO6mZSLzaYat6pXTGth%2BKFBLsx%2FFo3xUXhdaMPlsaCwSvkkrWnvasOc4Q22v9DzQnVzmVknwkgg1GOo103AIxXvI8mMTsjDibWMyRlk8BM0vrGX8SCeejahw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1dff62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=911&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/baf426b2978361c1cd07e3946dee5fe5b134a5ab476e.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DtBoZo7hvD0Wem%2BxrxKPR8%2B5mAAI4poEzfOACGtPg26NgJI84FgQkGA4D5tVi4N2ZX5%2F21tVLC24Dq3530%2FH5q6P%2BUkYabci1flivtJPPzGttYkk3%2BDAN8g1sJOu4aF%2FSw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f3e0762fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=927&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare | 172.64.145.151 | 200 OK | 16 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, ASCII text Hash418913e1e4b999b4cd1bea5e58a936b9 bc993c5681e7cb1c8cdc7c0197a2773dc65dae34 fff60b03eee68665bbea99748e01971b5dbf59bc249435f03291105adf03e632
GET /public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 4661
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "QYkT4eS5mbTN"
x-integrity: "sha384-9OKBQPmBdENKPUAcLb4ACEhVuLu4340DOclXlsdtZl51Fp1lvqwJQXRNsMAi/B8Q"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f89f56c7-OSL
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:54:59 GMT
age: 3460311
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5133
x-timer: S1744026900.817768,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221737
expires: Sat, 28 Mar 2026 11:55:02 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TWWMn6%2FnRO7mmvSRHglVT3KFJwDm8KAmLdzkIEws16iuCaBidzOn5foSh48YUGY7U%2FLFpi2zR7kW9B7BRc4dZY1C7%2BL3WD%2Bd8JxAdW6%2B6KtdSG%2FxcH82FlUl1MJf1zcLarM3I%2FJI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c9556999de56cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/60624dc019a4f57056bdb6788ff2b9fed015045227dc.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/60624dc019a4f57056bdb6788ff2b9fed015045227dc.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/60624dc019a4f57056bdb6788ff2b9fed015045227dc.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GXwCmXIHMDhAoM8rilNHRK0Ip2mGlUsf7Xj7edHPic9YmHCA7QMiv5jeQb36swUVwYFn%2Bu%2BGQHrvq88FlLQDWQLRi5NPn%2FVpul6dYIo0mtFTiJSpi%2BiYhEE2URneweHXow%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1dfb62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=904&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png | 172.64.145.151 | 200 OK | 11 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 744 x 171, 8-bit/color RGBA, non-interlaced Hasha4e79c73ee13cb25b60fc4b0ba1f690c b690c31b2eb1b0eb085e91aaae7e79f03debe7c1 6cb869df089146c12efb5e9c968e911c314842624ba6f052a11346ac734cadc8
GET /public/shared/images/responsive/header_logo.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 10863
cf-ray: 92c9555108d356c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-2a6f"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 677
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c955666bfe56cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221736
expires: Sat, 28 Mar 2026 11:55:01 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9VLvXw2gnHMR61mDKWD4m6uShWzg9OVb%2F1aZzGgCrtjZFO7loIXz6bFVLS9RWTuH0kBlRBRERNh0R6E6Uvk%2BC6qk05de0ys9jpNXz95zQqyk1ZHaYXfPPovsXetkl4wc%2B4wHevUd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:02 GMT
age: 3460314
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5146
x-timer: S1744026902.317793,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/b13812e68b72bf91c05ce98f28d46706f895d8159611.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/b13812e68b72bf91c05ce98f28d46706f895d8159611.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/b13812e68b72bf91c05ce98f28d46706f895d8159611.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=upq8ZxVRiLaNYe30hi%2BCp4YWsKAYjNQj7ncUs88N%2FQe%2BvyIWi0VZr2AkNdaHGt8KP56ASh6qtNoFuEdvYOO%2FTzhny%2FlFF0KfIyPmwZ12bZXTKVDPZs1FiKp%2Bty2o%2FMqOVA%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1dfc62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=907&x=16"
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/4a82fac29d9d124a36a8d5b3dbe51409e7dcbfe47434.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/4a82fac29d9d124a36a8d5b3dbe51409e7dcbfe47434.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/4a82fac29d9d124a36a8d5b3dbe51409e7dcbfe47434.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K0PC%2Fl9XrerRVV%2BIO%2B1UW3d9cmcYa7aYbErRa5UrL21fyE%2FoNhkzwyYJ0RLNbc%2BfgV7XEl%2B4f0CLIcFYPh0NQ3duoBwPr8hHS6rg5piezF2nsOiVG8bfnglnYaWfPHR8OQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1e0262fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=916&x=16"
|
|
| steamgifts.cfd/bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /bf46a5696d2e42abba3747503ffc32ab2c8bfa48dbaf/05ff1b818f92d0bc1c8ff2529fe2d5d6fbe530cbe14d.js HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mAmJ7gO4%2BLaG4KhFrqRb9M49gwQ5gXx1K8w3T2mieP8Qv9lf1TZ8xBw1PbRYx0fV8MeDES0tNepxPes08rHZ%2FBiQJk6T7ns6%2FMp4V3%2B5rRnmfT5aLSy6Kp%2F7Mn50b59Z8g%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9555dffc762fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=3228&x=16"
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221735
expires: Sat, 28 Mar 2026 11:55:00 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dE60GZvoeHkElnFtZAxhWgtmv%2BmoualjrPuetBG49It%2B5MZSCQildCDy2CmJ%2FvD0DmDcgccgdhRn6vEewFmCxJqOcAbnLZmug7lVvpBEySMZx7nyy5F9cQI5gvywRnT2SXfOIXEM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c95561aa5356cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5144
x-timer: S1744026902.922062,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/98878f496c2623ef053eb2a14718284a6b0162a4ca0b.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jYMioFDuccgFKawJ5V9WYsX%2FtD%2FFRgEeqzCEnUy2yE8uB8Yc71D6nEDLAqYwfXrLTsYUKULIoTZUXX8VjJ1i95yyWXL7ONilyGabUQYxTHw9iURVy%2BsWYQkW3nVGxlLzoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fce2362fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=971&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png | 172.64.145.151 | 200 OK | 1.8 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 92 x 26, 8-bit/color RGBA, non-interlaced Hash574c350c7b23ae794d5276f8580e0838 235c7b35c3468f8915eca01f7abdb43d34079609 8b97ba0dac22fe6704c1f6d95fe79613f33017804f256abb9006df0442491787
GET /public/shared/images/responsive/logo_valve_footer.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 1846
cf-ray: 92c9555108cc56c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-736"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 2175
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.cloudflare.steamstatic.com/store/about/icon-chromeos.svg | 172.64.145.151 | 200 OK | 922 B |
URL GET cdn.cloudflare.steamstatic.com/store/about/icon-chromeos.svg IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeSVG Scalable Vector Graphics image Hasha206062481949321a8191bcefc62c1cd afe5a283be63c9bd124af1bb9d88a3328759cbe3 f4e1aa6e2128b6ea4609d99e768454da845a41a838da677a9fa4b4410d296cbf
GET /store/about/icon-chromeos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/svg+xml
last-modified: Thu, 14 Nov 2024 00:19:00 GMT
etag: W/"673541f4-39a"
cf-cache-status: HIT
age: 4513
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95551391656c7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/images/ico/ico_twitter.png | 172.64.145.151 | 200 OK | 1.4 kB |
URL GET store.cloudflare.steamstatic.com/public/images/ico/ico_twitter.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashafc159fe5f0f26fa7282505da9887cc3 c1cd55380c2af435876989f94e8b0715042c2ade 4be942a34871dd6f8f14b43d27c31b049be7f6544c05685d4f35abdd329de176
GET /public/images/ico/ico_twitter.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 1430
last-modified: Wed, 06 Dec 2023 00:00:29 GMT
etag: "656fb99d-596"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 972
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9555128e856c7-OSL
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:02 GMT
age: 3460314
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5147
x-timer: S1744026902.469485,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221735
expires: Sat, 28 Mar 2026 11:55:00 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Mut%2FwWBqNNV%2B7F7eio6RsDzxJeNDGw%2FwZuOcF8p7OACbyzFmzYb4QBROLZ%2F2jGl%2BjkePtZdAyijRX2%2FNn9TuHqnJl1ravxXDK7oatS%2F62T5pV7Eu0ETDq%2BpY9%2B9tR5uspnbTUHXG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c9555f4e0356cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:00 GMT
age: 3460312
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5135
x-timer: S1744026900.260774,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/73ff031341b7e5322e6b21a1ada3e65a7509080afa29.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ft721robc1hXE7VtMXtJcB8NAZ14uPal5hioQ2ubiHr6UrtHFr3DZonDRDo74vxqRGeYFiE1ObZj9L4Pg0cGiLtxGtn8l9dlEpKK1iTURdN09PLgvTEE8Iup2cl0WU2sbw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fde2662fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=969&x=16"
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:54:58 GMT
age: 3460310
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5132
x-timer: S1744026898.135160,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4d42282e71138c0d7d024aafb4c076799cc74a12f7aa.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4d42282e71138c0d7d024aafb4c076799cc74a12f7aa.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/4d42282e71138c0d7d024aafb4c076799cc74a12f7aa.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9NTHF2wh5EwbU0KpwAhsII7igKrKGGtLpDBHYrAKw8ZkjH%2FjNXU3pSRPq1eE7XRawNnJSwZPawXENlV2M6F2KN%2FJ9oYKt0IAe2idarQXhbmdYdzWV4xIDiX4g4Uq56PLbg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554eddeb62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=916&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare | 172.64.145.151 | 200 OK | 94 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, ASCII text, with very long lines (65482), with CRLF line terminators Hashe1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32
GET /public/shared/javascript/jquery-1.8.3.min.js?v=.TZ2NKhB-nliU&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 33382
cache-control: public,max-age=15552000
expires: Mon, 21 Apr 2025 15:04:55 GMT
etag: ".TZ2NKhB-nliU"
last-modified: Wed, 28 Jun 2023 04:07:11 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: HIT
cf-cache-status: HIT
age: 13943404
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f89a56c7-OSL
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 2.1 kB |
URL GET store.cloudflare.steamstatic.com/public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
Hash6103fe77a3657bf73d7c44a0fff4051f de925abaab475be75a8ab890d686c81cf687b7bc dd87178fa21a4c30e10603dcefc64b59b69a709baa707c25b24179ef7201a5ce
GET /public/javascript/about.js?v=T9HhtJ81mJgN&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 815
cf-ray: 92c95550f8b656c7-OSL
server: cloudflare
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "YQP-d6Nle_c9"
x-integrity: "sha384-6iKZQfIqMwlFilSrpE9FQ/C37ngUlZaj5K+wixaU9hXEtTILpMq3ypp4/8Gyx9E1"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.akamai.steamstatic.com/steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670 | 95.101.10.18 | 200 OK | 503 kB |
URL GET cdn.akamai.steamstatic.com/steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670 IP95.101.10.18:443 ASN#20940 Akamai International B.V.
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcdn.akamai.steamstatic.com Fingerprint18:76:06:F8:E7:51:B2:70:40:AB:4E:8D:48:05:F3:D7:F8:71:5A:10 ValidityThu, 20 Feb 2025 21:10:02 GMT - Wed, 21 May 2025 21:10:01 GMT
File typePNG image data, 406 x 719, 8-bit/color RGBA, non-interlaced Size503 kB (503402 bytes) Hasheaa918479400786006bc5a37e77075a2 cb892a61d8643b235ac589d9e0fd7a4a97ce56a9 69a47ea33e7fa0226b9f23b5837a9075f36a0ffc2e7adc2f5b30f564e1dad09c
GET /steam/clusters/about_i18n_assets/about_i18n_assets_0/wallet_card_img_english.png?t=1636143670 HTTP/1.1
Host: cdn.akamai.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Content-Type: image/png
Content-Length: 503402
Last-Modified: Wed, 24 Sep 2014 18:08:02 GMT
ETag: "54230882-7ae6a"
Accept-Ranges: bytes
Date: Mon, 07 Apr 2025 11:54:58 GMT
Connection: keep-alive
|
|
| store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 | 172.64.145.151 | 200 OK | 123 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansRegular4.015;Plau;MotivaSan Size123 kB (122684 bytes) Hash57613e143ff3dae10f282e84a066de28 88756cc8c6db645b5f20aa17b14feefb4411c25f 19b8db163bcc51732457efa40911b4a422f297ff3cd566467d87eab93cef0c14
GET /public/shared/fonts/MotivaSans-Regular.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/octet-stream
content-length: 122684
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1df3c"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9556d9b2d56c7-OSL
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/692c24f8aec0ac70bd519fa51c61cb381499d5073919.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PVy%2Basgf9G%2FpdNIHphc6ysYez0zDH5mY99pakNR007qktp3l5CoXmTHPtZ4ecP9ZxLZ2KTsSgMqPB4t%2B0mjGpW8L05ujNvLw05e5EpvoSN2IMIIFey4UY%2BkTlwtpHmlyUA%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fbe1f62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=952&x=16"
|
|
| store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider | 172.64.145.151 | 200 OK | 87 kB |
URL GET store.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeHTML document, ASCII text Hash973ffdf6f722db9bb1e350b4c673f365 a6c7d4331056cd37569fac3ee5f4b4e0e09b38cb 658b209483f3b09ceabfab105ce9f15078138d646ca0e9abee2033606c852b19
GET /public/javascript/scriptaculous/_combined.js?v=Me1IBxzktiwk&l=russian&_cdn=cloudflare&load=effects,controls,slider HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 24100
cf-ray: 92c95550f8b256c7-OSL
server: cloudflare
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "lz_99vci25ux"
x-integrity: "sha384-ypv8apRisCy5MbfVW/xJQC0n6ooV6krjmoShQQ8SJNZ3Q5Z+m92YpP2BXkzevTqz"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015 | 172.64.145.151 | 200 OK | 124 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Bold.ttf?v=4.015 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 22 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansBold4.015;Plau;MotivaSans-B Size124 kB (123884 bytes) Hash6168553bef8c73ba623d6fe16b25e3e9 4a31273b6f37f1f39b855edd0b764ec1b7b051e0 d5692b785e18340807d75f1a969595bc8b1c408fb6fd63947775705e6d6baa66
GET /public/shared/fonts/MotivaSans-Bold.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/octet-stream
content-length: 123884
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1e3ec"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9556dbb5456c7-OSL
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 2.7 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with CRLF line terminators Hashd82d4e87d405553c8aa398e16659fbf8 6d046f98095ef625e5c81545e4b4faeaf1f2a45d afb487cb0927509900a94f5fe65e9fa66c264a1524d21dd7afaa4c75386e2dd2
GET /public/shared/css/motiva_sans.css?v=2C1Oh9QFVTyK&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 633
cf-ray: 92c95550e86256c7-OSL
server: cloudflare
cache-control: public,max-age=15552000
expires: Mon, 24 Mar 2025 00:00:26 GMT
etag: "2C1Oh9QFVTyK"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 9740086
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c95568880156cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221736
expires: Sat, 28 Mar 2026 11:55:01 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mVUJVPVg8u9YoebcqAYh6SCeWlzhxgeuffiIGw33G3Dqxj0%2BWnQQp4r7%2BtupUUBBBLq8pjQmezqDFIbjCfbjfrd%2FQ2mGGX9Xv%2BBDbVwfkw7xf9AMBj%2Fb2h0JCsMZxLjC1fNgG0c7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/ef4c70a94ed7ed04615105565ba32e76cdf2321db4d6.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/ef4c70a94ed7ed04615105565ba32e76cdf2321db4d6.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/ef4c70a94ed7ed04615105565ba32e76cdf2321db4d6.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTp%2Buv2wbfyUhTgmIUt01buZl71BMJaz%2BgoxpDyEHEr1BPnc3OBeSiWRsJJjGidpA6giPN5u8pVLI2Uu56ZtX1OOQ4KdwBP%2F2lA7FOM6Af0K%2FRZjrWxDTRiPhB9T9ZIreg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f2e0362fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=904&x=16"
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/9b44d1f4bd62f968ee2d4ca26da86eed10223dccb8dd.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hw2gC3CxM2JbklUlAB7141bDou3vt%2FGlTWT2kk6kHZCl2sfMCO0APO6Y0bgvGG9P8VxbnsgHajUKXh5eEo6r6WIna6KjoGdk2j5Px9LH6H5tkp3JIyJzFxaU%2BfRl3MzVGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fde2562fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=965&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 33 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
Hashcc76c90bf029f223565c29d83b511af5 c92dd95efdcc81e21e01feaf11c63e0a150702be d87efa746ad9501f27f9c488ff1d9737fb0cf52b074da30d044720fc54abea5d
GET /public/shared/css/buttons.css?v=hFJKQ6HV7IKT&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 4143
cf-ray: 92c95551392756c7-OSL
server: cloudflare
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "zHbJC_Ap8iNW"
x-integrity: "sha384-yzRNAvQFX8YXWTr+vOE/XlTbzIxXMCLgRyTnOrm2MTY2UQ7Gcfbt4G4mtWvYM5Fy"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c95562ac1456cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221735
expires: Sat, 28 Mar 2026 11:55:00 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UjPa0X7FfS2zpbk23FydSv2O9k1CfPckvygnfn9cE7H0XLEuDrrOwFX6UwQgiAoYnQMSceDGd%2FJTViVpwTGQ7GwKvdVJMhE67GdIjh%2FBZ%2Br9s3x6hCv6yMtEzhuFAkInqXsLpGw4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/72114c67fb4dd9988997fb8e626fe449d12720756187/2053d30d68c40a00747dbd864577471cca3e42bea850.js | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/72114c67fb4dd9988997fb8e626fe449d12720756187/2053d30d68c40a00747dbd864577471cca3e42bea850.js IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /72114c67fb4dd9988997fb8e626fe449d12720756187/2053d30d68c40a00747dbd864577471cca3e42bea850.js HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GfAcISqoQCcS90%2BYX63141D6bmxI%2BnqNznhGB4WK9eeFinwPxO35rCyb8ThqkgwAnHLtlPvQKLz6dmT2kVkgS3GGK5HaJU03BFn%2BCSpoeYz44pzYQnRsDAmpR%2FFIbjcl4w%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9556558aa62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=4541&x=16"
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221736
expires: Sat, 28 Mar 2026 11:55:01 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a3WppoQMTsTKHW0zANyc3N0vYI3pRwjlPKlhAYrBBsne1AvMN1qd6t%2BSdo02H9lqScvdd541zKKos5Ez4Kh5eCHyEmWxHgE3TCqmdB1HPH7nBnOf9pxOIV6m%2FArCFRWOlcpiLw96"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92c955678e3456cc-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4d78b8124b3d69904910ac3446cb82a448401ca76375.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4d78b8124b3d69904910ac3446cb82a448401ca76375.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/4d78b8124b3d69904910ac3446cb82a448401ca76375.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8DpCvgvN4S%2BlQxKtiDBR%2FzIOLKjxJoGtN9gKX6nqbs9cMGAR4O8RMin7GcQEBNr%2FTdQv2XvEyBiOCl5NPF39ZptdEKFG%2FULt2OVeSwxEJhMnfLlj%2F6iGajCwBCHq68CKUw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554ecde262fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=903&x=16"
|
|
| steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /3eadf8e3e112d7a7301d4e1154d3d772f8fd94568528/87a6eac108be36dba37d834917341681742be5d99f9f.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v0q48fERh7SG%2BU9A%2BDrCQHDQ3330uT8jE9BQp3Njz%2FpVV2Z%2BfK8KuTR11KlJ8xu198MzPkUBX9zNCU8%2BZzsKeIM6MN1E5VkpFhuVoxwDeB%2BxBJhE%2FDYfExwcehiOLgRQtw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fce2262fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=960&x=16"
|
|
| store.cloudflare.steamstatic.com/public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 1.8 kB |
URL GET store.cloudflare.steamstatic.com/public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with CRLF line terminators Hash6525474c49d3dd63567ee19b0816f4e9 ea407feb9c8611f08fa9d27c51fd0c222271ec44 17cff7bc75a3cf19c7c3412c514b4c0bb651df34bd4ee6717c6bf1f920302506
GET /public/css/slick/slick.css?v=ZSVHTEnT3WNW&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 567
cache-control: public,max-age=15552000
expires: Sun, 30 Mar 2025 06:07:18 GMT
etag: "ZSVHTEnT3WNW"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 14033512
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f88b56c7-OSL
X-Firefox-Spdy: h2
|
|
| i.imgur.com/facOzSk.png | 199.232.196.193 | 200 OK | 3.4 MB |
IP199.232.196.193:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.imgur.com FingerprintE4:72:56:8F:0D:0E:0B:E1:47:1E:79:39:7A:0F:AB:05:30:AF:2A:2D ValidityWed, 29 Jan 2025 00:00:00 GMT - Sat, 14 Feb 2026 23:59:59 GMT
File typePNG image data, 1792 x 1024, 8-bit/color RGB, non-interlaced Size3.4 MB (3400538 bytes) Hash4eb55dea22c7dc9f5311b0c45c147c1e 6332a14dfcdeb75d970f5fb9bc0398c472ab3be2 1d3db94fe8c9316c596659a7278696394b03260b874505bf8e155f0b24d33455
GET /facOzSk.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
last-modified: Mon, 03 Mar 2025 07:37:26 GMT
etag: "4eb55dea22c7dc9f5311b0c45c147c1e"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: IAD89-P1
x-amz-cf-id: gqaEgT5OwolSLFwWJFp3MYAWU_By4FG1DsDnj7I6SC7ob9Igv9krXA==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1761974
date: Mon, 07 Apr 2025 11:55:02 GMT
x-served-by: cache-iad-kjyo7100088-IAD, cache-hel1410020-HEL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 4987, 0
x-timer: S1744026903.734541,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 3400538
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/cd25149e0584e0090f58c3bb35d949e1a108593bfeaa.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/cd25149e0584e0090f58c3bb35d949e1a108593bfeaa.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/cd25149e0584e0090f58c3bb35d949e1a108593bfeaa.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3JtmQf0MNR4KZx4ugJqS9APy59XpchGaYgKxUJlzWJSWYp5vIq9ZBqQSb24T77v2VkO0Y6pNz%2Bz7dBMBnCGOxTEoTas5OY%2B9Ay9CM65uUUlTNNJUMyLCNH%2BggIaYtiqyzg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554efdf462fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=908&x=16"
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:00 GMT
age: 3460312
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5136
x-timer: S1744026900.459550,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/fbbd6f200e2ec5da037ffa9dc7439354ffffa063263b.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/fbbd6f200e2ec5da037ffa9dc7439354ffffa063263b.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/fbbd6f200e2ec5da037ffa9dc7439354ffffa063263b.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PMCOBWzgsQTRmnZmRnxU%2FCSMCEyF4XUuqHpCSIlO8tCNfqRcz6ecMXOYhJWv%2BLUcccUIvgB%2Bk%2F6y%2BmWLpaPl83ZNS%2Bm7WmW6zXF6YPAKRTBw7fSsCs7iCyvQVd6uoeNvHg%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1dfd62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=919&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/2cec953b20e0d87ddf9618850dcb345668d14746160c.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdhDbMI2qmehwGVRieyC1FpVQLZWArAQ7Yrb2j5HSTRPnQk2TD8m1m0LtA2h%2FUUeOfBaC5HO4x8DOZzym8P7wV3JA0VW7VuH8UPBciddLNBn61VdiKkOgPCz255zjC5qfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fae1b62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=946&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 24 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, Unicode text, UTF-8 text Hash38774d7531107e5168136d6a29417c3c d72b8152d94b29ba1e59e3792e04e32d3e7b8c2e a5c9581b4dd61c10c11040c87667aedab668d253d82d0f0bea8649e8e189863a
GET /public/shared/javascript/shared_responsive_adapter.js?v=cxQV9f417bc5&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 7037
cf-ray: 92c9555108c956c7-OSL
server: cloudflare
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "OHdNdTEQflFo"
x-integrity: "sha384-5wJmM8faNzg6SLOISTO6iahH3Puy0RhF09qz9eu2aCDDH6zF6RiMyR1joGlLFB9+"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:00 GMT
age: 3460311
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5134
x-timer: S1744026900.032524,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:02 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5145
x-timer: S1744026902.087665,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c9556aebfd56cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221737
expires: Sat, 28 Mar 2026 11:55:02 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nqh75BLEo7h474dhBVMz2swBOIfn2gY2JxkVw8ReBm2Rfqb%2BLq%2BNyPdRciM7S8F%2BDzSyybGmuDmZkJiG3fDlmyshJnEfpkIc7JPAzylKVk%2FoPokFM4%2BF3LAmr99nB5il4zMdrhqV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 | 172.64.145.151 | 200 OK | 124 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeTrueType Font data, digitally signed, 18 tables, 1st "DSIG", 24 names, Macintosh, Copyright � 2012, 2017, 2020 by Plau. All rights reserved.Motiva SansMedium4.015;Plau;MotivaSans Size124 kB (124048 bytes) Hash2d64caa5ecbf5e42cbb766ca4d85e90e 147420abceb4a7fd7e486dddcfe68cda7ebb3a18 045b433f94502cfa873a39e72d616c73ec1b4c567b7ee0f847f442651683791f
GET /public/shared/fonts/MotivaSans-Medium.ttf?v=4.015 HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://steamgifts.cfd
DNT: 1
Connection: keep-alive
Referer: https://store.cloudflare.steamstatic.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:55:02 GMT
content-type: application/octet-stream
content-length: 124048
last-modified: Wed, 28 Jun 2023 04:07:10 GMT
etag: "649bb1ee-1e490"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9556dab3756c7-OSL
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4f9aa504e931e8cc56bcd8337a24bec128c42018ecd1.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/4f9aa504e931e8cc56bcd8337a24bec128c42018ecd1.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/4f9aa504e931e8cc56bcd8337a24bec128c42018ecd1.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qWYHx0DDr6lbwiJS7KhR8BI5FVLERpJ5cbp9cEx7QTFoGtLTVhU%2F21L%2B5%2FDMgRq0%2B7Qj9c1oM1fuiXowipqYc4ePGC83D8UuCUiXdJ8zCehs8vrDTGzZf7bsmfXUYzkO5A%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554ebddf62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=903&x=16"
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:00 GMT
age: 3460312
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5138
x-timer: S1744026901.816661,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/251f7d5029015255075657090c090050415472 | 104.21.27.52 | 201 Created | 53 kB |
URL POST steamgifts.cfd/251f7d5029015255075657090c090050415472 IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/105394074/ CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (344) Hash28c5ae68be2ad63e37ecf93e436640ea 8212907e294c82fe8cb843c23cb4be355f089c0c e92d5a13ca08dba45d5905accb64652e7cf60ad9d92759b0908d82f318c7665a
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
POST /251f7d5029015255075657090c090050415472 HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 56
Origin: null
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 201 Created
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
referrer-policy: no-referrer
server: cloudflare
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cf-cache-status: DYNAMIC
cf-ray: 92c9554c7c315685-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/558e884b5aaec2f05f70622f00d7aca85777388b931e.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/f308b840ae623441b7e93535ba86d8bee0a743878f79/558e884b5aaec2f05f70622f00d7aca85777388b931e.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f308b840ae623441b7e93535ba86d8bee0a743878f79/558e884b5aaec2f05f70622f00d7aca85777388b931e.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WMEcjMEPUXM31NdmwkYmHVzsTB2kQzWe%2BaPWCfwsrqCqeFa8NuTa8lHSQn3%2BGOvHHAxarGIb7ixiu3lGhLvX981bZLTr10IcVo3Uq69WsB2ajSlFeVVMfNG3qiLU%2B3r8FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554efdf862fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=910&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/1e5c5568191faa697ea1b6f35f483052f3b8b9818912.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1kmKsOnxX076aUDFvJFM47oEaeXdbBxVlYyv2sDa5O%2Bt%2FOK4%2FjujmNts%2BSgUeqa7LSsLrufAWvan761xEAXWq8Vu28WokxyPqbBx%2BpcfAgk%2FnfKgvJERBb7j7hoRZ%2BvySw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f8e1162fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=920&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/d4632ab8c3e9de30f4f6330ee8697bf08cea558ab9d9.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lWD2UmGjwcmgAig3Ya54%2F7xXEnu8b3jxTseDrry7bX0ulj7V8L10OGxbDqlYOieyY6JZdrVEwUCMBaPM3rBMo9wL7%2FgH2BFaQHVQRa3una1IEC%2BkTRmSTMoJHSEsZL0j%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fae1962fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=948&x=16"
|
|
| steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /9d326356900e57e356e160780b677a415223cd6872be/9dcb280aa613cb7d8b7552195a95650023da51deadaa.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ixEqmM%2FtmDdTkzD8VGISQ1ls1cm2ocNetVMxOPovC2blWU64KhtXuY9Iibwa4crOkHgCa3L6WT1um3F8je9TW7I8%2F7F7MasCRUhcqz8ADwxrG2Jmh%2FPeSuJmT4t8bRSruQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554fae1a62fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=964&x=16"
|
|
| store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 88 kB |
URL GET store.cloudflare.steamstatic.com/public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (536) Hash6dfb6ecb91dc490d3825a1368562c673 c682c47d5eadbc9aa5f47d0b20811abf8ccc3ca6 d79540eba04cc756955bf834f3fa3442fbd07f0d74dd10f1e46d192c2555424e
GET /public/javascript/main.js?v=wZOkh5CBgIrx&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 23516
cache-control: public,max-age=0,must-revalidate
expires: Sun, 09 Sep 2001 01:46:40 GMT
etag: "bftuy5HcSQ04"
x-integrity: "sha384-dzj3WPZOI+V8RCeEtyPv3B4aR27qYv+goA7kVzvZqYMtbLCV2zI5ou/ymInksYRz"
last-modified: Wed, 22 Apr 1970 19:32:01 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f8a356c7-OSL
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare | 172.64.145.151 | 200 OK | 169 kB |
URL GET store.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Size169 kB (169399 bytes) Hash6a39e0b509fecb928d47b8a2643fed2a f67fa6cb1d09963d10ba117d6553c8e7d5bc7863 d8bdea7fff893dbdbeaf6c2affec091a77483b9ec10e7958486bc3b6cc170c96
GET /public/javascript/prototype-1.7.js?v=.a38iP7Khdmyy&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/javascript;charset=UTF-8
content-length: 37365
cache-control: public,max-age=15552000
expires: Mon, 21 Apr 2025 16:27:22 GMT
etag: ".a38iP7Khdmyy"
last-modified: Wed, 28 Jun 2023 04:07:21 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: HIT
cf-cache-status: HIT
age: 14032619
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c95550f8ac56c7-OSL
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/1e6007a432299bbd75e40c29c8d15ec01302da2bfc77.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=myvsyKhHmjqsK%2BJkrC4iD6H0yN6RfZweC4czv%2FM%2BJQiHJhcty3fAHfK6u6%2BA31jP3nIfo709qFQrJFRBs7575JMZ4T4KlaZzg7gDnDSePGG%2BdMLTVroAfF39cR5URDf%2Fnw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554efdf262fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=909&x=16"
|
|
| steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/8ae126a3da11b9ffaca2e867eb3f11f78171c622a311.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/8ae126a3da11b9ffaca2e867eb3f11f78171c622a311.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /6b288e4964fdb9dec1322402c2d9dad1c5bc48af526c/8ae126a3da11b9ffaca2e867eb3f11f78171c622a311.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FH2hlO0ywHQV83Xq7GArVN24HPNvfEYr2w%2FJ8Tij04jbs4WF0gAXu8pZhG3dsHuLatuYkzjeliv%2BZkzGz8YmDDDFzSw6NBw%2BtrUBbCT4blv5nqeIcomd4HoV53U%2F3izo1A%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f1e0162fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=916&x=16"
|
|
| store.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png | 172.64.145.151 | 200 OK | 3.8 kB |
URL GET store.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 244 x 212, 8-bit/color RGBA, non-interlaced Hasheabc76eb57feae44add7faead028521e 4e3e53938fad15661d2d046a868338841a95db19 fc9e6260a2706ae146282d77e67bc1b74688435f8912ab4c1932641eec28bffa
GET /public/shared/images/responsive/header_menu_hamburger.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 3777
cf-ray: 92c9555108d056c7-OSL
server: cloudflare
last-modified: Wed, 28 Jun 2023 04:07:12 GMT
etag: "649bb1f0-ec1"
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 1166
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| store.cloudflare.steamstatic.com/public/images/ico/ico_facebook.png | 172.64.145.151 | 200 OK | 1.2 kB |
URL GET store.cloudflare.steamstatic.com/public/images/ico/ico_facebook.png IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hashe406e5a22e4f3cfa580d3bb57420150e 5b381e535bb0ce6003a461f3124fa1238dfbcedb 760589f903c5e9bd169b38f941f9a3dc88a23897e9cc5b622d3d91f5c204b9e4
GET /public/images/ico/ico_facebook.png HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/png
content-length: 1161
cf-ray: 92c9555118e656c7-OSL
server: cloudflare
last-modified: Wed, 06 Dec 2023 00:00:29 GMT
etag: "656fb99d-489"
access-control-allow-origin: *
x-cache: MISS
cf-cache-status: HIT
age: 6290
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/251f7d502901520d59070148.js | 104.21.27.52 | 200 OK | 53 kB |
URL GET steamgifts.cfd/251f7d502901520d59070148.js IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeUnicode text, UTF-8 text, with very long lines (53441), with no line terminators Hash92f164c88165af00e4db19d115595bc3 d5e35fa24e72bc5aa9c9da8d104c8dc57407fd21 71485d337610ba7c2481c2bb24bff97c51746fb81ea21dd10574769f248ea66d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /251f7d502901520d59070148.js HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/javascript
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yHtpZy1H1QpYf9VsQyrnd9sl9QAPSoAtmqhNmUkwbSD47t4TpRTApNh4EN2FfhrGIlZYODe7oMTuMuXElWZTVLw0RF9h9Ar6WKuPelhD375smPA4%2F8%2B3pmlY7WwKEwQLcA%3D%3D"}],"group":"cf-nel","max_age":604800}
content-disposition: inline
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
last-modified: Tue, 01 Apr 2025 09:36:18 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554ebdde62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=1015&x=16"
|
|
| steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /cc1aa468b7243d3b2a0fad9df7eda01f852cbc74972b/06915d50697fd604170e718458f7813f0581128cf506.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:57 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ll2qqmNpTRhXu7xSse4VC4G9aOqhZRUZzyZS3567SaFfCve1dyJ7FKgSnoKcEVhzsepwY5RYoQxMSUZH%2FOfXE5O9nQQAfqbTuxUGq0UtwpEY9UFOBs0dvxfVKSjfU2Kpiw%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554efdf362fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=858&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/a02c806493f5fecae4d2fb318daad1c864eca6388ff2.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EnKYWBwtN3fgOmkm%2FHqtA5JTKqyLcB%2FAAron%2BG4YxOOAad4TKNOY%2FMZ2cXuswlvK0V1k00uJZflv4ycXeWuTP4wse%2FIy2mOo2goH7UzHka%2FPzV4M6UO19wEN%2Fh1YCm5ZCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f9e1362fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=929&x=16"
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:00 GMT
age: 3460312
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5137
x-timer: S1744026901.627667,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| steamgifts.cfd/98ee32ae02d4ef647d70c46940dad727d02f7694e0e4/57c90dbd67d885cb19a9eea815ef1fc8598a3fa6da15.js | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/98ee32ae02d4ef647d70c46940dad727d02f7694e0e4/57c90dbd67d885cb19a9eea815ef1fc8598a3fa6da15.js IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /98ee32ae02d4ef647d70c46940dad727d02f7694e0e4/57c90dbd67d885cb19a9eea815ef1fc8598a3fa6da15.js HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88; timezoneOffset=0,0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:55:01 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7ZBXLMTNljcvlF1eH1l1dZNM3gwHSgnvvXd5uXmcV98TZNNxKg%2ByVLiyN408o5LQr8LMdhTQV79ivWNwk4hBSKbmg%2BDFz5XIETgmkNjqlmoEz3PywaBL3ikPe%2BN04Pm7kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c95562b85762fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=4075&x=16"
|
|
| steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/aa06ed99258189bc25a5f06589f6cd8cd349b2a7698b.css | 104.21.27.52 | 404 Not Found | 0 B |
URL GET steamgifts.cfd/33c3b641d00426137cb389ab0ecb86a62a596a227020/aa06ed99258189bc25a5f06589f6cd8cd349b2a7698b.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /33c3b641d00426137cb389ab0ecb86a62a596a227020/aa06ed99258189bc25a5f06589f6cd8cd349b2a7698b.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: application/json; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=04IbLPsTqdXGgWMF1AETBgl4dUoJIsVLSTqTqb%2FUVNdVPv1R1l4C%2F%2FZ7Kidui5UoipxfrfMDlC0EklUOO4hYua8EfB95kQXjzHvNptCwp7yuDBToA6vUQtwHuIyjZOx05w%3D%3D"}],"group":"cf-nel","max_age":604800}
content-encoding: gzip
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
etag: W/"41-0AeMVzV1pApYTMktTMxeiuYqqUg"
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
cache-control: max-age=14400
cf-cache-status: MISS
cf-ray: 92c9554eddea62fb-HAM
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=905&x=16"
|
|
| steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css | 104.21.27.52 | 503 Service Unavailable | 190 B |
URL GET steamgifts.cfd/f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css IP104.21.27.52:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectsteamgifts.cfd FingerprintC5:CA:1C:60:E1:F5:F2:B8:B2:D6:EC:E3:BC:17:DD:E5:F6:BC:07:8A ValidityWed, 02 Apr 2025 04:07:27 GMT - Tue, 01 Jul 2025 05:04:50 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash3267dd8f0e96711dd54dbb1f5676b447 202602c4ec4a5e2498e3d24a3ed025ce70bf749c b429e25e7813a9e2b90dcec11d9cb5287751246128dd6c76a7349774829c5554
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /f97d5d1316a2f97c16ee9044798b3fed32e9c87f0306/0e9b5e78dee4eed864b26e2585c24cc7156898b27513.css HTTP/1.1
Host: steamgifts.cfd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: session=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4R0NNIn0.J4NwO-g9uh47BQvaGj5m0e8eQEoUGeWR.W2fNQCsD5PjhA7HM.4VmxMw4jHHh40Z1UwtEJCckVz_DNPaaL2kL1--5MYSc9XB5mPAgMcyCX9aWIkimfIEtfjRg1y6sHcGLBL2j7aUK9D2ASlC9xP7-7-sSiS5N9Vhkg4RB3waqVhZvliV0yasjjLl6vsJw8kzU6Wiw-KMzttOGVOEVd7chRtKTlrtqSxJacq95TovsqYmO_tF_OzITZeEcdDUIHBVIkunkbW6S5VvhMJzq6LlXiHQ.Lq9bOHNQaTN21yYq2y3d7g; token=eyJhbGciOiJIUzI1NiJ9.eyJvd25lciI6MjE5LCJzZWNyZXQiOiJhZjMxZDAxZDdjZDA4OTdkZGY0YmU2ODhjNmJkZTliMCIsInNlcnZpY2UiOiJTdGVhbSJ9.2dPwvGZNmUyY1r7uOxcH0HC63NYCtY4SsXS-50mUg88
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 503 Service Unavailable
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/html
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kJKuVNgX0gzin8HBeLeOzpFN3vYDN81M110ViEHI1B9D8C4zPy3%2BVA4Skb70eJkDmi544uW%2BzUg9H4y3iL1fMjqtMSCnbf%2BT8lmrnBz3I1qG%2F15qag6lcH%2BAAbLfxjyQdw%3D%3D"}],"group":"cf-nel","max_age":604800}
cf-cache-status: BYPASS
cf-ray: 92c9554f3e0562fb-HAM
server: cloudflare
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=20618&min_rtt=16296&rtt_var=7227&sent=60&recv=70&lost=0&retrans=0&sent_bytes=5364&recv_bytes=33324&delivery_rate=177&cwnd=12000&unsent_bytes=0&cid=9b706b9425af1173&ts=920&x=16"
|
|
| store.cloudflare.steamstatic.com/public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare | 172.64.145.151 | 200 OK | 4.7 kB |
URL GET store.cloudflare.steamstatic.com/public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeASCII text, with CRLF, LF line terminators Hashcef7b240baddbbd25489ebd7ceee20a3 ceaa1258aa0e92362c79216f474f57db00178a0e 1055ab19fc7dd62ff9b62b078e97586b6485315bf0d4ca41ec1cd9684c9bdf33
GET /public/css/promo/newstore2016.css?v=zveyQLrdu9JU&l=russian&_cdn=cloudflare HTTP/1.1
Host: store.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: text/css;charset=UTF-8
content-length: 1336
cf-ray: 92c95551392456c7-OSL
server: cloudflare
cache-control: public,max-age=15552000
expires: Mon, 21 Apr 2025 17:46:16 GMT
etag: "zveyQLrdu9JU"
last-modified: Sun, 09 Sep 2001 01:46:40 GMT
content-encoding: gzip
strict-transport-security: max-age=10368000
x-cache: MISS
cf-cache-status: HIT
age: 11172259
accept-ranges: bytes
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| cdn.cloudflare.steamstatic.com/store/about/icon-steamos.svg | 172.64.145.151 | 200 OK | 1.2 kB |
URL GET cdn.cloudflare.steamstatic.com/store/about/icon-steamos.svg IP172.64.145.151:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerLet's Encrypt Subjectcloudflare.steamstatic.com FingerprintDB:07:06:4C:BE:02:55:6D:48:85:F1:3D:EC:CA:32:DF:2A:FF:7B:B7 ValidityTue, 25 Mar 2025 15:45:41 GMT - Mon, 23 Jun 2025 15:45:40 GMT
File typeSVG Scalable Vector Graphics image Hashf40a10b31b66814a8310af480adcf798 966e6c5b4f9c1eb8dc6c2554491e0dc574c70687 461851729579abba20d60c33530d3d03ab7b2ea28d532af6df09a91e15ff52cf
GET /store/about/icon-steamos.svg HTTP/1.1
Host: cdn.cloudflare.steamstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 07 Apr 2025 11:54:58 GMT
content-type: image/svg+xml
last-modified: Thu, 14 Nov 2024 00:19:00 GMT
etag: W/"673541f4-4c7"
cf-cache-status: HIT
age: 4513
vary: Accept-Encoding
server: cloudflare
cf-ray: 92c9555128fd56c7-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js | 104.17.24.14 | 200 OK | 88 kB |
URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP104.17.24.14:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerGoogle Trust Services Subjectcdnjs.cloudflare.com Fingerprint5D:9B:5B:BE:24:B7:4B:CA:F3:05:47:2F:AB:3F:3C:F7:4E:C3:4D:BC ValidityMon, 24 Mar 2025 12:00:12 GMT - Sun, 22 Jun 2025 13:00:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 07 Apr 2025 11:55:00 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
cf-ray: 92c95560782456cc-OSL
server: cloudflare
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 221735
expires: Sat, 28 Mar 2026 11:55:00 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rjalM4CX77%2FAxkd4cJjzzgCbYT86qzgGNDvqUofQN1eiUkicYvyca%2BuWUkZiyMIqLEwd8hMPv2cCjl%2FpXgN6bwYXRFOdGZq6P2oYeoOkauzr0nPLAU6HX7hroaPBSSUs6UGN1oVE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5140
x-timer: S1744026901.220115,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
| code.jquery.com/ui/1.11.3/jquery-ui.js | 151.101.130.137 | 200 OK | 470 kB |
URL GET code.jquery.com/ui/1.11.3/jquery-ui.js IP151.101.130.137:443
Requested byhttps://steamgifts.cfd/251f7d5029015255075657090c090050415472 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintCD:B5:6E:05:85:0C:5A:AE:47:12:80:2A:5B:C6:E5:8F:11:72:E2:B5 ValidityTue, 25 Jun 2024 00:00:00 GMT - Wed, 25 Jun 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (547) Size470 kB (469790 bytes) Hashc811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e
GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 07 Apr 2025 11:55:01 GMT
age: 3460313
x-served-by: cache-lga21958-LGA, cache-hel1410032-HEL
x-cache: HIT, HIT
x-cache-hits: 456, 5143
x-timer: S1744026902.760174,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2
|
|
0.0.0.0