Report - gfstrck.com/?a=244839&c=381589&oc=220795&sr=t&s2=UgfCNiYzxf59QMsLuEkVbJ&ref=gdmtrck.com&vt=1714131281899&h=a01674f2b723f096bb4fb3ee5ebcce80b74398fd&req=https://gdmtrck.com/?a=244839&c=381589&co=303619&mt=18&s2=UgfCNiYzxf59QMsLuEkVbJ&s2=UgfCNiYzxf59QMsLuEkVbJ&co=303619&mt=18&sip=107.178.194.37&sh=7704b4277bc8445a0fb2463b80c12a1daffc7cc1

Report Overview

Submitted URL
gfstrck.com/?a=244839&c=381589&oc=220795&sr=t&s2=UgfCNiYzxf59QMsLuEkVbJ&ref=gdmtrck.com&vt=1714131281899&h=a01674f2b723f096bb4fb3ee5ebcce80b74398fd&req=https://gdmtrck.com/?a=244839&c=381589&co=303619&mt=18&s2=UgfCNiYzxf59QMsLuEkVbJ&s2=UgfCNiYzxf59QMsLuEkVbJ&co=303619&mt=18&sip=107.178.194.37&sh=7704b4277bc8445a0fb2463b80c12a1daffc7cc1
IP
99.80.182.52
ASN
#16509 AMAZON-02
Submitted
2024-04-26 11:35:43
Access
public
Website Title
RewardsGiant
Final URL
www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=&bckm=1
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
74

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.rewardsgiant-au.com	756008	2021-10-22	2022-06-02	2024-04-15	34 kB	1.3 MB	172.67.193.235
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	2.9 kB	142 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-26	7.5 kB	157 kB	142.250.74.163
www.cdn925.com	85523	2014-09-25	2014-10-07	2024-04-18	471 B	17 kB	104.16.246.135
gfstrck.com	unknown	2015-12-02	2015-12-15	2024-04-17	793 B	4.2 kB	54.171.223.44
www.clicken.us	53939	2015-11-04	2017-01-29	2024-04-15	571 B	1.6 kB	104.16.243.248
ratrck.com	unknown	unknown	2014-11-04	2023-03-17	1.7 kB	2.1 kB	52.2.48.141
challenges.cloudflare.com	unknown	2009-02-17	2021-10-20	2024-04-25	1.7 kB	42 kB	104.17.3.184

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed
2024-04-26	medium	rewardsgiant-au.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (115)

	URL	Size	First Seen	Last Seen
	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	1.1 kB	2024-04-26	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:16 Last Seen2024-04-29 08:51:21 Times Seen3 Hash 37301598c7f995c469e01b7b611ccc1c 26c9eed759c9445f7526ea93140ea715c2ab139b e13bd631c2c8696502a399bd23a89ca901e2b28362f48cc000789535776b3c9a Loading...

	www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js	93 kB	2023-03-07	2024-05-02
Pretty URL www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:02 Last Seen2024-05-02 08:10:18 Times Seen1459 Hash cfa9051cc0b05eb519f1e16b2a6645d7 149b5180cb9de3f646fc26802440a6ac6e758d40 f23d4b309b72743aa8afe1f8c98a25b3ee31246fa572c66d9d8cb1982cae4fbc Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	46 B	2024-04-26	2024-04-26
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash dabccb8fe61a6a5f2c45be044e0c657b 961d7abc8bf4a5ec4c23b09beaf065b4c6c83d09 676a67d12157092f17f5eb3e39b7144bff808375588870c1d537f2833875f0c5 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	4.5 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 00d624203f35709b0bb39ea7c4f0a3c9 84c8056e8e258a97b6db4e33e9b86746d6b75b82 bfc41145023d2a20722e3cf45f6328de90c1ca8f03a72b118a00db75a8d8b9b6 Loading...

	www.rewardsgiant-au.com/JS/jquery.colorbox-min.js	32 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/JS/jquery.colorbox-min.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:22 Times Seen361 Hash 67ecd5ef68ad2bbdc89f673355ec270a 537e4d4873e8608139087d5e7d1e94a0a33e29e0 1e8cdf8b6b76616f6e721a0f53dfab323db16cc7eddfd7136135c5d5382ff126 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	6.3 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 3b091549c13d3600f2d18ac964f34d9a 820d7b519caad3061cf26db151f9eae7a14e6fb2 2e106dc7e60ca1b33de9ed6b7699de1e3bddcdad573fca2b44d9adbdba55cc08 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	1.8 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen159 Hash b83c59a8b836c74064e2e9acf996a4b0 69d8052f9175acb0958dce6c9721bb0e2da1ea83 e8df9be207c8e7ff36b16aeb0ea37925967aa75e1b38fae0bb25db38f576b133 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	646 B	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen149 Hash d6886997ce33c3e1e9fc9d39a556960d c73cd86d5301b011a8119e93ab7a00653a27958d 2365933b01b8830027a99421d0aa792dfe28809e6f71cbe24918eb546fca0b32 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	18 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 23c0af1354646d4f2fb49d81254e77ed 4f138d91d0045f2f9a57085ec3669836255776bb 14421e581143ef45172208caaf30f132e0c94a6442574c3d04da47febb9859eb Loading...

	www.rewardsgiant-au.com/JS/ExternalLibrary.js	89 kB	2023-12-03	2024-04-29
Pretty URL www.rewardsgiant-au.com/JS/ExternalLibrary.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 21:47:31 Last Seen2024-04-29 08:51:21 Times Seen11 Hash a0fcb1e84475555d6caad19525b80baa d77ec9ded1346def7eae0e39066bdaa45b1d2f8b 08df5aba5d37081623323bbe7a300c06b0362b4a75e81cb0860c689df6832e13 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	9.2 kB	2023-04-22	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-22 17:30:24 Last Seen2024-04-29 08:51:21 Times Seen9 Hash 610f29d4c8dfe20fc72b1c1f004e76ad 69ad4c036d7adc20185698d7db913a5e9c8b8815 478a5c326e9edd1863023e8911c7acee4953f76ee3d968acc3cd254129a34ffa Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	1.9 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 979c50ca4f31342abc3f5ac8ae5f9eee 69bb44869626d8c642eefd5b33bfe5636ed4f031 5cb7ad19375e3693e033b0b7aab265d49e99c5a05aac76df9b7ef9bba45ea5c0 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	2.3 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 4ded9e6aa85166e90efba57ba9d4573f 7bd209d174c70ca5296fa0dd1903f634ac14692d 47d26abeca18317f8b9e4d1aae0c0f89306e810c6303aee602ba1c9327227614 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	527 B	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen83 Hash 8f4607c1ba3dba0149c399ff2838a505 d55d8471cef901608c3e0bad81fb9bc84239d2bc a163248a456f53202c21531e5d2cf40a4d7dccbdfa67c5e705d9f816790678f5 Loading...

	www.rewardsgiant-au.com/JS/SystemConvert.js	28 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/JS/SystemConvert.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen243 Hash f8ae27ad216f5fcec6e2bfec7db1a0ae 05740d5fd30364438880fc9b5d97169c45238bde f758cf71bff52e983f82b4643f230a8adfec570eca671bc1c06011e747f66c52 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	476 B	2024-04-26	2024-04-26
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash d217dc8261914290ac06b382dfb97cb3 317d4ec3409941aed96a7ec381bda8a3b7d3efe5 dfbbf86db18a01ffd888a3d7f819dcf9dc59a12b58696b2b53b79e1c486af1c6 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	340 B	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen8 Hash 0cb462727ad4260e95155c2a24d022ea 5ee74a804f9ed62eecb2de53e12b27877bde08b2 92cfd0fae71c52b58f52f9ddd6c79b964594926f4805f2ffda958e2231282409 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	753 B	2024-04-26	2024-04-26
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash abb26ea924403825925c2f8a6da2747e b59b8cbc006303e69ac90405bee47debf02d5d52 aafdb4656727f6e34dcad6c4a83fc9f166bf90045aec31fc72823ab1ead7b3e2 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	759 B	2024-04-26	2024-04-26
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash fd007b4effdb14e09c74c32ca1d12d20 60ceb644cc7b3c0a11f43896bcd69fbdcf59024a 7e9c8edba1ad060596ca1d5e6c0f4f599a06c426561cb1ff8a9f5033dc9cb665 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	842 B	2024-04-26	2024-04-26
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 163f05f919c656cde37f8d319bf39bea 79291372d084bf618af9c8903bc6e9f42dfac478 d86228bd9024b89de660242115e4d81e0d62e5b8a47bf22799358e33047716b9 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	389 B	2023-05-06	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-06 10:01:58 Last Seen2024-04-29 08:51:21 Times Seen12 Hash ff27b318b730340ea0b705cd74a73fe0 dcd2e941966445ebcd14a49eaa663f83cdbf6957 64e77cb56a04201d9bac200c11e29e11755d0b650990e17aa227082b14e785ba Loading...

	www.rewardsgiant-au.com/JS/InternalLibrary.js	110 kB	2023-12-03	2024-04-29
Pretty URL www.rewardsgiant-au.com/JS/InternalLibrary.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 21:47:31 Last Seen2024-04-29 08:51:21 Times Seen11 Hash f31f03e4809d2a547cd0f4abe0db14b0 0b06c564563d7565915b33fffe3184a93a87a728 a65f9feb4704820e6e9d327e7abc4e41f8d076614776188295d504eff6a5790e Loading...

	www.rewardsgiant-au.com/JS/jquery.autotab.js	8.8 kB	2023-03-07	2024-04-29
Pretty URL www.rewardsgiant-au.com/JS/jquery.autotab.js IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42:02 Last Seen2024-04-29 08:51:21 Times Seen272 Hash 09a4820a206e5bba1fa0e585deb93811 bd2a6ffaf9c19bd76bed51c667a5332a105e1dcf d0401ccef3aad28475290a3540dcbf35cf798e414d9b6cc612dba8731bd0ea51 Loading...

	www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc=	0 B	2023-03-07	2024-05-06
Pretty URL www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-06 15:24:43 Times Seen37379321 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=	2.0 kB	2023-12-03	2024-04-29
Pretty URL www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= IP 172.67.193.235 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-03 21:47:31 Last Seen2024-04-29 08:51:21 Times Seen11 Hash 927ad14708cd92152201480ede2571dd c4caaa322a68c5fa63639287ac1ceabf99342ab0 d36c967933977b60eded9659fb68fdbaff6b268c0610a5dd04ab75f041675642 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2be43bfe9679d332fd29bac619812fb0	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 2be43bfe9679d332fd29bac619812fb0 14fc14d4304ee4d9415dcbd9512793606013e446 4143f6b72d6c3e35ed519e12a7a2d2673e10237c0e42c1777bb6d3f9e3ab4e05 Loading...

	#2 Eval - 4fbdd12835dd274c307ee42cc1a9b9d2	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 4fbdd12835dd274c307ee42cc1a9b9d2 afcacfb8b3784080bd6545c2f0338ded209c09e8 bbfec95f45ef9470f6e6615f1d3df9471f6424ec292940ca2e383c90b813ee60 Loading...

	#3 Eval - c77e53dff93023fc73ace2d3b83fa18f	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash c77e53dff93023fc73ace2d3b83fa18f 404a20e0a05f95e38fb88735c9cc6614421e1cf9 4c12718c80dcf7223af5aa6e7263efbe94773f6e244da2d901f18c1bd7115574 Loading...

	#4 Eval - 4234072c4823d25743b579b618c57775	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash 4234072c4823d25743b579b618c57775 db908f6916f356721f4645ca5d6277874a879e92 3aa52a6ecef3a4d751691516ba903c6a6c48dc74b362aa42537fdc76172586c8 Loading...

	#5 Eval - ae71ffceb3762a811e51508886e073c3	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash ae71ffceb3762a811e51508886e073c3 16c79fa53570b5575ab79a42fb0dbd56a6479d44 ce700e047409c3366b9f3d6a442b5950e1b986001dfdd7133193279df9ae914e Loading...

	#6 Eval - 3d98feb86ee11897530126ed1cfadff6	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 3d98feb86ee11897530126ed1cfadff6 33dc67d7258511c4c419628d59dbb3e53c57e672 a28ec932bfbeb49074a217b27a8738e09426a343c1497d3fce8b77942ea2e2d8 Loading...

	#7 Eval - 7ebb46f149d9d89991591ac1e9791e52	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 7ebb46f149d9d89991591ac1e9791e52 72c4a96b88c014163def2ee8fce33040861ee7aa 9e8aa602a8a9a0ae1edfc2c190d246a304b3530ca26ef5cede8c657832f10c0f Loading...

	#8 Eval - e4f5edf5c89ab800314ea81b2253df61	27 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen241 Hash e4f5edf5c89ab800314ea81b2253df61 ce87bbe5a37a7d765a172c8b0711568402b8b48b c68facb1d3956075832d0e62deb9e4ced679ca5a6a5538d269ec671c29fcfb41 Loading...

	#9 Eval - b1c1bf401a29c1ed42818feaccc53c7e	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash b1c1bf401a29c1ed42818feaccc53c7e e11021939755264f281f4dee3b2a27f776cb5f9b 33b5b52d413aa7f459f9e93a0bf14ed2912253b07afbe73db1da24aaca846f06 Loading...

	#10 Eval - aa60188ff7c023acc02cbd0fd845795a	13 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash aa60188ff7c023acc02cbd0fd845795a 2d494769bdaa5d1357e7bc900db146c330eb4246 36ce4a8e4312275c2551006bd274c4bb69ee888c0a9392f51e527f00c4e68ca5 Loading...

	#11 Eval - 862aa959530a4702b6fe75d8956206e0	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 862aa959530a4702b6fe75d8956206e0 297aff60ca8e7fff5696d0e0782231341dfa11e5 c6a628cb95e52d661bc8d60076b26487bc49e65e6a3b2fcd5a41fe05dc35c6dd Loading...

	#12 Eval - 603ab3a54534cf7db18ddfdcf203df22	11 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 603ab3a54534cf7db18ddfdcf203df22 e69d1f003d2d858dbb581e8c4f1ad55232eaa464 8a897f9732e3aed8259393257293c661658f246824e545229ea757da30e6e139 Loading...

	#13 Eval - e1cdac156cb27da43dd53312a514a426	20 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash e1cdac156cb27da43dd53312a514a426 3159468a1a7e66e947ff6c2ead3e38a4fbf8e246 7c18332becb76fb9e2f473121f6019b284c1d550e9100b83b37828cd460c6a00 Loading...

	#14 Eval - 4f9c094a99e74353194473f401f8c21d	27 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash 4f9c094a99e74353194473f401f8c21d 926eb89226f35afc086bd8109b38b6a71ac64c92 0a6ed06e51aeab355c0f58341083a30cde0cdff1528aa2adb145fe760751c84c Loading...

	#15 Eval - 76dcfcff1681711a7596ed728e8d83fa	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 76dcfcff1681711a7596ed728e8d83fa aa9e34305542adba19109406df67c40220b0fcea 226680f5f5f7ccaf80d3d26c5b9353f2e37103ec3a03bc589dde170bcf92a5d8 Loading...

	#16 Eval - 1df7c980e37fe26d2f86fd37362c4a07	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash 1df7c980e37fe26d2f86fd37362c4a07 3c481dc62e287b0e44dc20aee145abaefb1877fe 31e5972a221f181cce3b96838515e066bb64abf3081d98cf734fb10e40a42557 Loading...

	#17 Eval - 026e77389164a13d9801c4588f4f9cf8	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 026e77389164a13d9801c4588f4f9cf8 7dae0034658a0c20655bde52e31bf9e8dbf2d9f6 11deefb3600729aa8a865c7e7d74c2ad9328fe357f18f732b9e980ea409dd6a4 Loading...

	#18 Eval - 4d23ff3c54cb0280ab162b0efd88d839	26 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 4d23ff3c54cb0280ab162b0efd88d839 cd6641e9bbaa0ecc8d649e352ad425316bad52bd 42cd9b8e13853db656ddab0a13f97f9299ba62f2232cf901fd5174fc622ce8ce Loading...

	#19 Eval - c9e391f64fdd7e7b906915db2e9df816	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash c9e391f64fdd7e7b906915db2e9df816 5b85045f1cae2e69a1742ad8d1852206a6a99f96 14fe895342368d715bbcb07ebd00b6afb3d0db62633380b98908ab614f0c630d Loading...

	#20 Eval - 70fef055035f30409ab7524a1c4f196a	25 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash 70fef055035f30409ab7524a1c4f196a f3941eee40ebfab8f71b1a0461ceb798d260582b b87e01488848c5efbea427d84e59e81d777ce40d2c5a86476dfff91662675a86 Loading...

	#21 Eval - 5614625f04307d7c8eda5c8902d3299d	13 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 5614625f04307d7c8eda5c8902d3299d 019634e87fea94bc5a92e6623e69926c937ef45f c7d905d18742abb294fdd097f467330a7b552626c6c2645df0bbc7ff8a62862b Loading...

	#22 Eval - 2c57ffb8bb3a8999068a11d980e42bf5	18 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash 2c57ffb8bb3a8999068a11d980e42bf5 0fa2bb929a0605e3616f9b1c8d2485dde1ee3343 1a75391ab35270f5bd2c2ea37d8307263fee3b363c292da3235a945cea93d912 Loading...

	#23 Eval - b76aecc82723289de46ab2c6dca1e2aa	25 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash b76aecc82723289de46ab2c6dca1e2aa 09b3ccb2f3cd9f7c90fc588b827407d0a46df7ac 044e5a75c20b5320659ffc2e0df4c6a72a7f94aec9d6fad9b1d4d86ec2a997b2 Loading...

	#24 Eval - b6330cd7967283c8fd96031cfbd4d85c	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash b6330cd7967283c8fd96031cfbd4d85c 82fb8745e961fd9d968c3e4f6d2eff56e206dace d1685567ca0f2490dfd10fff28422242f9ac2aff2272631590b465026d3e94a4 Loading...

	#25 Eval - adc0e147cc12ccd37279c053597c842f	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash adc0e147cc12ccd37279c053597c842f 49e1efc5baa9ea40fe067fafd4176301af13e365 f69ae4d273154ab715d87c23df23951e443ed51da46728333ce890cf7938a270 Loading...

	#26 Eval - 707519799f1a88cfa1ce954b39e850bd	24 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 707519799f1a88cfa1ce954b39e850bd 14a0b3990431bf18575f96df0770143bd82845d1 4a2111346024006274df3e4ed8fb68454e7a9523203851a6593ec51ce24b4b53 Loading...

	#27 Eval - 43c81e43a6e7d9140033055ff3e04983	62 B	2024-04-18	2024-04-29
Pretty Observations First Seen2024-04-18 21:08:51 Last Seen2024-04-29 16:17:50 Times Seen2736 Hash 43c81e43a6e7d9140033055ff3e04983 b0eca03913678cb38c488c7c79cc4f9d2755ea17 3f7ef931c657c4333a401c40e8b0b8d1ff3b164542af45e14242314c0ec39f34 Loading...

	#28 Eval - 2c5857f01268bfa3640e1e96df58332e	27 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 2c5857f01268bfa3640e1e96df58332e 985c11fe2ea72739e2b31e35fa24e4e6cde78399 6a281c2acaaf7f0e8624f76b299ac63313f79a183fbab2f5d935012f16aa22ac Loading...

	#29 Eval - fee5546ea236a313ea7645f1e3ad5f8f	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash fee5546ea236a313ea7645f1e3ad5f8f 3074b17435944ffbfef1c5f428a7d34bb844e9eb f979af99f6f2a32e02987465dbf0cdb8d90c4206a074163007be1f97889ff474 Loading...

	#30 Eval - a3a8e49bc182144a45065fe107208dc3	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash a3a8e49bc182144a45065fe107208dc3 373b4b0ace1d5f74cb3090b13092e0de49f79f90 da8b3bf217fb9a3eedbb778e4222ba5023f1ef290e16d3102c8280499f13e6ae Loading...

	#31 Eval - 5c849c7de8a157a5e5e2ebbbbc9854de	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 5c849c7de8a157a5e5e2ebbbbc9854de 34f92e719544356251d1096dbe25b32c661660e8 e2f0cf248990c5264380a4b46752e06dd58d9a4c4d444aa59750cbd2afff4d5e Loading...

	#32 Eval - 152003b3509055bc939fa8500537a6af	20 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 152003b3509055bc939fa8500537a6af 016415a8e49170f0c72054a542f1db30fbe3597d a462165f0c9ed9496ad4ddab90238841b76de4d256032aa7d8a0bddb56643568 Loading...

	#33 Eval - b63f15d0e23c5f8197111f8760206369	26 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash b63f15d0e23c5f8197111f8760206369 c87f68f5134488e8ca90286e574afb36593f3c24 256b7885a9f06a005f8a33e9fb565d6191c55fa9719dff1007debe99deaad771 Loading...

	#34 Eval - 6546fdf5f92a5304122f9ad54b1e3dc8	14 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash 6546fdf5f92a5304122f9ad54b1e3dc8 a1c855aea103a3dc14c58f4c88c35767cf1f148e 653277d2ca27573a218eb3424f6bae33f19ea174fead80157f4dd02c4d7c16d5 Loading...

	#35 Eval - 89f16b707f0448b9c02882e8c24f0215	18 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 89f16b707f0448b9c02882e8c24f0215 ee183fbb8431eb63b4ad30f32f6ee4f88ab6aa6c 3cd1e50b33c1c0227344f260693afbd8365f7e140c2a4a6163c12a3be85988cc Loading...

	#36 Eval - fdfa7dcbe33d2c402f1139ef8dc44826	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash fdfa7dcbe33d2c402f1139ef8dc44826 06108a0df101ccb4b0ef7d6740edfb1fca94e78e b449dd2c1946ca4b9e94f51a43764eafba81d99a07fd5530d2cc4133e5b12b32 Loading...

	#37 Eval - a559d81e5b9483c436467773a49045f1	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash a559d81e5b9483c436467773a49045f1 37a64a9c45cff44ce103617b84f471268f493b99 05c1ebbc02abe798db6a7fda2aab607d35d4736d47e2825d52b4c9f1fccb1614 Loading...

	#38 Eval - dd84a861bc643c8056559cbc4b10bfd5	26 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash dd84a861bc643c8056559cbc4b10bfd5 59889f07c2db83a6c94420adc621ce54d2eecb6a 45f3420534245b782db46512a0b27b51023c0ba78e5f5bba71cba85a322c6c25 Loading...

	#39 Eval - c5d5adc72fc7a7d59829f9a8ad7feb5e	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash c5d5adc72fc7a7d59829f9a8ad7feb5e 19283db58976d6acb65a9ff25f51d0eb7d7e6f23 b19301b46e6d03caec7ec32503dab1d7adb2ab905d2f510823d614ac538b9873 Loading...

	#40 Eval - 93baaae9574bcf1bc8e2492038b63e4f	20 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen241 Hash 93baaae9574bcf1bc8e2492038b63e4f 00d1bab1a2cce3f519a069d09ec0d4139f3491b3 ec9ef2e92e78971096d6c7b2924c465a96b1eae8b5d780303294c7375dfa947c Loading...

	#41 Eval - f49f7be4dabcc36ddd3c7638c7b89b9c	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash f49f7be4dabcc36ddd3c7638c7b89b9c deb599213e5765354ff83f8b1b6141c56b999d80 23e24e6dd82da05435fcf22a69cb8fa2039661bb05b00146c38692228700886e Loading...

	#42 Eval - bb66a8d175fc5bb8ccb6a13f06b1b6ce	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash bb66a8d175fc5bb8ccb6a13f06b1b6ce 0250efab2aa794303c94bb835122f9bf0e1b72c9 f60be656a8ec74f91ffa8f632f21e2f04ded59665f91aae7e0f9cd39bf1316bf Loading...

	#43 Eval - 87734d7285c2e421931269826d78aef4	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 87734d7285c2e421931269826d78aef4 232b59d66cc0a2eafc9820bc2860cb65fbc71f2a 6852f8d4723c372543702eadd7a2f1b7bdbb54c9ce2ac19e1845c949da042dfb Loading...

	#44 Eval - 8a1dfd74fab15d189124895b0e5e7ca0	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:44 Last Seen2024-04-26 13:35:44 Times Seen1 Hash 8a1dfd74fab15d189124895b0e5e7ca0 09df29921cbea8761a7eaab2baabd6635ec3807c 246e051d6fd438419bf9d7b3c59f2fd351bfa55437a1c2c3ddb73133a3cc04b3 Loading...

	#45 Eval - 6cea4d42c386606fbcb062bb0bd88b28	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 6cea4d42c386606fbcb062bb0bd88b28 2fe072746446a34d9a7daa54e12c595c5dd75ea5 1ca0bf9e55c2e142a57af71a8db4dbb7701260f15c00877e465129e395d4dcef Loading...

	#46 Eval - 95877fd3dc73a1e65ca33e637d1a2d3e	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 95877fd3dc73a1e65ca33e637d1a2d3e 19f23b6b7cb7038ac0d24e64279e46e2fba2d69f 243c514db29e377a462a05f3d4fcc57de56d84efaa706a6f0645069eaab9fa88 Loading...

	#47 Eval - 5f85ef5033fded201cb63e7db3db10ed	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 5f85ef5033fded201cb63e7db3db10ed a54ce676ef57d40fe03d0d400eb956ed1d92cf29 214def170a879ef50939d2e319bb643cc706dd1e8f1dcc2e45561f30fc5e6041 Loading...

	#48 Eval - 6195e655ded6d623f44462c8ac4e7512	18 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 6195e655ded6d623f44462c8ac4e7512 ea37869baa74ab3dde964f35fb0ca26a6dab1698 c73d88278437a9044b5f1fc4bf397751cac946a289e47802637a6cb5e7c50127 Loading...

	#49 Eval - d4fa500d7b9a0cb66d6d915db7f85767	26 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash d4fa500d7b9a0cb66d6d915db7f85767 455de5f89591244d29e4f497dbb9d7bf89e2bce2 7d87aff092022986370073cd1d1cc43fc6d724c77b134c6a4140871463804037 Loading...

	#50 Eval - 86e5a0d94a0b0dff2fbe33c86f776f2b	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash 86e5a0d94a0b0dff2fbe33c86f776f2b 11fc7bc1416395ca4e8f4373b8c73cdd88265c9f ebdef1ef0128265054839c502d1c1d4662195f2e8937d3629a7aaf187b0de273 Loading...

	#51 Eval - 19cfa8ebee28269456aef690e497e0a1	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 19cfa8ebee28269456aef690e497e0a1 0608f5aec6ef239aa4dda78c8210e84ac3f8995a bd1fdaa8ef7e22981895ba8642658f0df835fa463f208d80c457f83e306bd9d4 Loading...

	#52 Eval - 42304698439ffa29f963a8a1b5bd764d	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen226 Hash 42304698439ffa29f963a8a1b5bd764d e7cedf19a0d7b08435d14da380e3e4145b865639 bffb638baf5daa68fb8ced6e305bd0967477a988adfac7b8491537806e251cd1 Loading...

	#53 Eval - e623a23d386d2de9e9d2513c461e0895	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash e623a23d386d2de9e9d2513c461e0895 a9b52930d18afa56cc6818e23296d3773370aa70 dc6e792543446110fbc7e67a38e68edff1673a7a8f17368815488af31ec39246 Loading...

	#54 Eval - 88d7243391e3a22e0ff59fefd045bbda	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 88d7243391e3a22e0ff59fefd045bbda ca40faab60f4685c8c79e197840a77a45ed66229 130b057794a46571b74d997adea0c171218e4897c49357ae3a5a2be2fb4e1917 Loading...

	#55 Eval - d50f36925dc973197ed67999059aab78	17 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash d50f36925dc973197ed67999059aab78 40d76c59afb9b9008c8c00a480a44fa02c0a967d 1882c6d8da094e4e7eb41fc2776c644e8fd5a4e39074d45f1830d98fb34d1e37 Loading...

	#56 Eval - 321077b2e76f38b15fd573c9842681b8	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 321077b2e76f38b15fd573c9842681b8 146d11c9ab905601b20a6a8997b09b359b53a968 6381b12681f9dea4c6a63fa4cb1bb25527c9be8f66064bbdc5f73cce4dab549e Loading...

	#57 Eval - e0c965a7e44272528e2bd96a7c126388	26 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash e0c965a7e44272528e2bd96a7c126388 b7d01869dfe2dd1be4e6510ce959a1711f8afdb9 72a6c3a90d4393398a041b3c9defb2bd5707a9aee7b0048221b18412ecc1b6ea Loading...

	#58 Eval - d235f53d74c34806e04d18b69569973f	27 B	2023-03-14	2024-04-29
Pretty Observations First Seen2023-03-14 07:47:44 Last Seen2024-04-29 08:51:22 Times Seen242 Hash d235f53d74c34806e04d18b69569973f bb6c99cb377fafd912340544558a2e8b6eb4871e 2da6481ea764076d35f3cb2adcd31eb5faf900da7c4fb73193de86b3eabfbe95 Loading...

	#59 Eval - 26ec0c7ad237ca5085e354a9fdadb38d	14 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash 26ec0c7ad237ca5085e354a9fdadb38d f3a7e2dc1b26f8a137d55e37624b1c96419565e7 68ba9260cda4185cdbe6a691ddc76dd346ced33f1f4d17263f0cb5d8cbd6db41 Loading...

	#60 Eval - 12736a833cf1bff4755d05e377805ce1	24 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 12736a833cf1bff4755d05e377805ce1 e8b726a16039d596134df509a8d0e9a34ae9d3cd f15b524994778ff6a22b51f6cf07f5791f2a3d7b6214ac3b7c94a98de00f5fa1 Loading...

	#61 Eval - 5e7a734674b34920dedff85a10eeb59c	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 5e7a734674b34920dedff85a10eeb59c 2468545cc9b19441c1d8b1492826fc047cf07130 6eef9de27f8ef7b71d071005200e6167b0c2f090be038a37c2ec236e49fead80 Loading...

	#62 Eval - 8953b320bd838d6976594d0ac8a9eca0	7 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 8953b320bd838d6976594d0ac8a9eca0 3ef03cd8b98ebc1b5d49a8e8bad8f8e3324392a5 6b6404a731f00835ab3d50858ab92ac52a09cc888e4bbb95a94d60a37d5b44e4 Loading...

	#63 Eval - d428d6b9601e248d5d9611259b44db5c	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash d428d6b9601e248d5d9611259b44db5c 55f7c11d280861bea9bc9e278eed6db8734d2a10 6b75c4b3329bde40def3901a507c7cbf4084ec29bbc4af668ce101a61aa93c8a Loading...

	#64 Eval - 444b55c3478e9e83b5d802f90da6dc35	10 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 444b55c3478e9e83b5d802f90da6dc35 a5de128b9daf086d0c0d2cc66d5c62c6778d2bd2 6c77c571ff551c30e6524a3f663ae5a741da6213305218ec07194abb68ba74ae Loading...

	#65 Eval - 1447cd2af344826e970be0530e7b8619	71 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen8 Hash 1447cd2af344826e970be0530e7b8619 11522123e2f5490572eecf5f0f529f4b2b209f49 e4024d913ae4daedb8fcb9ac7c407fd52a4199ada5e819d6439b20ca0cd4eb03 Loading...

	#66 Eval - 63dcbc643064e9ae95ae1fb6d9b7ae09	24 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 63dcbc643064e9ae95ae1fb6d9b7ae09 4e6741c43ce7da0415c59c7c055b7d2d48808de6 efa6aba0cf3abb5eb74bf220e586f3984da5b8d8ce14962e6e43edd1eeb81adc Loading...

	#67 Eval - b8782594df125b20a3788a25d98b3a1c	22 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash b8782594df125b20a3788a25d98b3a1c 60f0d2b3bc934f2683ef4dd57d7df609c968841d 657af43368b9c0f90f6ca51ee88b0c64f702942196d3a56caeb3064ff2ffb095 Loading...

	#68 Eval - fcdf7e95a87957cf4e2d756b439446c3	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash fcdf7e95a87957cf4e2d756b439446c3 a3d4ad4168c266e544dcf94551cda4bd0fd839ae 9d53045c25283dfccb127833b64bc896dc1200d0f486ee959d07ce762e0756ad Loading...

	#69 Eval - e1622e26130c0d6bbd83d26979355bd2	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash e1622e26130c0d6bbd83d26979355bd2 cc78983806fbcd3160143c38f3a42f0ec773cf77 2f43ad6b6d420cf5c5dc84b1c9ae425ddbfdb74ca68555c3924d58ff91062c2e Loading...

	#70 Eval - 3c1cd3b636b16d0da2e148c54852518d	7 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-26 13:35:45 Times Seen242 Hash 3c1cd3b636b16d0da2e148c54852518d e759b8d35d5c9de78b9e30d862ad0a1ad7ef3d21 490f66d27363663291cabeca7a9493d89678ea45125333bdbe388bbfd801fb6d Loading...

	#71 Eval - 609a9f1ba1dabad0b34cb976d108ef9c	25 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 609a9f1ba1dabad0b34cb976d108ef9c ff6607d65aa1bf4b1e280462eb1550a1e07e335b f264dc74eb49e67dbdfdaa93e8889adde86b965f35cc47782dd8e0dfcdafc1c1 Loading...

	#72 Eval - a7d773df5228c2d3afa504114dcc5303	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash a7d773df5228c2d3afa504114dcc5303 004a1365f6ebd4d834b92180999e624649e54a43 1ec50eda6e3be52fb5515c5b34e119856b3811adbbc0f02ba6ec84e09d9bfe2f Loading...

	#73 Eval - 5c71da7ce324934980526fc64f73a8f1	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 5c71da7ce324934980526fc64f73a8f1 f6f91f633e3de5bc6b07b43319986a6b002c58b1 69591aca1e64700d7bd90036bbb64a5babe08f20ef4ca9755b663f83e4c8831b Loading...

	#74 Eval - bb960e39793ab3f9a0f4ca65ae571848	67 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen8 Hash bb960e39793ab3f9a0f4ca65ae571848 a49fad227ecc5ce9f709132d2d188b60d684609c 390be2eb836cc819d5b3b1ee9d34ee7181443f83a79f4f514fcef3a5ac32f2a3 Loading...

	#75 Eval - 3358964980c68912ce4025cd30434013	27 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 3358964980c68912ce4025cd30434013 800ad248eac9b9ea353f3e55edd6a53820f07399 be6fcd6fd8eeb6ab5346c685f757e71f6eca31f12bb4252d5f99ab71fc1499c8 Loading...

	#76 Eval - 90a880275f255b0353cc7bba7f7bdd26	16 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash 90a880275f255b0353cc7bba7f7bdd26 41395c1e3461c057ccdc5ad7bd32686aca603ce0 b1c2e497c7096b00121236427ffde548057308f1f5075e569b0c983d7f307949 Loading...

	#77 Eval - fe1dee675367a98cbcfdd4c5182659f4	25 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen242 Hash fe1dee675367a98cbcfdd4c5182659f4 8c258ad3ed4286b6a3609009a4b7fd4d6d30dd05 e195ef38258353038c9200cd98a946a087f69f6644704d9010eb90754595fc90 Loading...

	#78 Eval - 04a90b7eed1f7eb0eaf25984cd4435cc	24 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 04a90b7eed1f7eb0eaf25984cd4435cc cba5297940ca67dd2f441f0cea5f2838d8c5dfab 58f05c9aad6c6157e2934ea3b9882fb37ec8062ee680a0548e6e7a7f96921be1 Loading...

	#79 Eval - ea783964e46cb42c2a5ed1c49b127aba	21 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen242 Hash ea783964e46cb42c2a5ed1c49b127aba 24a2f0017c53b8b808745ecf9fe90c405fbc8eda 2364a5e63a85f7538d4040e5da2fbcea4b29ceb7a115ce93e13e7bc880de84a4 Loading...

	#80 Eval - 3f31e4aa2f8113631bce57bcca48a104	14 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen243 Hash 3f31e4aa2f8113631bce57bcca48a104 15bd4398758f700503461657f1256104b512bccc e87e1ff575bf9bcdf87f6acfad57404a52ea29a56ad8ed14d7e4e373ce3bf9b3 Loading...

	#81 Eval - c035dce4027dc59341b8e3e753327103	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:45 Last Seen2024-04-26 13:35:45 Times Seen1 Hash c035dce4027dc59341b8e3e753327103 380f37e2069ec66d7f57c8527cd6addc27f68d92 a721c8053a10f85f63484e919672187a29b75990356d1b2da7489a1ece41692d Loading...

	#82 Eval - 97b8f8e222187b242cd80090d228ada7	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 97b8f8e222187b242cd80090d228ada7 b4f97f640673d9157b5d1ad45f1d7246eca3aaf0 07366404bbf0e2a5bf754fd726a5584d7b44069a9308890e165d2e81f4834baa Loading...

	#83 Eval - cfa74939407ee6ffc663e0ffb46f6b6d	23 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash cfa74939407ee6ffc663e0ffb46f6b6d 1cfdaac8b7fa44e99e32b8584d674588879405e0 2bd62dc1e4c5b554a36a787410f5135b3281de51b10dd5b95dc3c5176b64298b Loading...

	#84 Eval - 1a4ed97e4ebe64aeebad62e0f5272da4	18 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:21 Times Seen226 Hash 1a4ed97e4ebe64aeebad62e0f5272da4 e9ab97cf37377396de07d8801c5842ed33ccf3a7 2bc4e4cfbeafcd49f1a5c78642c6128e0b62984ac2052c51ee7836d1592a0f3a Loading...

	#85 Eval - 8e512ab800e7d7280bb8a3f3aa1e9ac1	20 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 8e512ab800e7d7280bb8a3f3aa1e9ac1 b7cde0b1bccf92e3628f69f6091e3a2e5c1a9722 3041fead7063376ce388c273595c84fe4b2b7b78a972ad4bc23b57f700993936 Loading...

	#86 Eval - a4376baa479acc6ffb680d00a854ad52	9 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash a4376baa479acc6ffb680d00a854ad52 a5d1d5a34242c05a0a60ad57ba43a028e293cc7f dff5d66275f399924bb6cf2cb1e0fb2b1b90fd4078f81cb5db82a3221a0e84cd Loading...

	#87 Eval - b1fbc886ede7678352bc869519866d73	18 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash b1fbc886ede7678352bc869519866d73 36e199e043b70a0acf132fcd6c6bae149ec30031 48cad6fc8e238599d05b8789b23054db17f8aa614c3bc7935d39395eb502e13b Loading...

	#88 Eval - 0212289e9ee660ef07ade25252364a7c	19 B	2023-03-07	2024-04-29
Pretty Observations First Seen2023-03-07 12:42:03 Last Seen2024-04-29 08:51:22 Times Seen243 Hash 0212289e9ee660ef07ade25252364a7c 4cea754557d9193c2f87b3c3a04789c33ac37457 2c7b5a2f54593f48cf27d0f569887f6f293412d95248211ead71e9e45f440448 Loading...

	#89 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-05-06
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-06 14:56:45 Times Seen351534 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#90 Eval - 9ceeb642afcab5e02f7f83d3cc30859a	28 B	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 13:35:45 Last Seen2024-04-26 13:35:45 Times Seen1 Hash 9ceeb642afcab5e02f7f83d3cc30859a 86f26149b663b0fcbefbb196b2b2c3acb2b0c0a3 2aa395b895519198937090a6b435eadae18e8cf3ebabe74aa44dcd1120d25094 Loading...

HTTP Transactions (66)

URL IP Response Size

ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=

52.2.48.141

502 Bad Gateway

0 B

URL User Request GET HTTP/1.1
ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=
IP
52.2.48.141:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.ratrck.com
Fingerprint85:F5:DB:D6:62:0F:0B:1F:0F:BA:83:44:8D:82:C8:DC:4F:4A:41:8C
ValiditySat, 19 Aug 2023 04:44:19 GMT - Thu, 19 Sep 2024 04:44:18 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4= HTTP/1.1
Host: ratrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 502 Bad Gateway
Date: Fri, 26 Apr 2024 11:35:16 GMT
Content-Length: 0
Connection: close

ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=

52.2.48.141

502 Bad Gateway

306 B

URL User Request GET HTTP/1.1
ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=
IP
52.2.48.141:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.ratrck.com
Fingerprint85:F5:DB:D6:62:0F:0B:1F:0F:BA:83:44:8D:82:C8:DC:4F:4A:41:8C
ValiditySat, 19 Aug 2023 04:44:19 GMT - Thu, 19 Sep 2024 04:44:18 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
306 B (306 bytes)
Hash
8269b79bac4d1bd8889e17ca64b65107
9bead33b8f1d70b4a5bca2036e487e5750ff75e3
2cfc65ed4fcc67b09baff0096de91251c78ea13af28f0080f429f051a9c62fae

HTTP Headers

GET /?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4= HTTP/1.1
Host: ratrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
cache-control: private
content-type: text/html; charset=utf-8
date: Fri, 26 Apr 2024 11:35:20 GMT
location: https://ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=&ckmguid=ffde400b-b790-4273-b643-bc80964f89c5
content-length: 306

ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=&ckmguid=ffde400b-b790-4273-b643-bc80964f89c5

52.2.48.141

302 Found

407 B

URL User Request GET HTTP/1.1
ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=&ckmguid=ffde400b-b790-4273-b643-bc80964f89c5
IP
52.2.48.141:443
ASN
#14618 AMAZON-AES

Certificate
IssuerGlobalSign nv-sa
Subject*.ratrck.com
Fingerprint85:F5:DB:D6:62:0F:0B:1F:0F:BA:83:44:8D:82:C8:DC:4F:4A:41:8C
ValiditySat, 19 Aug 2023 04:44:19 GMT - Thu, 19 Sep 2024 04:44:18 GMT

File type
HTML document, ASCII text, with very long lines (335), with CRLF line terminators
Size
407 B (407 bytes)
Hash
6ddc7bc24c51333fcf9e6a57590dcc2b
cc24a6057479fa44d262e2f78fbf947372988d62
31059eb775b7509dfe8222cb76278b84d8d3972f776e6d4cfcb823b0f0993200

HTTP Headers

GET /?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=&ckmguid=ffde400b-b790-4273-b643-bc80964f89c5 HTTP/1.1
Host: ratrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
Cache-Control: private
Content-Length: 407
Content-Type: text/html; charset=utf-8
Date: Fri, 26 Apr 2024 11:35:20 GMT
Location: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
P3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Set-Cookie: sid=8dcNZUrNkemhmzflmmbCZrk7c8B6SUxqi9PJhSHRJGuEaTJsGRD1Pg==; domain=.ratrck.com; path=/; SameSite=None; secure; HttpOnly
trk=fMmeqOby7HJGtGu1UwVWMrk7c8B6SUxqi9PJhSHRJGuEaTJsGRD1Pg==; domain=.ratrck.com; expires=Sun, 26-Apr-2026 11:35:21 GMT; path=/; SameSite=None; secure; HttpOnly
c212838=8dcNZUrNkemZlr1elJ4sadQGRd0iHuMuKCxZHElIZvWMbYvq1KAzWZYAycKY8azs; domain=.ratrck.com; expires=Sun, 26-May-2024 11:35:21 GMT; path=/; SameSite=None; secure; HttpOnly
Connection: close

challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit

104.17.3.184

14 kB

URL
challenges.cloudflare.com/turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, ASCII text, with very long lines (42414)
Size
14 kB (14329 bytes)
Hash
f94a2211ce789a95a7c67e8c660d63e8
f1fc19b6bcb96d0a905bf3192aaff0885ff9f36f
926dc3302f99ec05e4206e965ddeb7250f5910a8c38e82c7beafb724bbaaf37b

HTTP Headers

GET /turnstile/v0/b/471dc2adc340/api.js?onload=ZbqNq8&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 11:35:22 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644db2e1ab503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/6hgto/0x4AAAAAAADnOjc0PNeA8qVm/light/normal

104.17.3.184

26 kB

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/6hgto/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text, with very long lines (41702)
Size
26 kB (25681 bytes)
Hash
21ca7f9efa2d5b39aedf29ea360e2fc0
ae1680a639ac6f4fdb49dae68c95a7886aebb47a
7cbc622d5f9344591acd97a0da19fbf43d218344174b4ed9f5eea2a18b898fb6

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/6hgto/0x4AAAAAAADnOjc0PNeA8qVm/light/normal HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:22 GMT
content-type: text/html; charset=UTF-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
document-policy: js-profiling
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cross-origin-resource-policy: cross-origin
content-security-policy: frame-src https://challenges.cloudflare.com/ blob:; base-uri 'self'
cross-origin-embedder-policy: require-corp
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
vary: accept-encoding
server: cloudflare
cf-ray: 87a644dcba0056ca-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a644dcba0056ca/1714131322823/WupCv7nos2hmokh

104.17.3.184

61 B

URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/i/87a644dcba0056ca/1714131322823/WupCv7nos2hmokh
IP
104.17.3.184:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 27 x 58, 8-bit/color RGB, non-interlaced
Size
61 B (61 bytes)
Hash
364d382a2296fba8edde6b578fc98da0
67661cd49c0d7c47fc7cecac12769e45b3de186a
fdaffb73b5972c3a3e3cabd1334b540273849a1297535dbbbd8a3fc1d61d25b4

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/i/87a644dcba0056ca/1714131322823/WupCv7nos2hmokh HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv0/0/6hgto/0x4AAAAAAADnOjc0PNeA8qVm/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:24 GMT
content-type: image/png
content-length: 61
server: cloudflare
cf-ray: 87a644e7cd7d56ca-OSL
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/image3.png

172.67.193.235

200 OK

206 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/image3.png
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
PNG image data, 750 x 656, 8-bit colormap, non-interlaced
Size
206 kB (206233 bytes)
Hash
3147b4bd6ee65307574f07a038c64466
b67f67da18f0ee88bc0132d0f342321f395c0051
0ae08f10cd825085962b6efc1da7b7b4485bf08f109ea12505b70d62ca87539e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/image3.png HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/png
content-length: 206233
last-modified: Mon, 01 Jul 2019 20:11:23 GMT
etag: "7e7a7f274930d51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wLp6u1SWUfdJg2o5%2BgC9CXE9R%2BSgDhYBC5HFMjf6FBH97ZWt8%2B2IH6rsBmHyiuZApd5QMq%2Fid3OjLlfKd0a3ykl5gM8J%2BpCVF44GZ9F%2FK4S%2FtDOdS%2BRXFZ6e07ayHgpTaN%2BftjGgX1tXUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f04ca15694-OSL
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Muli:300,400,600,700,800,900

142.250.74.106

200 OK

89 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Muli:300,400,600,700,800,900
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
89 kB (88790 bytes)
Hash
47ae4d174414fb33e3de6d48c1fcce37
a050be7121d9d560cacf0a66a72234666d29a6a9
800fc749d7055a415af4a1ac1f9cecf7a74078c8ab4c89a1309d6b1d0fc5a553

HTTP Headers

GET /css?family=Muli:300,400,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/JS/jquery.autotab.js

172.67.193.235

200 OK

18 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/jquery.autotab.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
18 kB (18355 bytes)
Hash
09a4820a206e5bba1fa0e585deb93811
bd2a6ffaf9c19bd76bed51c667a5332a105e1dcf
d0401ccef3aad28475290a3540dcbf35cf798e414d9b6cc612dba8731bd0ea51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/jquery.autotab.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Mon, 17 Mar 2014 14:18:05 GMT
etag: W/"808c61b6eb41cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h0BGsJ1GfLRGFCWJAnUcqzHoCjMSMmhK%2FzISKV3ctISIDNAZR%2BDwF%2ByVYsQi10RcnzlDJkRf7WxMzup2eeXJfyolD6AYH50h4Dfd3tDQ4dRC6O0ngUOleTExksWkrv9i5qx4XITWMwivTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edcf305694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.163

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:14:40 GMT
expires: Sat, 26 Apr 2025 06:14:40 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 19245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.163

200 OK

7.9 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:14:40 GMT
expires: Sat, 26 Apr 2025 06:14:40 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:38 GMT
content-type: font/woff2
age: 19245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.cdn925.com/CampImg/13069/uplevels/uplevelslogo.svg

104.16.246.135

403 Forbidden

16 kB

URL GET HTTP/2
www.cdn925.com/CampImg/13069/uplevels/uplevelslogo.svg
IP
104.16.246.135:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerLet's Encrypt
Subjectcdn925.com
FingerprintF9:CD:4C:2E:5E:7B:1C:63:CD:25:48:7B:49:80:65:DA:9E:52:6B:48
ValidityTue, 02 Apr 2024 00:46:24 GMT - Mon, 01 Jul 2024 00:46:23 GMT

File type
gzip compressed data, from Unix
Size
16 kB (15781 bytes)
Hash
e6cd5c81c8704ed4c5487ecead99900b
d3a25659854e70fc73a8b6cb12f809d469b438ac
7663cfa9e6d6062a22b70b22d5e4ec9a43802cba652b1ea0937bf656bc657473

HTTP Headers

GET /CampImg/13069/uplevels/uplevelslogo.svg HTTP/1.1
Host: www.cdn925.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 403 Forbidden
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: E9rOPOpmb2PDHY0SL6HPOzYsQAa/tuug/W+doqsxail7nVkuW0LOQkSPrTzOA8R9CAaYpR1kx65GJuBI65VoxtAwFJYSR/J5blNcP1o9AQw=$C0I4LfoSoiiIXVG44RKTiA==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
set-cookie: __cf_bm=soF0pTgkEhBdH.RwI9DTSnlNGrQsH8kAyTj7P8LoTGM-1714131325-1.0.1.1-eQ1pwp7pRv_d8KptsXYf6u7SWdvvcizKl42.Aka1lVAvXoUMvuwX2wch0C3Sa9pp5y2E22EWdqrek4p8F520.A; path=/; expires=Fri, 26-Apr-24 12:05:25 GMT; domain=.cdn925.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644ee1c2c0b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/deals_icon_pk.svg

172.67.193.235

200 OK

9.3 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/deals_icon_pk.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
9.3 kB (9343 bytes)
Hash
44c6e206fc038a6ca2b18c39f9959716
5a359c9785e3f82f5bc610bc07fb21ada6f01bf7
2de06aa353a90804e6541efad419634bb6b4c9332706cc79ce95ed2889e0fa24

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/deals_icon_pk.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 25 Feb 2020 19:52:49 GMT
etag: W/"80fe2f2815ecd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IyNO17FQRT%2FygOXJjS4WJqyha6gtYBkRT%2B1qEOGRcVX%2FghTTqJRBx5ei1ZBE8ov8uzr3oWxj%2B1hKo8KgAXfsv6T4sYJqcquBYKnkBANDL4enjxkxa6%2BlqEEG4tG%2Fdq62fxJa24ZqEnSsqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644eddf515694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Poppins:300,400,500,600,700,800,900&display=swap

142.250.74.106

200 OK

18 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700,800,900&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
18 kB (17849 bytes)
Hash
a663fe294b7b8f9f53c2ce85c84fa70d
481e1b7688f37e7e387c7058c39c66eda9590d0f
fc0dd6facd88db59f27c16fccf2d3527e95781150bf1bf4c8f846b98b8f5eb93

HTTP Headers

GET /css?family=Poppins:300,400,500,600,700,800,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/lvl/surveyoffers-icon.svg

172.67.193.235

200 OK

9.3 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/lvl/surveyoffers-icon.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
9.3 kB (9334 bytes)
Hash
7f94714f36a90e64448908db7ec24b92
8834ef125e6c9d13939f92c9e3c550364cf18a6e
e0d1538887d4a8d2856d3ba1e79c09485e312eb98afb772dc80e295090590bd8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/lvl/surveyoffers-icon.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 31 Aug 2021 16:32:06 GMT
etag: W/"0c76fbc859ed71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a%2BtcxwQo%2FOJ8Y8wNK%2B2X%2BJrdmwvkWM3pV%2FjPPDW9YK2odb2rKGyDlF%2FPRPcuqZlTDauvn0O%2BdV42UFN9I47RpxmXh23vj5HVB6Y%2B0L49JmMPCSGatPGm%2BQ%2BuyJ%2F758jwXYnAHDdMNTEh4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644eddf4f5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2

142.250.74.163

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7840, version 1.0
Size
7.8 kB (7840 bytes)
Hash
8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:50:53 GMT
expires: Sat, 26 Apr 2025 05:50:53 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:02:55 GMT
content-type: font/woff2
age: 20672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;0,900;1,300;1,400;1,500;1,700&display=swap

142.250.74.106

200 OK

9.7 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;0,900;1,300;1,400;1,500;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
gzip compressed data, max compression
Size
9.7 kB (9725 bytes)
Hash
53d6d6f2a2bc03c43021d430afc7d15c
975e78ed201163db4a862e58ff9d42dff150018e
0ad0a32d376bda853dbadf570fd8e5ea1de5c2e2c5b7b82ea8ab13faa53e5b22

HTTP Headers

GET /css2?family=Roboto:ital,wght@0,300;0,400;0,500;0,700;0,900;1,300;1,400;1,500;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.163

200 OK

7.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:19:23 GMT
expires: Sat, 26 Apr 2025 06:19:23 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:01:14 GMT
content-type: font/woff2
age: 18962
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/jackpot.svg

172.67.193.235

200 OK

18 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/jackpot.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
18 kB (18020 bytes)
Hash
b5773c51ed0ea13d1bafc512e1131527
d532d5d14e9a35b2665e3ac3129af5525e3b64d0
8d069d411126e80871d06d308372ca8356356426989880a9df75e829934ad82a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/jackpot.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 19:51:59 GMT
etag: W/"ddc57d4247ad51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=imlkCiMgxyQvFRw655V4jILfND0cp4qyYy4hd1iFHjvjSzQPtE3Q%2BYUCis24Zxul31NTHiWgk7FJYMPirG2chzJoX9eaNi5QQspItzrhD1WaCkzZN1cl68ZN9HYYcWP3qLDNdQ0XZnmi6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644ee1fda5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:54:32 GMT
expires: Sat, 26 Apr 2025 05:54:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 20453
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/JS/InternalLibrary.js

172.67.193.235

200 OK

28 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/InternalLibrary.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (1089), with CRLF line terminators
Size
28 kB (27739 bytes)
Hash
7fee3ad00afaa1af03483da541e685c6
134b8b2a4f2d2bf98ba9a1f188996e4ba4ee684d
a4f4f673fedd1494caf3f31e20423c906e21c47e1cce69462b522f9c47a5f780

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/InternalLibrary.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Tue, 21 Nov 2023 16:30:42 GMT
etag: W/"065cb11981cda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mmozuMrb0ays%2FZlucFb4DpOchCUP%2FDNNDneaJsdDBglC7GN7MJDqjstB%2FQiEMfXAgeWkvbCqpb0kpmAeyWj09NbManBhgH%2BFTrKKD5XUgotdjsttj7hVf6dHoJr6bm0RfOhlfN8VQ9US1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edcf275694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/JS/SystemConvert.js

172.67.193.235

200 OK

12 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/SystemConvert.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (451), with CRLF line terminators
Size
12 kB (12404 bytes)
Hash
84d72d671c7bab6336d620764078fa70
0e3ed05972ebd858b81fae034451df370f1df05e
043b4918db852d210f161a61f8d8c1e7071e759409c0221eb7d549ac5eae5859

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/SystemConvert.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Thu, 06 Feb 2020 16:17:17 GMT
etag: W/"802444e68ddd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dOTRidh4FXMtABQU1vOMD9DlIgt8XmXn3g1vjmjBTkpy%2BJ9yW6W4o7i65%2BSDRnSv2qW7sd93YgnV8i49o3R0s8BM%2FwB9fE6yjT45oyDUwKWNrj4FUcu1drozhTdTXEB8Hv0UdEuIzXe%2FTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edcf2d5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/JS/ExternalLibrary.js

172.67.193.235

200 OK

28 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/ExternalLibrary.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, Unicode text, UTF-8 (with BOM) text, with very long lines (1986), with CRLF line terminators
Size
28 kB (28046 bytes)
Hash
475ac286074514224839e211a02c872b
f3f3dd0a9641cb18dc4d36dc18a9dc877ed16977
1b35eb7c2b8e5ec994e4310b679cd19e5ccbb264ec2bad3f0722c7124253e9f4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/ExternalLibrary.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Mon, 20 Nov 2023 19:54:05 GMT
etag: W/"80acef50eb1bda1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mJj9LJZWs4LFE2LO19Bp9wyiZzE%2FGasmn1PNcMEKwtUvfZHDNDpFF2JyrKFkAs0itRNcGIVY6472cir0G%2B%2B79Ze1fBaQUtUzr4fvtN7JF7F3f9FwflO53C8n4nx8pTlVcyNFY5fdkXuWNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edcf245694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/uplevels/lp_deals.svg

172.67.193.235

200 OK

18 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/uplevels/lp_deals.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
18 kB (17487 bytes)
Hash
1a8d08ce37ef69d7416af7434c58ffd7
15773180ef6f5f149a72cd371504281eea8d2455
ae0879e5db669ac9cfeebfcb5228eb1cf7973ea43e27714748449c2ae5d13297

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/uplevels/lp_deals.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 02 Nov 2021 14:51:55 GMT
etag: W/"8037a02df9cfd71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H2xRrrFDSEoN6CWWJdXZon%2FsF4AGld%2B6U%2FaLGo7NnTwaBzHLFhDDe5w%2F173ouvDpy7U5zQARWPIrk2HuZaj%2BA9scfsWmjKOhthidmPQcnIul%2Bm1%2FLkDJEvd6a4GEmHzJcC0v3DEdxOmZHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edffa45694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CSS/Site.css

172.67.193.235

200 OK

7.5 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CSS/Site.css
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
7.5 kB (7479 bytes)
Hash
4694190cef311a884583c0cfc9bc7dba
68f811b405445d56225bff20c1eeb94d51c2e287
16df2a10820abf9394729fe2243c43678da480499c624b49538fe9c270580603

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CSS/Site.css HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: text/css
last-modified: Mon, 17 Mar 2014 14:17:22 GMT
etag: W/"cd26ec9ceb41cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N4BsX9Tlf4apV0wsQh3%2FXIHs9QUU0zJLn21pHOHRoz7pOAJoj99UC3c%2BrJUc7kFquFyiDPXWoZ6JuuXCaqc7opAxdzns1JWnU7bj76Z8v6UOegJTBDersS%2BAYBNKWDgbUs4s0whn5RhYJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edbf1b5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/1718/SuperDynamic/genericimg/amazon750_lg.png

172.67.193.235

200 OK

229 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/1718/SuperDynamic/genericimg/amazon750_lg.png
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
PNG image data, 500 x 320, 8-bit/color RGBA, non-interlaced
Size
229 kB (229034 bytes)
Hash
8414c2d1505221c57e90842de46091ae
760aa8c43c6bbd49da46daf7cb6f92191998e7fa
b72e6560c5f7c55f0a1d4c8c77d390499f1888e8381140854a02e19cd8906b3f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/1718/SuperDynamic/genericimg/amazon750_lg.png HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=&bckm=1
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: image/png
content-length: 229034
last-modified: Thu, 20 Aug 2020 16:35:13 GMT
etag: "6ee9e0f77d61:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FRkA8wJiyzt%2FTfJF2WULtW49H8Sv2sbFE1GDzkLMe7EqvrnM9HoJrOSh5LfpvLO%2FrC1I0iB%2BvLyA2QnYNPAmhOGXGVPSMzkLfC5TVxu97LB2MDnRHOQM0rLJ1Hr%2BQ6klp8HSMh7Mxf1eeA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f48c3b5694-OSL
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/1718/Superdynamic/amazon/mob.jpg

172.67.193.235

200 OK

102 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/1718/Superdynamic/amazon/mob.jpg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 750x656, components 3
Size
102 kB (101847 bytes)
Hash
3fb2652bf1ec119eaf9c555a33319dfa
caf3a42a36640c604ebd2a120f5d53c8998ad1c0
c35abde1b641a67565a5abaea783405b7c3397936058306dbdd8838e4299a9aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/1718/Superdynamic/amazon/mob.jpg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=&bckm=1
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: image/jpeg
content-length: 101847
last-modified: Mon, 10 Feb 2020 21:02:28 GMT
etag: "b82c316755e0d51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uFSSZD%2FY374fevxIAeGXBklFxPyWuMURykENdilD36BDyi73HVdJfTmLUU8usT57jaU4VcRbZeHTvPuVwn9ao8DFJ1QjxZzRRAHt0grGDoJKV19IEmGvWFjVS3yliBGFVm%2Fnpa5F9s9uAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f48c3e5694-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.163

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:11:02 GMT
expires: Sat, 26 Apr 2025 06:11:02 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
age: 19463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

gfstrck.com/?a=244839&c=381589&oc=220795&sr=t&s2=UgfCNiYzxf59QMsLuEkVbJ&ref=gdmtrck.com&vt=1714131281899&h=a01674f2b723f096bb4fb3ee5ebcce80b74398fd&req=https://gdmtrck.com/?a=244839&c=381589&co=303619&mt=18&s2=UgfCNiYzxf59QMsLuEkVbJ&s2=UgfCNiYzxf59QMsLuEkVbJ&co=303619&mt=18&sip=107.178.194.37&sh=7704b4277bc8445a0fb2463b80c12a1daffc7cc1

54.171.223.44

302 Found

0 B

URL User Request GET HTTP/2
gfstrck.com/?a=244839&c=381589&oc=220795&sr=t&s2=UgfCNiYzxf59QMsLuEkVbJ&ref=gdmtrck.com&vt=1714131281899&h=a01674f2b723f096bb4fb3ee5ebcce80b74398fd&req=https://gdmtrck.com/?a=244839&c=381589&co=303619&mt=18&s2=UgfCNiYzxf59QMsLuEkVbJ&s2=UgfCNiYzxf59QMsLuEkVbJ&co=303619&mt=18&sip=107.178.194.37&sh=7704b4277bc8445a0fb2463b80c12a1daffc7cc1
IP
54.171.223.44:443
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subjectclfstrk.com
Fingerprint1F:4E:BF:6D:32:C8:8C:EB:66:0B:35:BF:66:DD:DC:0A:07:F0:2A:28
ValidityFri, 30 Jun 2023 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?a=244839&c=381589&oc=220795&sr=t&s2=UgfCNiYzxf59QMsLuEkVbJ&ref=gdmtrck.com&vt=1714131281899&h=a01674f2b723f096bb4fb3ee5ebcce80b74398fd&req=https://gdmtrck.com/?a=244839&c=381589&co=303619&mt=18&s2=UgfCNiYzxf59QMsLuEkVbJ&s2=UgfCNiYzxf59QMsLuEkVbJ&co=303619&mt=18&sip=107.178.194.37&sh=7704b4277bc8445a0fb2463b80c12a1daffc7cc1 HTTP/1.1
Host: gfstrck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 26 Apr 2024 11:35:16 GMT
content-type: text/html;charset=ISO-8859-1
location: https://ratrck.com/?oex3=h5yeQbcJcXpNenBvUOeqJInSOAEY5%2fLDvQJDRoz7h5U%3d&s1=244839&s2=96731e2090d84f9eb0f26c963d9ca186261bd&s4=
server: nginx
set-cookie: gdm_uid_v1_1_001=A3IoplqQt7udzZzDdMTe0mfuWkbwdngfBC7/Rbch4v6M5k31/7VSZqVzYG1MREPZ; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:16 GMT; Path=/
gdm_click_adv_freq_v2_1_001=7BXaVSr/Po3b86q1qy22Tsu3jR5sdzaX8jmenI37XLc2KcglbUoN+K5mZLdk/C2f; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/; Secure; SameSite=None
gdm_click_adv_freq_v1_1_001=7BXaVSr/Po3b86q1qy22Tsu3jR5sdzaX8jmenI37XLc2KcglbUoN+K5mZLdk/C2f; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/
gdm_uid_v2_1_001=A3IoplqQt7udzZzDdMTe0mfuWkbwdngfBC7/Rbch4v6M5k31/7VSZqVzYG1MREPZ; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/; Secure; SameSite=None
gdm_sid_v2_3_001=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; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/; Secure; SameSite=None
gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/; Secure; SameSite=None
gdm_click_freq_v2_1_001=1xnY663Dwz37zq1ZH8267t5T2nTT2Ptpc9MHdBCDVusfRRbd/mgtgGRl1zSAv64D; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/; Secure; SameSite=None
gdm_click_freq_v1_1_001=1xnY663Dwz37zq1ZH8267t5T2nTT2Ptpc9MHdBCDVusfRRbd/mgtgGRl1zSAv64D; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/
gdm_sid_v1_3_001=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; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/
gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.gfstrck.com; Expires=Thu, 25-Jul-2024 11:35:15 GMT; Path=/
content-language: en-US
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=

172.67.193.235

403 Forbidden

18 kB

URL User Request GET HTTP/2
www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
HTML document, ASCII text, with very long lines (17756), with no line terminators
Size
18 kB (17756 bytes)
Hash
191a7c68114979655b1f965974e5ee75
a200f9ff3153e56bbc3e00e049fedf43cf9a6f71
a20b5834778918bcfaecc5cbcad55494c84f598dc5e6d24a4bacfeb35c0f66f9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 403 Forbidden
date: Fri, 26 Apr 2024 11:35:21 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: UXbrW16SeQDlInPg+D7G9RbiBEXJ8586N3WeCJ+42vQ1N9089cuJQ1WuOK1w8RtHR5r1CtSvPeduXSHZFZa8ep7TwgHOda5hAYVgTj3yaYM=$Vo7p9m9EMbtZYnGEd9Vpog==
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vzrAIv4pGqoXzgHugY6wEMCVjO6iOni1BQL60cvSPqbj44sCuw9z%2FbqmCWuuGSFtx3h1r1QWGxsAEj7uXkIpLlInWGw7HhoL6zHxBmKnxltesAIgeLu5srj4%2F2iYO9smVZW%2FomxlsSsI0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644d84cc25687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CSS/flybox.css

172.67.193.235

200 OK

1.1 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CSS/flybox.css
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
ASCII text, with very long lines (1083), with no line terminators
Size
1.1 kB (1056 bytes)
Hash
7d43c91ddf852248621989132752da73
02e6c8524cf8f383c3c7c15e3f24bfacdd939616
a63c72394fc9f91b4f96518822d7d4b08c41f725f544afd0cfdef2c2abf812b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CSS/flybox.css HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: text/css
last-modified: Mon, 17 Mar 2014 14:17:22 GMT
etag: W/"693ceb9ceb41cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i7wAecXQ0OLbNOZLFpR4bcFKvWcwXEnWNvHzRSOriJEH%2Bc6ZltG02mpDN7WajpGdzX2D6EfVxlNJLjJr2jdNs3S1NU9DbYALJ70MyU4gRwAjitdltGLy2X4MCtDFjW2ENh%2F9j4K0HZvWtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edbf1e5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/assets/profile_icon_pk.svg

172.67.193.235

200 OK

4.4 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/profile_icon_pk.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
4.4 kB (4387 bytes)
Hash
0c9643805c81e16e3821e12137fc8c8f
b411724ec2d3057c3ea2c4cbbe689f4e1e53dbb6
4dca19841f76a4593ed19307130b570e8414eb92f80445ee5a8c872903c45f77

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/profile_icon_pk.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 25 Feb 2020 19:52:49 GMT
etag: W/"80fe2f2815ecd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2UweW8UmUWiN2fnnpNBWztuWenZ5PL%2FZNatZE%2F%2B2GB3qVyRpORPxK0d8kdcggQleCwhfQaEA16JCeODWaD2K3u47MfV2Ydc%2F3bZ5Ls%2FtE6gTbdRAA%2Fen9JOFs5%2BSDVXaNZDxwc4%2F%2BSA3dw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644eddf475694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/assets/generic_gift_card_us-1.svg

172.67.193.235

200 OK

17 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/generic_gift_card_us-1.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
17 kB (17269 bytes)
Hash
694c0cc731e69bd5566058059028c731
d8c517df02424f4b762cc417e9e7511818851a04
d43295dd46a5c21bdbaceb8f895cb19eb03d734d3ff9bd9c58b34440b837f5be

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/generic_gift_card_us-1.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 20:12:15 GMT
etag: W/"80b947d9267ad51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kaj7CLq3bMWCAT41wYrMceI1YPF%2FP3G7LbRy6Bjuj3vxqXXLoFu%2F2GeyEjGktPyboFVpfIJEbXtNjpBcHWdBMhzPd%2FiP3eg03QI4eeQ3YfZFL8%2F68IvOWRc6oPM4u7rVXMoAWs6FIodcng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edff925694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Poppins:ital,wght@1,200;1,300;1,400;1,500;1,600;1,700&display=swap

142.250.74.106

200 OK

4.8 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:ital,wght@1,200;1,300;1,400;1,500;1,600;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (4864), with no line terminators
Size
4.8 kB (4756 bytes)
Hash
699f8700609423344e6fe24acbf381ad
3113f1ef976eb8506910c5cebd9eed24b3c3c27f
00b8bf39880ec1e481cdedca6521493c8ab03deb2aed4b71ff54383a8fe38612

HTTP Headers

GET /css2?family=Poppins:ital,wght@1,200;1,300;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/exit.svg

172.67.193.235

200 OK

302 B

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/exit.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
302 B (302 bytes)
Hash
d31147c7929a21c3eb9da5e4528c491f
e3fecb3198a5542e370e399f589ff421656421b6
6807bbee5e8dd501f3d416a76ec7375b74f4d75d1265d1368632a88fd9374bde

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/exit.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 25 Feb 2020 20:32:53 GMT
etag: W/"a54692c11aecd51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DfKRfmsGpwk2MER7ZEhBc4xG3D6TQg7HqNpR4SS2rIls7NjcTGx1uMkFoETDqWWLYzHsFVmpyuL%2FOvtron3T4PTn8uv8S8oYSn%2BaollxEZOwDsTCnJhZQi6JDKXIs1PBzJPD7HjLiq5KJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644eddf455694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/check-big.svg

172.67.193.235

200 OK

230 B

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/check-big.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
230 B (230 bytes)
Hash
13db28d3b82bb68b6b9c6495b8f55310
46b0fe42870fe1eef6dd8fe9c6d08ef699addb7b
568f284dbc8fe26fcd3bc99ee95d4c1d84db392a99cadad5222f979132356b0b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/check-big.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 25 Jun 2019 15:04:43 GMT
etag: W/"b7e04d52672bd51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zSvT5ukf%2BLcGphWKE%2BPZ0gVCRx%2Bse%2F8nlVDq22HkqrkZ3ZMWuFZ5PtTvdIknTH52iP5Wt%2BwnsMmPsiD1HbtVkauO1BfyMWX0POdTWB8oDMOs88wxdAEoJvUrf3wzh24MG4CNTOvuUuFGTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f05cb65694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.clicken.us/tag/LocalStorageSetNew.html?1=1&vid=2HgPd7K-mQsGq6ZM4xwOEg2

104.16.243.248

403 Forbidden

0 B

URL GET HTTP/1.1
www.clicken.us/tag/LocalStorageSetNew.html?1=1&vid=2HgPd7K-mQsGq6ZM4xwOEg2
IP
104.16.243.248:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectclicken.us
Fingerprint9D:1E:F7:7C:84:54:C1:F6:8C:3C:BE:DF:34:FA:16:AE:EC:6E:03:3D
ValiditySat, 30 Mar 2024 00:10:18 GMT - Fri, 28 Jun 2024 00:10:17 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tag/LocalStorageSetNew.html?1=1&vid=2HgPd7K-mQsGq6ZM4xwOEg2 HTTP/1.1
Host: www.clicken.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 403 Forbidden
Date: Fri, 26 Apr 2024 11:35:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Origin-Agent-Cluster: ?1
Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
cf-mitigated: challenge
cf-chl-out: NtIf8Z1TGNpJW56Z+m3uX09ddLZjwX2rT1+tbl5iKx5aiuCNzTopzqdEMlD3X/ld6J6+zCWz6A0z7HUSZEr3WEFgQl7vUNYPY2xNyyjCXyQ=$S0pnFlHup8Pf+gNiabvEZQ==
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Set-Cookie: __cf_bm=3WFDcornKryjZh2YnFWqjLdrCrpVtbcvsnKLz0pCqis-1714131325-1.0.1.1-lISRo9XPVp8q6CLSrX4ssswxHlXj.tjIDK_CaGp8eQoacHy3OZRj2P6y0gyStG.ZZtsXCl5f59Vl7eSTdJlJ3A; path=/; expires=Fri, 26-Apr-24 12:05:25 GMT; domain=.clicken.us; HttpOnly; Secure; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87a644f2fd001c12-OSL
Content-Encoding: gzip

www.rewardsgiant-au.com/favicon.ico

172.67.193.235

200 OK

769 B

URL GET HTTP/3
www.rewardsgiant-au.com/favicon.ico
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
PNG image data, 20 x 22, 8-bit colormap, non-interlaced
Size
769 B (769 bytes)
Hash
045459995af63ddb3c3ff2eab81448ec
434ba048889059c2c43caa37c58e53bd3468520a
c18a4b706bf4fa02b06fdb74e1461c6b222944cc39db2b6b90745b5f1007ad08

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: image/x-icon
last-modified: Thu, 30 Jun 2016 14:34:04 GMT
etag: W/"993b673dcd2d11:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RF9cy8KZOdppRrihbgqtmi68eTzYW%2FdLdYztuP95CixR2TN8Gi82ZsyxcQQ59B8Bw7QlDx4LWAQekqhRkrHbFTS%2Bm5w2OeEIKdd%2FJCRwU4Z81GD0ucL%2Fu6CphYXn2XTNMyqja7xaeNV6vA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f39a8f5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/assets/subscription.svg

172.67.193.235

200 OK

3.5 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/subscription.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3457 bytes)
Hash
e23cbe05f180f76780b0ff757859ec83
336d46c8389dcf57b8fc944ab7afefaa75cd6cea
333a0ec3de08df1491f3603eeeee36b9e6c399530da4676337f2a3dc6ba2c520

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/subscription.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 19:51:59 GMT
etag: W/"7428804247ad51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tW%2FekCFOZyD6xAfXy6Ilhyg0DknQ2nK2lnKMk383Tv6TvPesPw6zDClzknRZkRmps73ZXiqOrtcvFGBkElnz0fVfb%2BpnuNPu8bDKXqcrihkNncLQIS%2BDp3012epslvRWdfiWKefjDhN6pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644ee0fbe5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js

172.67.193.235

200 OK

93 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type

Size
93 kB (93436 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/jquery-1.8.2.min.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: application/javascript
last-modified: Mon, 17 Mar 2014 14:18:05 GMT
etag: W/"808c61b6eb41cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MbB%2B4JYmLIJ7GPW8ofwnJDKydz9DG3kWk25%2FTt7kF0ZMDrfTSWY%2BTOTZ9smaRGazXV%2B5ZJs3T22i20SJOWXPUQsRiw3CG077ToFlOkt7w22%2FjGclHG9jHTjMK8heo2TNCUHXHJ3aCvk9mQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f41b545694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2

142.250.74.163

200 OK

8.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8668, version 1.0
Size
8.7 kB (8668 bytes)
Hash
a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972

HTTP Headers

GET /s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:36:52 GMT
expires: Fri, 25 Apr 2025 17:36:52 GMT
cache-control: public, max-age=31536000
age: 64713
last-modified: Fri, 22 Mar 2024 00:00:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/JS/jquery.colorbox-min.js

172.67.193.235

200 OK

32 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/jquery.colorbox-min.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, ASCII text, with CRLF line terminators
Size
32 kB (32163 bytes)
Hash
67ecd5ef68ad2bbdc89f673355ec270a
537e4d4873e8608139087d5e7d1e94a0a33e29e0
1e8cdf8b6b76616f6e721a0f53dfab323db16cc7eddfd7136135c5d5382ff126

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/jquery.colorbox-min.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Wed, 29 Oct 2014 18:02:54 GMT
etag: W/"01bcf8fa2f3cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UPLkh1D8%2Ffe4Mpknqhrd8GwhEKeh6Sid1EybhC3Tme9iatA68cuYTO9dze4FZgbZ31UWvnTuCmeF%2Fc7jjiPpK4MRTxKmgKlaz60%2FCf2G8RAFS2i4I0CyoMwqgtpRcMqSpnUuN8l6VVqfsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edcf355694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.163

200 OK

7.8 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:11:02 GMT
expires: Sat, 26 Apr 2025 06:11:02 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:32 GMT
content-type: font/woff2
age: 19463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

172.67.193.235

200 OK

155 kB

URL User Request POST HTTP/3
www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type

Size
155 kB (154819 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID= HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=&__cf_chl_tk=mzcW5QJKzIiH1ELcLj2yfsEXWpv20OAzHr7kEIRYzns-1714131321-0.0.1.1-1770
Content-Type: application/x-www-form-urlencoded
Content-Length: 5018
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:24 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; path=/; expires=Sat, 26-Apr-25 11:35:24 GMT; domain=.rewardsgiant-au.com; HttpOnly; Secure; SameSite=None
ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; path=/; HttpOnly; SameSite=Lax
AF3_Cookie=; expires=Sat, 26-Apr-2025 11:35:24 GMT; path=/
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g5Petdgo%2BA9%2BPhrTN6jqk5Lbse4peVzEY03dbn3rbEJtB6AMfPExYyysCNI2mtnMPDVWOcwO998GYx5K%2Fj8UjJjd5wI0gIOCPLFh59sUH74%2FVrX65s%2Bt1B%2Fd%2F13XdxyHHu0SSeIUApjAGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644eb2a065694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Roboto:ital,wght@1,300;1,400;1,500;1,700&display=swap

142.250.74.106

200 OK

9.4 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Roboto:ital,wght@1,300;1,400;1,500;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (9684), with no line terminators
Size
9.4 kB (9432 bytes)
Hash
af97c00cd3fb1e12747336980396dc54
ffbd23f2366bb4868a90e6b9cfe476aa2bc92a36
399b04ccd7c11e4873397ae02476686a9fc9e48e845fc122765894f9d605cfd4

HTTP Headers

GET /css2?family=Roboto:ital,wght@1,300;1,400;1,500;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/credit_cards_icon_pk.svg

172.67.193.235

200 OK

7.7 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/credit_cards_icon_pk.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
7.7 kB (7729 bytes)
Hash
f3e244d340a0168955ac508d184d27cf
efa040b849c4f7e900f569594f85aed80e5e12d4
705fb9c28c7c4d2f24720f9624b69f81ce5d2ce0231053026807e5545efc9e0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/credit_cards_icon_pk.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 25 Feb 2020 19:52:49 GMT
etag: W/"6385442815ecd51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K7nvmpq85ML5S4Gjscbk%2BvXW8lImBodFUqtFc2MACgESyPsv%2BvglMHPuE%2BmHrKlrnRUY%2Bh0mSeILl1jTmM0Ohh4TzP%2BPhqAMk1JQnvUfUYD0ySyOPSbvkyrujEB5YsC0nAkfk8TdvEZBKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644edef7e5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/assets/games.svg

172.67.193.235

200 OK

6.2 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/games.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
6.2 kB (6156 bytes)
Hash
f5a387e910a98b3c80e9e4b2eb566e13
a100ef9b0ef4314fc83242105b32afded62d1a02
b8f38daa8df84b02a8cf793ee2322896521cb606c86e2aa8bd875f591bfbec17

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/games.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 19:54:53 GMT
etag: W/"8024336c247ad51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hmg043EZGStU0PPnXfij07AP4YiEitnAxYY7F6ZstMBBgNOc3xcxMmJ8fK0kGWBgR2PvDi%2B1%2BPT6Zj14WOj5QeuSw1wXZj1ID7NLF4GD%2FaF84GSgQfzeOpujQnziTOTLZWxM6x91gZLLJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644ee0fae5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;0,900;1,400;1,500;1,600;1,700&display=swap

142.250.74.106

200 OK

7.9 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;0,900;1,400;1,500;1,600;1,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (8074), with no line terminators
Size
7.9 kB (7894 bytes)
Hash
5cdb0473771217f8a3b16a58beb22dfd
bbf507490769fb15ad8bdb25317163feb38ca051
faa29f76198a5e1929099ef5df22f5493e4b1374828cb71de6f6d86162c75a30

HTTP Headers

GET /css2?family=Poppins:ital,wght@0,400;0,500;0,600;0,700;0,800;0,900;1,400;1,500;1,600;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 11:35:25 GMT
date: Fri, 26 Apr 2024 11:35:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/assets/financial.svg

172.67.193.235

200 OK

3.1 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/financial.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
3.1 kB (3071 bytes)
Hash
d7427c306ed58e22cb332c07d48c1773
3712058d35e2466faab52c602a014701f5d760ca
8540781533ae26038639c4e69b015597c999c7b1e53daba21c0e30ffde314643

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/financial.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 19:51:59 GMT
etag: W/"80d97c4247ad51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QaLkItLn5RTM2Q%2BAoI9gZyP7qlSf7hudrZwvAaapuUi5wMoNcm6yUDUmcG7JOyt86a2E6p10BUGK1b1Lm5R5aiJ1Mt1%2BAqGT5TiuezZaxz1Ugsst3UzmUnVwiTTTByC3az4AHBZkztl%2FQQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644ee1fd45694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.163

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:25:01 GMT
expires: Sat, 26 Apr 2025 06:25:01 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 18624
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/Services/BrowserInfo.ashx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&windowx=1280&windowy=1024&resolutionx=1280&resolutiony=1024

172.67.193.235

200 OK

0 B

URL POST HTTP/3
www.rewardsgiant-au.com/Services/BrowserInfo.ashx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&windowx=1280&windowy=1024&resolutionx=1280&resolutiony=1024
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /Services/BrowserInfo.ashx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&windowx=1280&windowy=1024&resolutionx=1280&resolutiony=1024 HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-length: 0
cache-control: private
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2BwuivoEg8FK84bKVrviPwsUq%2Fw9EVmvEkFyxPbgwgo7k3y4yfdVoro0XSvC5RiXwnr5qcc9lSpqah1zGZHeTgNJW3f72OsUYUwBISgmDHLdxmePKRG2SqSyaYbuwMOHUhmTx%2BgDToCgAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f0edda5694-OSL
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/uplevels/partial_pop_deals.svg

172.67.193.235

200 OK

53 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/uplevels/partial_pop_deals.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
53 kB (53058 bytes)
Hash
1cda3843525c136babf8db1268d3e66a
6d6f873d06921e8f24eac18632aaacf864effe47
a4214c4fc6ce0281bc3d69c211182f26d9a1f5bd7f25f68fd572ae077a064572

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/uplevels/partial_pop_deals.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 02 Nov 2021 14:51:55 GMT
etag: W/"b7291a2ef9cfd71:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w0IkIygyCsSXYq%2BGkZxxE1uEsnw56IsST33831c0K62lrDjEMQ9FAvhMxjCY5hZKzA23ehYPmELJRHqeqek3OgLwe4XQCP9hP8XhHOnvag3j4i4zTtj0qd%2BjYXOZgM8B67fJEMomKMeLfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644edef815694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/uplevels/bg-darkweb.png

172.67.193.235

200 OK

88 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/uplevels/bg-darkweb.png
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
PNG image data, 1100 x 602, 8-bit/color RGBA, non-interlaced
Size
88 kB (88277 bytes)
Hash
9e6c3008388010e0bd1fbd6dcbff02d7
ca8d71f947f219d8b55b6131c5aa8b8883f872fa
c1a202cc888d8a81baae8a7fb7f317058b5215acf0dd44233c0ee92c8592dd3f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/uplevels/bg-darkweb.png HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/png
content-length: 88277
last-modified: Mon, 01 Nov 2021 16:42:54 GMT
etag: "bd964c843fcfd71:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X9u5VHZxF80s%2BLDzaQaWZCsHuU60peY3bov2ruxtzw1O2vKwu3xlg1OKkg5xNzVPpSXIj0BotfIZUtu8rVjYFDtUOiPXMyGG9qkTT2Av3EYZaCVhlYiwWqgzIeQZvZpImbY2OeVTT4rUHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f0cdab5694-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 262133
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2

142.250.74.163

200 OK

17 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 17368, version 1.0
Size
17 kB (17368 bytes)
Hash
abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9

HTTP Headers

GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:38:21 GMT
expires: Fri, 25 Apr 2025 17:38:21 GMT
cache-control: public, max-age=31536000
age: 64624
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CampImg/13069/rewardsgiant/avail-tag.svg

172.67.193.235

200 OK

3.5 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/rewardsgiant/avail-tag.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3498 bytes)
Hash
c41af018c3b4199e82bce316a2c0c0ec
14164b81fda152f67878754f2526e96d58937a5c
ca3c46bab1e0ade0d53d8d45c493eac912cd7b522f14087b2f0f5ff1b3222dfb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/rewardsgiant/avail-tag.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Oct 2021 22:21:30 GMT
etag: W/"4a6c8aa37c5d71:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AEzGw48WpUfFpYBcY5duUDzDsID7WdoGtBzQrfrEVN8vpC5M6AZCGwBLbEQbGFaRnZJGS%2FPGjPGzp3k2RrqDTxe8A%2B3HHveyyuywTOq1aDcQdifQCAw6JpWpnBdO5pOwdVXMmKHcceJHew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644f05ca95694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/uplevels/uplvl-logoblack.svg

172.67.193.235

200 OK

16 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/uplevels/uplvl-logoblack.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
16 kB (16337 bytes)
Hash
664c4cf232bba04e6359f2d385c0a165
4fc8ec8e715cb7c106804d9cc6a35e7044a22956
3ba38e49b7051ac2f737627d1a9a72ec2ddf7b3c8897bb19c0f4d206aa9633a2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/uplevels/uplvl-logoblack.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Mon, 01 Nov 2021 13:28:19 GMT
etag: W/"809b715524cfd71:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 33
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FsNXXZxdCeZ6fvzMD%2F4siGI%2BRSD3YSJbjwyrRjLupzZbEzPjgAtUC3rofmtQ1vi4CkH9ZTvmdoHJzR2Fp9hqDsuyfPNaJ9PyJjNa9KTxbe3evwRy4YBiukzACrVTkMHjGKQFhjs5RvZR3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f05cb25694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/Services/GetRewardValue.ashx?c=32&Value=amazon750au

172.67.193.235

200 OK

556 B

URL GET HTTP/3
www.rewardsgiant-au.com/Services/GetRewardValue.ashx?c=32&Value=amazon750au
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
ASCII text, with very long lines (608), with no line terminators
Size
556 B (556 bytes)
Hash
abd23a79a09911fab62f2d57b62f62a9
bfa88c249a8ea3a9cd6920d5e44d381db12c607f
62d36d1aca92c3fb876e367f337012e3dc24b13979564d6dc8fcfc6cf79acad6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Services/GetRewardValue.ashx?c=32&Value=amazon750au HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: text/plain; charset=utf-8
cache-control: private
vary: Accept-Encoding
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e1qySoTUE%2F71TJSHuJQMJdaV%2FLQPEAyJfn9NA92cpw4ZaJlg16K5rCi16mOxe5wg5hMPq%2BkVyV%2FgiDVuvzciaodBWt%2F1OaN1as62QdsfcciopBoPvW%2Bsx8lafiIko7yTR9tBR8%2B%2Fuun5Iw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f2e9b55694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/Services/GetRewardValue.ashx?c=32&Value=amazon750au

172.67.193.235

200 OK

556 B

URL GET HTTP/3
www.rewardsgiant-au.com/Services/GetRewardValue.ashx?c=32&Value=amazon750au
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
ASCII text, with very long lines (608), with no line terminators
Size
556 B (556 bytes)
Hash
abd23a79a09911fab62f2d57b62f62a9
bfa88c249a8ea3a9cd6920d5e44d381db12c607f
62d36d1aca92c3fb876e367f337012e3dc24b13979564d6dc8fcfc6cf79acad6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /Services/GetRewardValue.ashx?c=32&Value=amazon750au HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=&bckm=1
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: text/plain; charset=utf-8
cache-control: private
vary: Accept-Encoding
access-control-allow-origin: *
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KSJ0QpKYcan%2BCMkDCW51ukVAixB7K6PSABn03UzHPkPfvz8YEWTydlennHfYwMdGE%2BcIqtR%2FH%2F4WUHXhV7p5aTkMORySufvG3bAI%2FraNHKheTB5YjMrD7K2%2B3vIR10O2un3fw4a2q6YzPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f769145694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc=

172.67.193.235

200 OK

1.7 kB

URL GET HTTP/3
www.rewardsgiant-au.com/PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc=
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1879), with no line terminators
Size
1.7 kB (1726 bytes)
Hash
d3860bccae5bee35d81c7f78fd9dabc3
36233529ec0cf8e788430ec98eccc1ab075f8359
472625ebee8c3b8a97065f64a94a564ab878492577f6d59214abcf5b9614fad2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /PixelEventLogIframe.aspx?FlowID=48601&VID=2HgPd7K-mQsGq6ZM4xwOEg2&PixelEvtID=23991&fbclid=&gclid=&ckmc=&ckmscn=&ckmsc= HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:26 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nlfGSg5fa4QK4T8RjfA%2FoizTF0fdC04ITaanJ7Cm71H7LYZQpJipx0yROndK3mTJ%2BUEAkkre3L9Os0EL6esc2il%2B7dEnQejQLq81albgz%2B4RvyAarY5noZP9Y6t8XEIPgVTwpoWTSvggtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644f298c25694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:08:29 GMT
expires: Sat, 26 Apr 2025 06:08:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 19616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.163

200 OK

8.0 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v21/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:25:01 GMT
expires: Sat, 26 Apr 2025 06:25:01 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 22 Mar 2024 00:00:59 GMT
content-type: font/woff2
age: 18624
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.rewardsgiant-au.com/CSS/colorbox.css

172.67.193.235

200 OK

4.2 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CSS/colorbox.css
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
ASCII text, with very long lines (4285), with no line terminators
Size
4.2 kB (4178 bytes)
Hash
2cc498112d5bdb2f62fee1689699d6a4
1190dcdf02ac186a0b56d485ac4dfb1d5f276e1f
b5e40f273c1c3b029ed694698cc2a78984e35c66057316fbd7b50f9b23aa78a6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CSS/colorbox.css HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: text/css
last-modified: Tue, 17 Feb 2015 15:15:05 GMT
etag: W/"80e21182c44ad01:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2rzirvDq4WKs1BJ6FTHrYWTyuTBWYgo1RacXOLlIeNc3Mxokf9GueyWP%2BUsvcO502zl5k4wnE1xVIXLYoGMtIlVR%2F%2Bfos8ki76X3NTWbA0kCo10BlHcNpTd86l0u7v55hiKcLAFXiyMBvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edbf1f5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js

172.67.193.235

200 OK

93 kB

URL GET HTTP/3
www.rewardsgiant-au.com/JS/jquery-1.8.2.min.js
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type

Size
93 kB (93436 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /JS/jquery-1.8.2.min.js HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: application/javascript
last-modified: Mon, 17 Mar 2014 14:18:05 GMT
etag: W/"808c61b6eb41cf1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=We%2FkXCoPsQ3OteUd652Rc%2FRnGHOzIZ59miW9zUXVV1t0N8r%2BPrNV7cNH2JiU96plNDM0dhm5%2BoqCdq1hEMaNE1zyIsMLhcww2GZu2s2LJyM%2FcioqNxlKLWQap7JYS0zogAWHH7cfAye61g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a644edbf235694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.rewardsgiant-au.com/CampImg/13069/assets/phone3.svg

172.67.193.235

200 OK

18 kB

URL GET HTTP/3
www.rewardsgiant-au.com/CampImg/13069/assets/phone3.svg
IP
172.67.193.235:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subjectrewardsgiant-au.com
Fingerprint25:51:00:BA:47:97:7B:41:0A:8B:99:92:2E:99:AB:0D:9B:94:83:27
ValiditySun, 14 Apr 2024 03:19:14 GMT - Sat, 13 Jul 2024 03:19:13 GMT

File type
SVG Scalable Vector Graphics image
Size
18 kB (18075 bytes)
Hash
138f730e25f530c672157b3ba419c735
32082e7438d476168acb089e5b11d2e463b716d2
3c280f74301b7eb86c854664cd3e5707e7ac4810f304b98f4481f16b55ccfdb3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /CampImg/13069/assets/phone3.svg HTTP/1.1
Host: www.rewardsgiant-au.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Cookie: cf_clearance=K6s8AbbB83xLzZJhDrIsNJnyRnLQ.5u02EJGyBNnCuE-1714131321-1.0.1.1-Z2ZhxwzKi7Fs7I1FrzfhDnNdxb4bGLH_by0Qf2gFVl_Czk_X2Mq4j8ZMSbZxlYK8UfrkjMS7kPn.LKgI3LQr0g; ASP.NET_SessionId=nyyd5bqwzlc2i4p0yyekomc2; AF3_Cookie=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 11:35:25 GMT
content-type: image/svg+xml
last-modified: Thu, 03 Oct 2019 20:01:50 GMT
etag: W/"88782065257ad51:0"
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 34
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2zvWCRb7DH5xR0FR573bnbadygKXuwwSJEWhN4bep1yK%2Fck1NrOIcJ9uJERPl2Be3a4%2FpDOwd%2Fq4NEJcVBDZP%2FGJpAFaxc87H9I9AwpNILVkCfcrqyuuN%2Blr5D12DXesTFh%2Fau2%2BXRqgPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a644edff905694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2

142.250.74.163

200 OK

8.7 kB

URL GET HTTP/2
fonts.gstatic.com/s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.rewardsgiant-au.com/?Flow=37761135-A7CD-4904-FA56-47968ED5F6E0950A4835&isPrePop=true&RBC=1&reward=amazon750au&o=212838&affsecid=4815496932&subaff1=244839&subaff2=203360&subaff3=244397&aff_pixel=&subaff4=amazon750au-default-20346&DVID=
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8668, version 1.0
Size
8.7 kB (8668 bytes)
Hash
a242ba0df3a128a2cab929a8c45d5056
d70e2c70b21cbb66cd883ae56e2dedacefd81c7c
50d0c1742d80ac71f4cde20e8c04d41a24806af342831f479938b527fbff0972

HTTP Headers

GET /s/poppins/v21/pxiGyp8kv8JHgFVrJJLucHtA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rewardsgiant-au.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 17:36:52 GMT
expires: Fri, 25 Apr 2025 17:36:52 GMT
cache-control: public, max-age=31536000
age: 64713
last-modified: Fri, 22 Mar 2024 00:00:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (115)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML