Overview

URL https://s3.us-east-2.amazonaws.com/58714/index.html
IP52.219.84.19
ASN
Location United States
Report completed2017-07-18 01:31:37 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Refererfbi.gov
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-07-18 2 getgiftcards.org/resources/plugins.js Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 52.219.84.19


Last 10 reports on ASN:

Date UQ / IDS / BL URL IP
2017-07-22 16:32:39 +0200
0 - 0 - 1 www.aymen-soft.com/adjunct.php 164.132.235.17
2017-07-22 16:31:04 +0200
0 - 0 - 1 dgotdjqcnz.onlinemarketinvoice.com/ 89.223.31.34
2017-07-22 16:30:30 +0200
0 - 0 - 15 https://www.beautyonrose.com.au/product/evoucher/ 103.209.153.2
2017-07-22 16:30:18 +0200
0 - 0 - 14 eyupsultan.gen.tr/ 185.131.50.244
2017-07-22 16:26:12 +0200
0 - 1 - 0 stretch-chenille.viglshop.com/5520-Pfirst-Ser (...) 68.66.194.91
2017-07-22 16:25:18 +0200
0 - 0 - 0 https://www.facebook.com/events/1384547864956828/ 157.240.14.35
2017-07-22 16:24:13 +0200
0 - 0 - 1 osnascimentos.com/ 173.212.212.25
2017-07-22 16:24:01 +0200
0 - 1 - 0 www.aspeera.it/chi-sono/ 77.104.189.34
2017-07-22 16:21:58 +0200
0 - 1 - 0 gtd.pw/ 89.223.29.112
2017-07-22 16:21:42 +0200
0 - 0 - 0 https://www.facebook.com/events/1915397922070440 157.240.18.35

No other reports on domain: .



JavaScript

Executed Scripts (3)


Executed Evals (1)

#1 JavaScript::Eval (size: 6938, repeated: 1) - SHA256: bc091109cc6d484f34b0795e6f3551e5345806ce5c71d6de37cb275da2ad6f36

                                        $(document).ready(function() {
    logo = $('#logo');
    title = $('#intro');
    sky = $('#sky');
    coatClosed = $('#background svg #Closed');
    coatOpened = $('#background svg #Opened');
    page = $('#page');
    wrapper = $('#wrapper');
    inner = $('#inner');
    gboverlay = $('#gboverlay');
    close = $('#gbclose');
    gbmouse = $('#gbmouse');
    generatorbox = $('#generatorbox');
    gblogo = $('#genlogo');
    statustext = $('#statustext');
    progress = $('#sbcomplete');
    code = $('#genreturn');
    wholder = $('#widgetholder');
    whcontent = $('#whcontent');
    man = $('#background');
    content = false;
    video = false;
    giftcard = $('.gcard');
    homecard = $('.home-card');
    scrolldown = $('#scrolldown');
    if ($('body').attr('video') == '1') {
        video = true
    }
    ts = 600;
    as = 400;
    ae = 'easeInOutQuad';
    psMin = as;
    psMax = 2000;
    psLongMin = 8000;
    psLongMax = 12000;
    canClose = false;
    var style = $('<style>#genreturn .active { color: ' + $('body').attr('color') + '; }</style>');
    $('html > head').append(style);
    $(window).resize(function() {
        winW = $(window).width();
        winWMax = 0.5 * winW;
        desktop = (winW > 768) ? true : false
    });
    $(window).trigger('resize');
    menu = false;
    canMenu = true;
    menuTrigger = $('#menu-trigger');
    menuHolder = $('#menu');
    menuItem = $('.menu');
    menuTrigger.click(function() {
        if (!menu && canMenu) {
            menu = true;
            menuTrigger.addClass('close');
            inner.addClass('hidden');
            menuHolder.velocity({
                height: '100%',
                opacity: 0
            }, 0).velocity({
                opacity: 1
            }, 400, ae);
            menuItem.velocity('stop').velocity({
                translateY: 500,
                opacity: 0
            }, 0);
            menuItem.each(function(i) {
                $(this).delay(i * 50).velocity({
                    translateY: 0,
                    opacity: 1
                }, 400, 'easeOutQuad')
            })
        } else if (menu && canMenu) {
            menu = false;
            menuTrigger.removeClass('close');
            inner.removeClass('hidden');
            menuHolder.velocity({
                opacity: 0
            }, 400, ae, function() {
                menuHolder.css({
                    height: 0
                })
            })
        }
    });
    $(window).scroll(function() {
        var delta = $(window).scrollTop();
        if (desktop) {
            logo.velocity({
                translateY: -delta * 0.7
            }, {
                duration: 0,
                queue: false
            });
            title.velocity({
                translateY: -delta * 0.5
            }, {
                duration: 0,
                queue: false
            });
            scrolldown.velocity({
                opacity: Math.max(1 - (delta / 200), 0),
                translateY: delta * 0.3
            }, {
                duration: 0,
                queue: false
            });
            sky.velocity({
                translateY: delta * 0.45
            }, {
                duration: 0,
                queue: false
            });
            if (delta > 150 && !content) {
                content = true;
                page.velocity('stop').velocity({
                    opacity: 1
                }, 400, ae);
                giftcard.velocity({
                    rotateZ: '5deg'
                }, 200, ae).velocity({
                    rotateZ: '-5deg'
                }, 200, ae).velocity({
                    rotateZ: '0deg'
                }, 200, ae);
                homecard.velocity({
                    rotateZ: '5deg'
                }, 200, ae).velocity({
                    rotateZ: '-5deg'
                }, 200, ae).velocity({
                    rotateZ: '0deg'
                }, 200, ae);
                coatOpened.velocity('stop').velocity({
                    opacity: 1
                }, 200, ae);
                coatClosed.velocity('stop').velocity({
                    opacity: 0
                }, 200, ae)
            } else if (delta <= 150 && content) {
                content = false;
                page.velocity('stop').velocity({
                    opacity: 0
                }, 100, ae);
                coatOpened.velocity('stop').velocity({
                    opacity: 0
                }, 200, ae);
                coatClosed.velocity('stop').velocity({
                    opacity: 1
                }, 200, ae)
            }
        } else {
            man.velocity({
                translateX: Math.max(-delta / 1.5, -winWMax)
            }, {
                duration: 0,
                queue: false
            });
            if (delta > winWMax * 1.5 && !content) {
                content = true;
                page.velocity('stop').velocity({
                    opacity: 1
                }, 400, ae);
                coatOpened.velocity('stop').velocity({
                    opacity: 1
                }, 200, ae);
                coatClosed.velocity('stop').velocity({
                    opacity: 0
                }, 200, ae)
            } else if (delta <= winWMax * 1.5 && content) {
                content = false;
                page.velocity('stop').velocity({
                    opacity: 0
                }, 100, ae);
                coatOpened.velocity('stop').velocity({
                    opacity: 0
                }, 200, ae);
                coatClosed.velocity('stop').velocity({
                    opacity: 1
                }, 200, ae)
            }
        }
    });
    giftcard.click(function(e) {
        e.preventDefault();
        canMenu = false;
        menuTrigger.velocity({
            opacity: 0
        }, 400, ae).delay(400).css({
            display: 'none'
        });
        $('#widgetholder').append('<iframe src="' + $('#widgetholder').attr('whsrc') + '" style="width: 100%; height: 100%;"></iframe>');
        inner.addClass('hidden');
        gboverlay.css({
            display: 'block'
        });
        setTimeout(function() {
            generatorbox.addClass('show');
            if (canClose) {
                gbClose(true)
            } else {
                cantClose()
            }
            startGenerate()
        }, ts / 2)
    });

    function cantClose() {
        gbmouse.click(function(e) {
            gboverlay.addClass('noclick');
            setTimeout(function() {
                gboverlay.removeClass('noclick')
            }, 150)
        })
    }

    function startGenerate() {
        level1 = $('#hacklines .level1');
        level2 = $('#hacklines .level2');
        level3 = $('#hacklines .level3');
        sbLength = $('#statusbar').width();
        statustext.html(level1.eq(0).html());
        progress.css({
            width: 0
        });
        level = 0;
        generateLevel1()
    }

    function generateLevel1() {
        var duration = Math.random() * (psMax - psMin) + psMin;
        var pWidth = ((sbLength / 2) / level1.length) * (level + 1);
        pWidth = (pWidth / sbLength) * 100;
        progress.velocity({
            width: pWidth + '%'
        }, duration, 'linear', function() {
            if (level >= level1.length - 1) {
                $('#sbcirca2, #step2').addClass('active');
                changeText(level2.eq(0).html());
                generateLevel2()
            } else {
                level += 1;
                changeText(level1.eq(level).html());
                generateLevel1()
            }
        })
    }

    function generateLevel2() {
        generatorbox.addClass('big');
        code.addClass('active');
        gcParts = code.attr('format').split('-');
        sTimer = setInterval(function() {
            code.html(shuffleText(gcParts, false))
        }, 50);
        var pWidth = sbLength;
        var duration = Math.random() * (psLongMax - psLongMin) + psLongMin;
        progress.velocity({
            width: '100%'
        }, duration, 'linear', function() {
            $('#sbcirca3, #step3').addClass('active');
            if (!video) {
                changeText(level3.eq(1).html());
                gblogo.addClass('hide');
                setTimeout(function() {
                    wholder.addClass('show')
                }, 600)
            }
            changeText(level3.eq(0).html());
            clearInterval(sTimer);
            code.html(shuffleText(gcParts, true));
            setTimeout(function() {
                code.find('span.final').addClass('active')
            }, 10)
        })
    }

    function shuffleText(tParts, tFinal) {
        var chars = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXTZ";
        var tCode = '';
        for (var j = 0; j < tParts.length; j++) {
            var stringRandom = '';
            for (var i = 0; i < tParts[j].length; i++) {
                var rnum = Math.floor(Math.random() * chars.length);
                stringRandom += chars.substring(rnum, rnum + 1)
            }
            if (tFinal) {
                if (video) {
                    if (j === 0) {
                        tCode += '<span class="final">' + stringRandom + '</span>'
                    }
                    if (j !== 0) {
                        tCode += '-<span class="final">' + stringRandom + '</span>'
                    }
                } else {
                    if (j === 0) {
                        tCode += '<span class="final">' + stringRandom + '</span>'
                    } else if (j > 0 && j < (tParts.length - 1)) {
                        tCode += '-<span class="final">' + stringRandom + '</span>'
                    } else if (j == (tParts.length - 1)) {
                        tCode += '-<span>' + tParts[tParts.length - 1] + '</span>'
                    }
                }
            } else {
                if (j === 0) {
                    tCode += '<span>' + stringRandom + '</span>'
                }
                if (j !== 0) {
                    tCode += '-<span>' + stringRandom + '</span>'
                }
            }
        }
        return tCode
    }
    unlockCode = function() {
        $('#genreturn span').each(function() {
            if (!$(this).hasClass('final')) {
                var string = code.attr('format').split('-');
                string = string[string.length - 1];
                var chars = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXTZ";
                var tCode = '';
                var stringRandom = '';
                for (var i = 0; i < string.length; i++) {
                    var rnum = Math.floor(Math.random() * chars.length);
                    stringRandom += chars.substring(rnum, rnum + 1)
                }
                $(this).html(stringRandom).addClass('active')
            }
        })
    };

    function changeText(text) {
        statustext.velocity({
            opacity: 0
        }, as / 2, ae, function() {
            statustext.html(text);
            statustext.velocity({
                opacity: 1
            }, as / 2, ae)
        })
    }
});
$(window).load(function() {
    $('#page').css({
        opacity: 0
    });
    $('#background svg #Opened').css({
        display: 'block',
        opacity: 0
    });
    $('#background svg #Closed').css({
        display: 'block',
        opacity: 1
    });
    $('#menu-trigger').velocity({
        opacity: 0
    }, 0).delay(500).velocity({
        opacity: 1
    }, 300, ae);
    $('#wrapper').velocity({
        translateY: 500,
        opacity: 0
    }, 0).velocity({
        translateY: 0,
        opacity: 1
    }, 500, 'easeOutQuad', function() {
        $('#wrapper').addClass('loaded')
    });
    $('#intro').velocity({
        translateY: 150
    }, 0).velocity({
        translateY: 0
    }, 500, 'easeOutQuad');
    $('#background').velocity({
        translateY: 400
    }, 0).velocity({
        translateY: 0
    }, 500, 'easeOutQuad')
});
                                    

Executed Writes (0)



HTTP Transactions (16)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 23:31:04 GMT
Etag: "596ced1d-1d7"
Expires: Mon, 24 Jul 2017 11:31:04 GMT
Last-Modified: Mon, 17 Jul 2017 17:00:13 GMT
Server: ECS (arn/459D)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    aa2e28e252db8543074bf5a88b50c420
Sha1:   ba694664c6c4e8d9886f51c1c10f0d357aadac92
Sha256: 3254f276ee85b6f2dad10fa0347e62021c9bb351538503e8b9a048ba14d2f414
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: public, max-age=172800
Date: Mon, 17 Jul 2017 23:31:04 GMT
Etag: "596d0013-1d7"
Expires: Mon, 24 Jul 2017 11:31:04 GMT
Last-Modified: Mon, 17 Jul 2017 18:21:07 GMT
Server: ECS (arn/459B)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a73dc082952dce5e2367c85886c5b728
Sha1:   78e08959b16151bdcfa1ce0ab1f4dd3010d1ba59
Sha256: e0058d50d3497d718535df1092cef1d28bd4930854df752795a411a7440f3443
                                        
                                            GET /58714/index.html HTTP/1.1 
Host: s3.us-east-2.amazonaws.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: fbi.gov

                                         
                                         52.219.84.19
HTTP/1.1 200 OK
Content-Type: text/html
                                        
x-amz-id-2: uXGwm75t+zC17Msc5R8NNYiEAV0l4TYnYCYIYXpaOAL+ze0fnq+L5WI2Sm9KR9OT+NYIzFrs5Uw=
x-amz-request-id: 7C0DC84D7798EE46
Date: Mon, 17 Jul 2017 23:31:05 GMT
Last-Modified: Mon, 17 Jul 2017 18:40:39 GMT
Etag: "3c08b02dd04d8c7452302c3158f20f38"
Accept-Ranges: bytes
Content-Length: 139
Server: AmazonS3


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   139
Md5:    3c08b02dd04d8c7452302c3158f20f38
Sha1:   3976871c1eaade74627e6546c9118c269bc65968
Sha256: 121ad686ea19e939ba49a340f873ff32ce26e5f6cfb0d30867f73c08e2584457
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: s3.us-east-2.amazonaws.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.219.84.19
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: C6BE10FA1789CC82
x-amz-id-2: YS8w5Ymh6KvcUaJyMruC1Gl6d+IQGPFXJ8WcsLW5dtR8tJAInKGBRB/XH7KYn4iT99p8MSIOjFQ=
Transfer-Encoding: chunked
Date: Mon, 17 Jul 2017 23:31:04 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML document text
Size:   243
Md5:    bd636ca27efb023e673a321db3d70575
Sha1:   780c8843a09557cbaf39bbd30b7f4f74c420da17
Sha256: ef74d4b506c398c17b4b04d002921206612eb6040ee3f563001718a186fa6d9d
                                        
                                            GET /12778/ HTTP/1.1 
Host: giftcardrebel.co
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.143.119
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 17 Jul 2017 23:31:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d938596ba43eb2ec82c2310db07ebad2a1500334264; expires=Tue, 17-Jul-18 23:31:04 GMT; path=/; domain=.giftcardrebel.co; HttpOnly
Vary: Accept-Encoding
X-Turbo-Charged-By: LiteSpeed
Server: cloudflare-nginx
CF-RAY: 3800fe2387864261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   29849
Md5:    4d6e2dc21ed563899656fc3efd34762f
Sha1:   3ee3b8100175656c04097eebfe5dcff74fc3b754
Sha256: 05712dbfb3ce41a541a45358fec2f0cda386033de59ba93bda2bc00ce82d62e4
                                        
                                            GET /css?family=Open+Sans:400,600 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giftcardrebel.co/12778/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 17 Jul 2017 23:31:05 GMT
Date: Mon, 17 Jul 2017 23:31:05 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   184
Md5:    9e5617b6e29b5744c8ae542438614c70
Sha1:   19645890ec5f5df3cd679d5af9c129c984b7e143
Sha256: 0ed506ab55a2b07772388a7bf8330a0ff814a034e716be12a76bb39a941b10ae
                                        
                                            GET /css?family=Oswald:700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giftcardrebel.co/12778/

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 17 Jul 2017 23:31:05 GMT
Date: Mon, 17 Jul 2017 23:31:05 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   181
Md5:    e4de594f26f685cfe2701b723a776913
Sha1:   3a9e41b2be30ab3ca8ee3379334766f0d2d92353
Sha256: 10b77432dcf4c0ee1630218478079c5ca61b93ad66374fc4b0cc29fa3081e401
                                        
                                            GET /s/opensans/v14/cJZKeOuBrn4kERxqtaUH3fY6323mHUZFJMgTvxaG2iE.eot HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Open+Sans:400,600
Origin: http://giftcardrebel.co

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/eot
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 14973
Date: Wed, 14 Jun 2017 16:48:52 GMT
Expires: Thu, 14 Jun 2018 16:48:52 GMT
Last-Modified: Wed, 14 Jun 2017 16:46:32 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Age: 2875333


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   14973
Md5:    ed7e474e3db4000b23b8772cec02d747
Sha1:   0fd9fa742304e4fb1e61a8898ce721b1aaa7ce70
Sha256: 595ae4a916fcf0bdecae157dba52a07c59967f2f12b1e9b077071b50409f3bef
                                        
                                            GET /gih1Rf7.png HTTP/1.1 
Host: i.imgur.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         151.101.84.193
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Sun, 18 Sep 2016 00:14:16 GMT
Etag: "346c7537268d5f640b56aafc0fb82408"
Fastly-Debug-Digest: 520cc7d13af0ed0502c14598d2e13648c3c7b3e1d64354e33d2225e6f950ca69
Cache-Control: public, max-age=31536000
Content-Length: 12876
Accept-Ranges: bytes
Date: Mon, 17 Jul 2017 23:31:05 GMT
Age: 988833
Connection: keep-alive
X-Served-By: cache-iad2142-IAD, cache-bma7025-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1500334265.098416,VS0,VE1
Vary: Accept, Accept
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0


--- Additional Info ---
Magic:  PNG image, 192 x 192, 8-bit/color RGBA, non-interlaced
Size:   12876
Md5:    346c7537268d5f640b56aafc0fb82408
Sha1:   e88a06d034290d793d7b45012cccc27ebbe70459
Sha256: b2b33d879cd5b028b9049bca8bf2a0a2b6e23c088efa66fa2cde8c2b40f47697
                                        
                                            GET /s/oswald/v13/bH7276GfdCjMjApa_dkG6fY6323mHUZFJMgTvxaG2iE.eot HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://fonts.googleapis.com/css?family=Oswald:700
Origin: http://giftcardrebel.co

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: font/eot
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Date: Tue, 09 May 2017 10:35:43 GMT
Expires: Wed, 09 May 2018 10:35:43 GMT
Last-Modified: Tue, 14 Feb 2017 18:22:59 GMT
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000
Content-Length: 17783
Age: 6008122


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17783
Md5:    7a44d8576817408e5eb47a6ce48904c8
Sha1:   0f6e5fb3d319a51df5e8a1af0cbe3b0c09911bde
Sha256: cc52da98d92abf0ac758c4642c423a42018d51b3210a96e6d0dcdf7e7db1f4f7
                                        
                                            GET /resources/plugins.js HTTP/1.1 
Host: getgiftcards.org
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giftcardrebel.co/12778/

                                         
                                         104.18.32.2
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Mon, 17 Jul 2017 23:31:05 GMT
Content-Length: 16052
Connection: keep-alive
Set-Cookie: __cfduid=d92ab1f05b3b02e433f91d87094fbc4d01500334265; expires=Tue, 17-Jul-18 23:31:05 GMT; path=/; domain=.getgiftcards.org; HttpOnly
Cache-Control: public, max-age=604800
Expires: Mon, 24 Jul 2017 23:31:05 GMT
Last-Modified: Fri, 13 Jan 2017 21:58:48 GMT
Content-Encoding: gzip
X-Turbo-Charged-By: LiteSpeed
CF-Cache-Status: HIT
Accept-Ranges: bytes
Server: cloudflare-nginx
CF-RAY: 3800fe27c29242c1-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   16052
Md5:    a12e79fc03b1c448c2ad1eab5542b4b6
Sha1:   c0296f38910ff6b560371c1afc42365d93720ff3
Sha256: 90a45cb4a7a0c4213633a236407fba4f4f7886c44376c6e35bd05d35e0a164b8

Alerts:
  Blacklists:
    - fortinet: Phishing
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 17 Jul 2017 23:31:06 GMT
Expires: Fri, 21 Jul 2017 23:31:06 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    e3a50e6d79fb63c4bc7d26b28e263c54
Sha1:   0113d82fd188c2d2e80a8169d5ba2d3a06f1fb98
Sha256: f2874059a51916c03cf74e54a31c9d7fe6192b1924b97105b99a05cf02f1eae0
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=597499, public, no-transform, must-revalidate
Last-Modified: Mon, 17 Jul 2017 21:26:55 GMT
Expires: Mon, 24 Jul 2017 21:26:55 GMT
Date: Mon, 17 Jul 2017 23:31:06 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    b74a9fb9df25cd77adb7de7c3b01c5a8
Sha1:   9cca9c1b29d2e8799dec26692bae98dfaee30613
Sha256: d42cc04177856308d60126391d46ba858e4c86a44b73d248c385d28441754ea2
                                        
                                            GET /ajax/libs/jquery/1.11.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://giftcardrebel.co/12778/
If-Modified-Since: Tue, 13 May 2014 02:26:31 GMT

                                         
                                         216.58.209.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33434
Date: Mon, 17 Jul 2017 18:52:01 GMT
Expires: Tue, 17 Jul 2018 18:52:01 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 16745
Alt-Svc: quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33434
Md5:    e4bb941e9945e6b8fc2c91584e0545e2
Sha1:   8ac8f5fbba79ab93ff34041cf41ed30b0487354d
Sha256: d5aef23e26c649450ee31e6d65fe05937d337e1e91efdc884893e9f2b1e89971
                                        
                                            GET /gih1Rf7.png HTTP/1.1 
Host: i.imgur.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
If-None-Match: "346c7537268d5f640b56aafc0fb82408"

                                         
                                         151.101.84.193
HTTP/1.1 304 Not Modified
                                        
Date: Mon, 17 Jul 2017 23:31:07 GMT
Cache-Control: public, max-age=31536000
Etag: "346c7537268d5f640b56aafc0fb82408"
Age: 2195725
Connection: keep-alive
X-Served-By: cache-bma7025-BMA
X-Cache: HIT
X-Cache-Hits: 1
X-Timer: S1500334268.816919,VS0,VE1
Vary: Accept, Accept
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: s3.us-east-2.amazonaws.com
                                        
User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET CLR 2.0.50727)
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         52.219.84.19
HTTP/1.1 403 Forbidden
Content-Type: application/xml
                                        
x-amz-request-id: FEBFD032E75B4E31
x-amz-id-2: glg/YrdXE3nSbrO8TliF5w6Q1Eg1XnDhIee1uuh/I0zLsRkt3uoLfdyBwRUUBQ9R9CojHna0vqs=
Transfer-Encoding: chunked
Date: Mon, 17 Jul 2017 23:31:07 GMT
Server: AmazonS3


--- Additional Info ---
Magic:  XML document text
Size:   243
Md5:    80de330aaec2ba930318d8abe229a22f
Sha1:   9a403d6da841925bd55027882f5b94b85d149f48
Sha256: 93d17678f30f66e864cab15fc5d4b1f4d08c84af3a74f0b801fb716cd6c4d76c