cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.1.0/css/flag-icon.min.css
104.17.24.14200 OK 1.5 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.1.0/css/flag-icon.min.css
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (33688), with no line terminators
Hash 59a25841d0d31eba4a72fa9a12a6b538
06fa5894a523dc2017d02af639a245bd72c5a807
0fe6690c98e11b16b97dfc9092e4efc228b8027b4518165ae235214a97658633
GET /ajax/libs/flag-icon-css/3.1.0/css/flag-icon.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css; charset=utf-8
content-length: 1478
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-8398"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 576805
expires: Mon, 28 Apr 2025 12:46:40 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EpqQqh3CdI0O6SOrM6cMmT4Z6E8KY8mCEiS60lX0q67gEJFkct%2Fm4H2E0u4UBbUDML6%2FjBW3jH%2Bdbc2u70tjN3yPw5LMR3FxcGnnkl28tQ7awRxOyFq6fUPNpsjVlPiBo3yIInhD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88098dcf892b5687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.184.192200 OK 39 kB URL User Request GET HTTP/2 IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (2764)
Hash 5c00a4084542bd66e601edc604d5acd7
e03ea2d5b6161d89ffc9feafc8659f74c184b020
66d31590cd2f6c407507f2a8695722a84bc3d0bfd67f7ea64375be4b383d159f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; expires=Thu, 23 May 2024 12:46:40 GMT; Max-Age=1296000; path=/; secure
SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D; expires=Thu, 23 May 2024 12:46:40 GMT; Max-Age=1296000; path=/; httponly
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y3XwcstyN4QtYD7whbZTjcXEwYpLseTodIRV8MsrcSun0Zu5vmYSQM7Q8T5EPuoevpYkt7eoEmWhQw0eRFFeEDK370Gsbmx2TgrgLTeImjIrex7xxT1rvGVdh6b5fhS%2BIw4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88098dcaf96c5696-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
151.101.193.229200 OK 24 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
IP 151.101.193.229:443
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File type JavaScript source, ASCII text, with very long lines (65299)
Hash 0aa8d64e726c4a57adb5c88f9115996b
901169527507ff9e662cf64d8e361f359308970d
7e1f1503df765cca5e099891b94e318a2ef95081ba2af1eb6d417cc884bfdbfe
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: br
accept-ranges: bytes
date: Wed, 08 May 2024 12:46:40 GMT
age: 1386983
x-served-by: cache-fra-eddf8230080-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23943
X-Firefox-Spdy: h2
shopallgift.com/storage/public/products/393671/B07B4B8Q2T_R00.jpeg
172.67.184.192200 OK 17 kB URL GET HTTP/3 shopallgift.com/storage/public/products/393671/B07B4B8Q2T_R00.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 800x800, components 3
Hash 23c489fcc9725ca828e2fd92df63ac67
0241e02948caf4a368fd2e5794de0a2b5a84aaef
d2fea6ccf07ae60ab84aa8c1f26dd8e4dbfc70051ddb3eea450b39819ec9dfdc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/393671/B07B4B8Q2T_R00.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 16703
cache-control: public, max-age=86400
etag: "23c489fcc9725ca828e2fd92df63ac67"
last-modified: Tue, 30 Aug 2022 03:55:24 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d%2F9ZLo3PXUkrgWMyO0wKkAONQgBckTIUYGEEeBdphXOfC6im5OMtPhIZcFhEE%2BDFVtCUIBvdDdLWnhM%2F0sYdi%2BUeibxhpmmyesJxSuhMJ4nqWT3%2F2F2Y7VAnQSVCL5D96y8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf491b56b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/376241/8424001953721_S3033864_P34.jpeg
172.67.184.192200 OK 111 kB URL GET HTTP/3 shopallgift.com/storage/public/products/376241/8424001953721_S3033864_P34.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description= , manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Adobe Photoshop 23.1 (Windows), datetime=2022:03:01 08:10:25], baseline, precision 8, 1200x1200, components 3
Size 111 kB (111008 bytes)
Hash d6aee07de1d5c876119a2568611bcddc
d6322732e8f4490c2c50cf7c194d37784a5cfe2c
252468bd84797d4f09fa0dd35dc938f82d4f7dda1c82ff2208616c090c335353
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/376241/8424001953721_S3033864_P34.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 111008
cache-control: public, max-age=86400
etag: "d6aee07de1d5c876119a2568611bcddc"
last-modified: Sat, 09 Dec 2023 09:23:43 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UrB6G%2BI9aJCBpoi43ntKE17QQglGlOMn0iHEO1CqfC0lcyNo7y0n7Nc9MDHPP9l5%2Bl2HzedX9ju7KyCB0thP%2F1cQ1TUe2R2%2FtFqOdTWxMmwfBEkp7zbl1jBYdaCCChu5rfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf593d56b5-OSL
alt-svc: h3=":443"; ma=86400
code.jquery.com/jquery-3.7.0.min.js
151.101.2.137200 OK 30 kB URL GET HTTP/2 code.jquery.com/jquery-3.7.0.min.js
IP 151.101.2.137:443
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash e6c2415c0ace414e5153670314ce99a9
5a9eeac34d86e92e5660e0f4f87204f1ed0c8ff6
d8f9afbf492e4c139e9d2bcb9ba6ef7c14921eb509fb703bc7a3f911b774eff8
GET /jquery-3.7.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-155a6"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 12:46:40 GMT
age: 1028630
x-served-by: cache-lga13623-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 6, 154589
x-timer: S1715172401.682660,VS0,VE0
vary: Accept-Encoding
content-length: 30308
X-Firefox-Spdy: h2
shopallgift.com/storage/public/products/376240/8424001937127_S3033582_P34.jpeg
172.67.184.192200 OK 103 kB URL GET HTTP/3 shopallgift.com/storage/public/products/376240/8424001937127_S3033582_P34.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description= , manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Adobe Photoshop 23.1 (Windows), datetime=2022:03:17 09:19:24], baseline, precision 8, 1200x1200, components 3
Size 103 kB (103022 bytes)
Hash 41f0c2a9a4d654af7909482e6f1d49eb
7ba715a41a6a0298a3963f2c17fcae00d03e7fae
7d9f6c95486b3a0544a3ddc09787c8eb5ab5bdf2ccda3c7cee99de0043d5acce
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/376240/8424001937127_S3033582_P34.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 103022
cache-control: public, max-age=86400
etag: "41f0c2a9a4d654af7909482e6f1d49eb"
last-modified: Sat, 09 Dec 2023 00:35:40 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B9ury7NPdHUV%2FIGwLpDRy9cjs0Wjz56QyiALsv%2BW9gCWFQByGIWp2LV%2BqsWCn9rO4txbLV7KYHVwJquNa6dHGmINlTM0ejgQsFn2D1YbC70J4KDQb4T179K%2BLP%2BXqbCyuf8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf592f56b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/220527/8424001829866_S3016000_P002.jpeg
172.67.184.192200 OK 65 kB URL GET HTTP/3 shopallgift.com/storage/public/products/220527/8424001829866_S3016000_P002.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, height=1333, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=2000], baseline, precision 8, 1200x1200, components 3
Hash c2a55bd20083edfff7f663bb565e525f
90013e43f47910867e663d4c210d72b2acb26f0c
6309d4598d79b897fd42309ab69c510ad15074e89b699b3f13f8cfc7fc6fc24b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/220527/8424001829866_S3016000_P002.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 64587
cache-control: public, max-age=86400
etag: "c2a55bd20083edfff7f663bb565e525f"
last-modified: Sat, 09 Dec 2023 06:53:43 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8eg1FG0V2UAM4Ey7dlXh7J5kTcinfnY49BwJMnjV9q0kejOfcSBZrE4gL2Vb6AcC%2B3zrRhMLBqprnexa7VYL2Z%2BB5wNNB5RCTYub%2Fi9fu6tjNb30XlY7jCcmp7Gs3LJSamY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf491956b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/244110/V0103289_000_MKT2.jpeg
172.67.184.192200 OK 210 kB URL GET HTTP/3 shopallgift.com/storage/public/products/244110/V0103289_000_MKT2.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, height=4160, bps=206, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 6D Mark II, orientation=upper-left, width=4160], baseline, precision 8, 1200x1200, components 3
Size 210 kB (209942 bytes)
Hash a16ea5752505311fb9f086057ac52381
cdbc692358292609b4af994d650d4ab7c72bc028
1e21e04a6d645dbf5f014c659e9c84426d768c5e7ca629744ab5b68ec700ca66
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/244110/V0103289_000_MKT2.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 209942
cache-control: public, max-age=86400
etag: "a16ea5752505311fb9f086057ac52381"
last-modified: Sat, 16 Mar 2024 04:20:15 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FIuDD3xRtOhKbmmthqz8mBqBCFJU2dKkqyYyTQV36ub90gIlxXezDX%2B9g11gV%2FfHRO3d%2FaOa0XXZLG%2F9fXLjPvkKHoazGKkR0gtU0IsZ%2FlvUEEbGMJnfMXaKqQ%2BMX6M4%2B%2Fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf694f56b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/297523/8436023890342_S4257580_P02.jpeg
172.67.184.192200 OK 72 kB URL GET HTTP/3 shopallgift.com/storage/public/products/297523/8436023890342_S4257580_P02.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=1500, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=1500], baseline, precision 8, 1200x1200, components 3
Hash 1832852b89ad0e01f443e055e80ca823
67ca138c0d2f5e6099829e38f6a863294715be04
948298bd87340f05b83123d7b94a1e2d0fd8f773e3d0ebfd4f608dd509b93bb2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/297523/8436023890342_S4257580_P02.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 72062
cache-control: public, max-age=86400
etag: "1832852b89ad0e01f443e055e80ca823"
last-modified: Sat, 10 Feb 2024 21:58:20 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ga9WRmJy%2FcO%2FpUCI9%2FXaRJrN%2FqRvM2CcbxMpACW3G3acv5p2ICyTyKm4CFVV%2FtzdZAvehFDyTWvrAFWOoFaHEtJtuwLWuHitGULYRA2Cr6Trc8MyPJhaIRTeOV5yeliBFYo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf695156b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/323425/8424001918683_S3023838_P25.jpeg
172.67.184.192200 OK 74 kB URL GET HTTP/3 shopallgift.com/storage/public/products/323425/8424001918683_S3023838_P25.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description= , manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Adobe Photoshop 23.1 (Windows), datetime=2022:03:04 08:01:55], baseline, precision 8, 1200x1200, components 3
Hash 099c514a4ae774df29ec5efd4d667485
9f7d969de26870e43f2a121ef5078d15c83cafdc
3c0c6d00e9387bad1642c2a35766d5bc3cca66b442f10c7cea63fdab9ba63dd4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/323425/8424001918683_S3023838_P25.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 73969
cache-control: public, max-age=86400
etag: "099c514a4ae774df29ec5efd4d667485"
last-modified: Sat, 09 Dec 2023 09:01:49 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RW1XBf%2BQB88frhKMhVcML6r6a%2BL2WE78AeV9t2N1Wu0tt928Ns7aW9w5f%2BTAwnxnGnsCWzXrhVgkjJvyiojNPCMxNBFIhSxBY5kU9haGV6ARRf6dNOh8zw%2BAuEb6NJnFcE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf695556b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/328024/8436023892490_S4257588_P0_13.jpeg
172.67.184.192200 OK 42 kB URL GET HTTP/3 shopallgift.com/storage/public/products/328024/8436023892490_S4257588_P0_13.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1200x1200, components 3
Hash 3b5ca99f42855824860c6abb678f2162
22317bbc2df95568f2c235475456248bda4da354
279450206d1d9e386a28d268b0de2a2b8f06dcc16b2910d370dfee8fa3fd0e56
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/328024/8436023892490_S4257588_P0_13.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 42449
cache-control: public, max-age=86400
etag: "3b5ca99f42855824860c6abb678f2162"
last-modified: Thu, 07 Mar 2024 03:53:50 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IjoMUDS5h5hcbNcdFoUSDwQzQpcp9yjNK1Yv%2Bxeljl%2BHynTZef9fOGFct3OJE00sSlnMuCYQ7A3LL9oV4e39wWfGSGF83OZoLYvAqvci6tTGrKeVGvNm7pD3yKQPYBcitWU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf695756b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/220530/8424001829828_S3015997_P002.jpeg
172.67.184.192200 OK 97 kB URL GET HTTP/3 shopallgift.com/storage/public/products/220530/8424001829828_S3015997_P002.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, height=1333, bps=158, PhotometricInterpretation=RGB, orientation=upper-left, width=2000], baseline, precision 8, 1200x1200, components 3
Hash e5bc37260056655d39219796897b13ec
1c2e24a24e63222ac18cb73ba19fdd1efe41c7f4
5f48fdc090b9d04be656ee3b539d2156044e4377c68c6763423f543f386a90f8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/220530/8424001829828_S3015997_P002.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 97202
cache-control: public, max-age=86400
etag: "e5bc37260056655d39219796897b13ec"
last-modified: Sat, 09 Dec 2023 04:45:28 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BkL8A0yvcI6s%2FwfELfRMuOd2mTYHPnE%2BhKEDrqjUaImnFyxYAeYHMF9ARCyrF%2FqJIsXEJonJ%2Bkgif3oup5KBkln2RPM3ZoCHv%2FunZ%2FXz4Cob2iEySs2rjZj%2Fs1nK4%2BOKGdM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf594256b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/amazing/credit-card-visa.gif
172.67.184.192200 OK 1.1 kB URL GET HTTP/3 shopallgift.com/storage/public/amazing/credit-card-visa.gif
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type RIFF (little-endian) data, Web/P image
Hash b696e7100edeb77826606e22099d2a25
6cfb0cb996e3dcbb1c84379ce972e239af45fd7b
c6cdb96cf2c773d73aa862de09cc5c4935dad743a94722ae75db81bf0034f80d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/amazing/credit-card-visa.gif HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/webp
content-length: 1102
cache-control: public, max-age=86400
etag: 6cfb0cb996e3dcbb1c84379ce972e239af45fd7b
last-modified: Tue, 31 Oct 2023 10:11:39 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a7O0knmRSkFaFcrAcHhRbcXLQCZUSFX%2FnOKiyqYnatJAlyiY5R%2BZOr3mT183JbeByulq%2BZsXRraEEiLStGNEvJdCPgtGYX%2FDfWuCXNp6DO6cK1dcsKxkIc%2Bqh%2FgDOhDoq5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf796356b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/amazing/credit-card-master.gif
172.67.184.192200 OK 1.1 kB URL GET HTTP/3 shopallgift.com/storage/public/amazing/credit-card-master.gif
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0547f6643e41529737d557c1b93ed622
381e7a9a3cd80cc76626fd2ae2d127f977cabfe4
d634969485d4d94f514df0d103d11ac1c76d7a6926fa436540e5c5ce91c846fe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/amazing/credit-card-master.gif HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/webp
content-length: 1142
cache-control: public, max-age=86400
etag: 381e7a9a3cd80cc76626fd2ae2d127f977cabfe4
last-modified: Tue, 31 Oct 2023 09:52:53 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=laCXAkDgdnr6XXj2d7oH0DR9TOaLYqtPN5ASP%2FIN4KWYc3o05TDZx4OqfZREoJo6tWFey7tehV59dZSx8zcLD%2BKfc7tZ1c1ESBV7XcVoNWOP9Q%2F4zFAg08v6e3G0mx5x674%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf796556b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/293979/V0103364_000_MKT3.jpeg
172.67.184.192200 OK 201 kB URL GET HTTP/3 shopallgift.com/storage/public/products/293979/V0103364_000_MKT3.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=4160, bps=170, PhotometricInterpretation=RGB, orientation=upper-left, width=4160], baseline, precision 8, 1200x1200, components 3
Size 201 kB (201367 bytes)
Hash 1ac2f65e05b46622f2e28b14f04c4775
e7c657dbd1dd98fde80ff7380dfed7fb07c17817
56a7213099af849e4e6d1021be441691cc6fc52069d8a7355af95f63c74be4c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/293979/V0103364_000_MKT3.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 201367
cache-control: public, max-age=86400
etag: "1ac2f65e05b46622f2e28b14f04c4775"
last-modified: Sat, 16 Mar 2024 03:37:01 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B5S%2BeF3f5GT3M039prC74yzOk0EdEztXelIHOm3v6Ucjxry0PCtkoPh5PsSGMXURr3zOtJS%2FXiwGaybhal1X%2FZAXM%2FLjNVNNuvmf9tU3I2VQNpRRQATdOdhIxMmvJqzmaD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf695056b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/376266/8424001898732_S3033117_P34.jpeg
172.67.184.192200 OK 134 kB URL GET HTTP/3 shopallgift.com/storage/public/products/376266/8424001898732_S3033117_P34.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=10, description= , manufacturer=SONY, model=ILCE-7M2, orientation=upper-left, xresolution=180, yresolution=188, resolutionunit=2, software=Adobe Photoshop 23.0 (Windows), datetime=2021:12:03 13:27:15], baseline, precision 8, 1200x1200, components 3
Size 134 kB (134195 bytes)
Hash 6c81c823c3c7841adeccdc64d7b080d5
b9d43a8c7a5a72229b495674080c931652f728c8
3414623f0ee7985a7570f3a95b367689056b48df4266eab1c132891eb94dd184
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/376266/8424001898732_S3033117_P34.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 134195
cache-control: public, max-age=86400
etag: "6c81c823c3c7841adeccdc64d7b080d5"
last-modified: Sat, 09 Dec 2023 06:53:26 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X3YDcgLNOcuR%2BnISho81bYl3%2B1g1gr22eoOFg4hO%2FhemE0nNWLsel8JS8GvyMvLxgA%2Bwjvr55LGCLcehSvS4wWukXH5ZNky%2B%2B3miXFeAIqJSYyqqvk%2BUzMANAK9L4DkwAdE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf695856b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/376270/8424001853021_S3032848_P34.jpeg
172.67.184.192200 OK 80 kB URL GET HTTP/3 shopallgift.com/storage/public/products/376270/8424001853021_S3032848_P34.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1200x1200, components 3
Hash 5c09910f3cd3ca833d1dd59f43276778
43167edad05a5ba5d77da5fc21916005a86f7e59
96bbc533ae408de8042e77df6a5cec59558821abe05b2ea882df2813f804c01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/376270/8424001853021_S3032848_P34.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 80377
cache-control: public, max-age=86400
etag: "5c09910f3cd3ca833d1dd59f43276778"
last-modified: Sat, 09 Dec 2023 07:46:37 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RsshhWVgjA0dEUaxqK3wExUqvZgpzndxlkNeI%2FovR7%2FhpqkRQt1pzbPchmuvpTKD2G1FaUJz5oNw4I7DFVu99Se%2FhRJ6qHLyW12h8ri37dqn3QzwtT5aA9ghQzoptsQ8lOg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf795e56b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/393672/8436034260998_0_A03.jpeg
172.67.184.192200 OK 107 kB URL GET HTTP/3 shopallgift.com/storage/public/products/393672/8436034260998_0_A03.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=3000, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=3000], baseline, precision 8, 1200x1200, components 3
Size 107 kB (107336 bytes)
Hash fc8f34e5a35081500accdb93b9016b5d
2ca0340fa808c84c8b62c0b898667c8739c1faf6
e08f4b959b33021c9651451d576a31b65dd3076f2f1f28f0f4b58e1d527c9d9e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/393672/8436034260998_0_A03.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 107336
cache-control: public, max-age=86400
etag: "fc8f34e5a35081500accdb93b9016b5d"
last-modified: Sat, 20 Apr 2024 00:43:47 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bsD4J%2BF0gNhrVofIMTaf5Y4MngykhBpi3wEFvx8mw7g1Br55vLTw0FPvXxCWw8AoOgAJk%2BUBLkxLr43FvyX5HpjOuAccxSM5NWObGI27OvfeinH7zbIbCHVZdLf6aMfzbSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf796156b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/public/products/403960/V0103561_000_MKT4.jpeg
172.67.184.192200 OK 292 kB URL GET HTTP/3 shopallgift.com/storage/public/products/403960/V0103561_000_MKT4.jpeg
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, height=3505, bps=206, PhotometricInterpretation=RGB, manufacturer=Canon, model=Canon EOS 6D Mark II, orientation=upper-left, width=3505], baseline, precision 8, 1200x1200, components 3
Size 292 kB (291487 bytes)
Hash 216ac06a400cbf030f6b3764260e9208
f79f8bb3dd53204cc7390b8ce132bd5ccbf71437
7d7dbadc0bd4ee69377d01a5ca327672bec199bccbcbbeb48d785197c62bb435
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/public/products/403960/V0103561_000_MKT4.jpeg HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
content-length: 291487
cache-control: public, max-age=86400
etag: "216ac06a400cbf030f6b3764260e9208"
last-modified: Sat, 16 Mar 2024 03:01:54 GMT
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y4023XPhBoSSNzZXHNU2MTWbj09%2BeqUfjpJICYY0jXNdu4M1U%2FoIayD10f3t2QlqjzHIK8rx6z%2BgMxkJDE1PEEJL9IxHGbXQlmNqln%2F0dGwYT0CiYDEe89LT5cwwBM8nHQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf796256b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/65980397-26d8-4a03-bd09-40ad8b0914fd/jquery.countdown.js?v=1908bd0f8e986bda6dccce0991f4ad927c5c187b
172.67.184.192200 OK 2.6 kB URL GET HTTP/3 shopallgift.com/storage/65980397-26d8-4a03-bd09-40ad8b0914fd/jquery.countdown.js?v=1908bd0f8e986bda6dccce0991f4ad927c5c187b
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (3311), with CRLF line terminators
Hash d2b081bc865b717bf12d16ea714ca078
1908bd0f8e986bda6dccce0991f4ad927c5c187b
db701d6d2ddc3cb9370e9be710ec0d748a2930d8b28bd94f26f028f2b1edbd72
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/65980397-26d8-4a03-bd09-40ad8b0914fd/jquery.countdown.js?v=1908bd0f8e986bda6dccce0991f4ad927c5c187b HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:34:10 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lRXPSKLZZelaKZ3GDUxuEbYCCR3JxQmy8%2FKLPaspw%2FnUnpzYxYwo7K17i8IN14ZAs8xBwtmOnn%2BW5J3EB6EMo0XEQnjQS%2F9SKx6odTVV1WotauW9jCJ7Q06Z6j8IhOxlU5g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9ac56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/f69436b4-aefd-40a7-9a3c-1fea29461767/script.js?v=09b6dfff70d89538051a2e33bb9b45d032945273
172.67.184.192200 OK 4.6 kB URL GET HTTP/3 shopallgift.com/storage/f69436b4-aefd-40a7-9a3c-1fea29461767/script.js?v=09b6dfff70d89538051a2e33bb9b45d032945273
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (348), with CRLF line terminators
Hash 5b7afabc4afe6ad18d076e8129489b1b
09b6dfff70d89538051a2e33bb9b45d032945273
609301815863f31838f478b0e745a9af07c4c6543001726d7aba78b9c4853b23
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/f69436b4-aefd-40a7-9a3c-1fea29461767/script.js?v=09b6dfff70d89538051a2e33bb9b45d032945273 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Tue, 04 Jul 2023 10:21:34 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ze8xxnKk5o9uXRx7EeUM1lRFnvwEy96z%2B7f%2F3gz5aFa847%2FeafdX9P%2FJ7%2Bgq9k7ipfzkHL1RlEMXOLwICaQwxa%2F366YuzHgVXq%2FblfYrdjkX%2Baz9jqgQ6AItIc4Oa76q50E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfb9bf56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.1.0/flags/1x1/gb.svg
104.17.24.14200 OK 382 B URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.1.0/flags/1x1/gb.svg
IP 104.17.24.14:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image
Hash d87f3776a66dde7ee1516338875a4faa
cf42c7bd2fdc706c35be1ad7c18ad910dab6c639
1d93e1ce2e2e10c1709e4dc50ac956c007b2c1a63a4bc22ddfd64354f79ad457
GET /ajax/libs/flag-icon-css/3.1.0/flags/1x1/gb.svg HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/ajax/libs/flag-icon-css/3.1.0/css/flag-icon.min.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: image/svg+xml; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5d-318"
last-modified: Mon, 04 May 2020 16:10:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 661324
expires: Mon, 28 Apr 2025 12:46:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PwI8h8IslnVBctDf9iH1zcIA%2Bv1x2YWbaxT2PoXmGJe8qEzM6lh5vMxAkPyye2dYHkl9AA7WkzOJ%2F3NcZ1fFGzzKCKkhDuco7siq98iq8zKChQV%2BUFNuPIEmLPdQQFIrJcTkUVM0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 88098dd4df5ab50f-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/a698bf37-9356-4617-8489-d9cdc7c8211d/wow.js?v=621284d032a248c41753e995680fc30089bd374c
172.67.184.192200 OK 2.7 kB URL GET HTTP/3 shopallgift.com/storage/a698bf37-9356-4617-8489-d9cdc7c8211d/wow.js?v=621284d032a248c41753e995680fc30089bd374c
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (6269), with CRLF line terminators
Hash 11ac4d7173a68c50169addca2ef1b827
621284d032a248c41753e995680fc30089bd374c
dd90fdb6538987fe7975bd43803b1c7d8d62912a371c788caec32d016e09dca8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/a698bf37-9356-4617-8489-d9cdc7c8211d/wow.js?v=621284d032a248c41753e995680fc30089bd374c HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:34:06 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bBUH7kqPZqjPDA8YVwROmuf9BkC1CTwG9d4yxtfe2fVDUVqqu%2FCNfViFCzQH6EdWqUYMj%2F8jUtS8%2FJlws3FUe4F%2Bvt%2FGJNYBjyzl2uBfKciYM3HncyZaNVEpbASAHsAMA4c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9ad56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
via.placeholder.com/150x150
44.207.226.219200 OK 1.1 kB URL GET HTTP/2 via.placeholder.com/150x150
IP 44.207.226.219:443
Certificate IssuerAmazon
Subjectplaceholder.com
FingerprintB5:14:E9:81:80:A6:37:46:44:95:D0:B8:CB:1F:34:EB:47:E5:55:EC
ValidityTue, 26 Dec 2023 00:00:00 GMT - Fri, 24 Jan 2025 23:59:59 GMT
File type PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced
Hash 247f1e76efe24e4c8d0612e02c79b2e1
7973ae71f5d0197af32af47757c7bc1d1d50772e
70327f48469f541ccafcd82f8204d3b797c8e36790cd431adcaeea048eeb3b73
GET /150x150 HTTP/1.1
Host: via.placeholder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: image/png
content-length: 1088
server: Werkzeug/2.2.2 Python/3.9.16
cache-control: public, max-age=31557600
X-Firefox-Spdy: h2
shopallgift.com/storage/46bd73cc-df65-44b1-98fe-03fff748ce12/appear.js?v=b08e23c986259073419a7068fcd36296a91b1ae4
172.67.184.192200 OK 170 kB URL GET HTTP/3 shopallgift.com/storage/46bd73cc-df65-44b1-98fe-03fff748ce12/appear.js?v=b08e23c986259073419a7068fcd36296a91b1ae4
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with CRLF line terminators
Size 170 kB (170117 bytes)
Hash 5a457d262e3c32d25c003ca412ee7fe6
b08e23c986259073419a7068fcd36296a91b1ae4
46fb2235bcf84086a9b939ae509ecacc01bb31c68ba94e6473e31d8adebec3eb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/46bd73cc-df65-44b1-98fe-03fff748ce12/appear.js?v=b08e23c986259073419a7068fcd36296a91b1ae4 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:34:08 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=duZzhOlsEevbNveoSwZf5e7K08M7VkIa3jBl4Z8MWf%2B1XSQFXiYFZv882t34BnpqlkTSZOFoVw6Kh6cDrAdhzpBGOXwhRiXOUzCJooGgxhLM3lt9HsaSv9niWpXktdMWcgI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9ae56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/8ab16cfa-ed9e-4445-922b-648ecf31748e/responsive.css?v=e6f865dbbfbe1a624b8f66d2f972647adb23c145
172.67.184.192200 OK 3.0 kB URL GET HTTP/3 shopallgift.com/storage/8ab16cfa-ed9e-4445-922b-648ecf31748e/responsive.css?v=e6f865dbbfbe1a624b8f66d2f972647adb23c145
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 984dc357a0071a1f0fbc90066448e8bd
e6f865dbbfbe1a624b8f66d2f972647adb23c145
6fc524e315831ff16a8fef74611d4d1dbaa5adef911b150f1913da6dfbd317e0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/8ab16cfa-ed9e-4445-922b-648ecf31748e/responsive.css?v=e6f865dbbfbe1a624b8f66d2f972647adb23c145 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:30:51 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u30OzLPHCVgibScK7OvMB6odJw3%2FkVc7Ln8A2CNpmON0SY5k%2Fr7ZeiGlW93y6jUshOqZkULNHnhUsFtbfCU1r84lunVztNyht0JajYhD8VrWnAFhutTaIq5usnGzAdQci5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf490956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/b9b5189d-812a-43c3-ae03-011ba17e2dea/tm-utility-classes.css?v=48dbae9c9b2a5819c816a21591906a7ea1947a54
172.67.184.192200 OK 2.4 kB URL GET HTTP/3 shopallgift.com/storage/b9b5189d-812a-43c3-ae03-011ba17e2dea/tm-utility-classes.css?v=48dbae9c9b2a5819c816a21591906a7ea1947a54
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type assembler source, ASCII text, with CRLF line terminators
Hash adeaa9973ff0b7ac8439ff12c6480356
48dbae9c9b2a5819c816a21591906a7ea1947a54
d5d71a69825dc76bd64817241fa5b8b9a33223a80893386e4e1ae82d0f37d96b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/b9b5189d-812a-43c3-ae03-011ba17e2dea/tm-utility-classes.css?v=48dbae9c9b2a5819c816a21591906a7ea1947a54 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:20 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wFMBTtX10GxrjZNCJUoqrxtAbJ9DvMoG8UthwnyuMegNx1Y%2B0Kho00505b4hBzpgB73mMn2MaalLnfASA1RNl9jwoqIuM%2FXNy5QtYshOVGSjmcVhcyGUG9sttsPR7jJ4WXY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf490556b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K4.woff2
216.58.207.227200 OK 37 kB URL GET HTTP/2 fonts.gstatic.com/s/dmsans/v15/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K4.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 36848, version 1.0
Hash 3ccd9ab2050b2f26898b77af9148b8e2
7f9f46b2fb3f121f3c0600e1182d725b1be6c176
258f9f1b553bb57419619f41d3b1445226c7bc63d2a3409efef4a68426709e94
GET /s/dmsans/v15/rP2Yp2ywxg089UriI5-g4vlH9VoD8Cmcqbu0-K4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:40 GMT
expires: Sun, 04 May 2025 09:28:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Mar 2024 23:58:47 GMT
content-type: font/woff2
age: 357481
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/schoolbell/v18/92zQtBZWOrcgoe-fgnJIZxUa6w.woff2
216.58.207.227200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/schoolbell/v18/92zQtBZWOrcgoe-fgnJIZxUa6w.woff2
IP 216.58.207.227:443
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 21408, version 1.0
Hash 1c69d18205d2b024adb296bbae9eb9f4
7b2b1601d2725e1a159f5e21d7db55329e5ef11e
9b308506b890f3b49de775d414f639dfd0a9c88dcc7944451292be56b57a4e77
GET /s/schoolbell/v18/92zQtBZWOrcgoe-fgnJIZxUa6w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:45:59 GMT
expires: Tue, 06 May 2025 10:45:59 GMT
cache-control: public, max-age=31536000
age: 180042
last-modified: Tue, 10 May 2022 20:21:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pro.fontawesome.com/releases/v5.15.3/webfonts/fa-solid-900.woff2
104.18.40.68200 OK 137 kB URL GET HTTP/2 pro.fontawesome.com/releases/v5.15.3/webfonts/fa-solid-900.woff2
IP 104.18.40.68:443
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 136824, version 331.-31261
Size 137 kB (136824 bytes)
Hash 978b27ec5d8b81d2b15aa28aaaae1fcb
76625967fe113a088e0627605b9d1bbfb8a5e47c
943efdb4b38963df0653d778f233b55db3e19f44794e4ff944e33b8849dcdb3c
GET /releases/v5.15.3/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: font/woff2
content-length: 136824
x-amz-id-2: Esyz0J5ODwJGR8YSJGOPSYoNlQ5OrsGhPBSqgZ66hOu0SyVmNl1ce7fKDlGMHYyofn4H12803hlhM6R5rCN45A==
x-amz-request-id: MXZ4ZEZQQXS9VBXD
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:23:20 GMT
etag: "978b27ec5d8b81d2b15aa28aaaae1fcb"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 88098dd4edcab4f9-OSL
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
96.16.51.55200 OK 28 kB URL GET HTTP/2 cdn.livechatinc.com/tracking.js
IP 96.16.51.55:443
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash 227c5f0e783b70d7054594d0e8bb0c62
640265975955d84c52df87a31abd1c544eb5d950
686c8d20285c1b2c87eeb37f7b477b7a1ed2609305528cd4bc852a5585b0292b
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Tue, 07 May 2024 11:34:21 GMT
etag: W/"227c5f0e783b70d7054594d0e8bb0c62"
x-amz-server-side-encryption: AES256
x-amz-version-id: IPs8y.irYFc.V2rVe5x1_a4NPDBB4Sfb
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: cIOb4tv2ETxh5g0tQlY4z7Axtd-SfQOJbS1SKe6iAxdGbsg_qRPCGQ==
content-length: 27526
cache-control: max-age=28800
expires: Wed, 08 May 2024 20:46:41 GMT
date: Wed, 08 May 2024 12:46:41 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
shopallgift.com/s/android-chrome-512x512.png
172.67.184.192404 Not Found 0 B URL GET HTTP/3 shopallgift.com/s/android-chrome-512x512.png
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /s/android-chrome-512x512.png HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D; countryCode=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 12:46:42 GMT
content-length: 0
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kk9h1hoPbjyI2Mg7bL8ydhQeYgg26fF0c787gQHCi5euNojgFk6HfbzoJ50k1Ff9NSibBLsm%2FnbG7MUO8gUC2HBhVjiLMTEsQ72j4FcSCq69OWHtOMXLdNzYVxt5suN2su0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd87b7156b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/s/favicon-16x16.png
172.67.184.192404 Not Found 0 B URL GET HTTP/3 shopallgift.com/s/favicon-16x16.png
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /s/favicon-16x16.png HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D; countryCode=NO
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Wed, 08 May 2024 12:46:42 GMT
content-length: 0
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gEToOXwnizYals7sjleycrXtncQJewMWGyRevGMUfBjimDDCkW%2BV8T%2FLT0Whjrt%2B4Z0UNJUXlxiRzm%2B9Oj7RiTcJMdkicDnnXTm3AhoFRcCZLWLQjU7FXBLmTQFdNnjTlUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd87b7456b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/3bdc0cd7-e4c1-4d1b-a6bb-705734f81618/revolution.extension.video.min.js?v=d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712
172.67.184.192200 OK 7.2 kB URL GET HTTP/3 shopallgift.com/storage/3bdc0cd7-e4c1-4d1b-a6bb-705734f81618/revolution.extension.video.min.js?v=d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (23965), with CRLF line terminators
Hash 02bf3ed4a0eaebfb8eccd78d58acb3c1
d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712
8c31c97858196d93a06ad02300c31b25acbb40b1b6e63c11c77ac6644f0cff01
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/3bdc0cd7-e4c1-4d1b-a6bb-705734f81618/revolution.extension.video.min.js?v=d24d3cf3002ad0f2d1aa3d17b9d330e8bb343712 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:33:05 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FoK8AQvmCx0T7Orj47cm0f%2FdqqMolCPdYqjwUwV8Z16olipAF8KJbQ%2FsISlzN%2F1vssHI9PUvAbVHwLohEERvhroimse%2Bmqxiq6AASCTxvB07%2Fdrx7coQQiMiryd%2F1n5kObU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9a956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=1033364.11.77.2167.251.1687.1166.79.1.5709.1.5.11702&group_id=107&jsonp=__lc_static_config
80.239.150.18200 OK 31 kB URL GET HTTP/2 api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=1033364.11.77.2167.251.1687.1166.79.1.5709.1.5.11702&group_id=107&jsonp=__lc_static_config
IP 80.239.150.18:443
ASN #1299 Arelion Sweden AB
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a5db1136371979cac051e5643a1b036b
8d6a1698affa5c0927e09e047cb5b790452e7e83
658eba6cf14f650dffa01b338548ea9f6604c3daba867ab9d4afe2a6a0aab76f
GET /v3.4/customer/action/get_configuration?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=1033364.11.77.2167.251.1687.1166.79.1.5709.1.5.11702&group_id=107&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
cache-control: public, max-age=599
expires: Wed, 08 May 2024 12:56:42 GMT
date: Wed, 08 May 2024 12:46:43 GMT
content-length: 30943
X-Firefox-Spdy: h2
shopallgift.com/storage/a98db248-db1c-4f7e-b9e3-bae1942a433d/revolution.extension.carousel.min.js?v=8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9
172.67.184.192200 OK 5.2 kB URL GET HTTP/3 shopallgift.com/storage/a98db248-db1c-4f7e-b9e3-bae1942a433d/revolution.extension.carousel.min.js?v=8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (7370), with CRLF line terminators
Hash 54aac3fc68b283e8ad22894408ae47a2
8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9
6180c6c38c4e3b9ac75b0c51215dcf0d6aa5b62757be3d993df8a28ca17a8820
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/a98db248-db1c-4f7e-b9e3-bae1942a433d/revolution.extension.carousel.min.js?v=8164c126f5b57e1ebf04b7440cce2e3aae7e5ba9 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:51 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=feS5tXOfjOVtEPeD%2FX8Pi%2BtDFI%2FgegCexYOq1sDDeoYT8m1L9jSFnQajfGrHhVEygUdNmirNfJBU95xfq2LQlaHPzbXpTFeZ%2FE%2B%2Bqye11OPl%2Ftvxc988HcU2gO3GXZ8ZhgA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf898156b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/cf7be3ec-23ce-4770-8cb4-0f0ae1b33cec/revolution.extension.layeranimation.min.js?v=5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0
172.67.184.192200 OK 15 kB URL GET HTTP/3 shopallgift.com/storage/cf7be3ec-23ce-4770-8cb4-0f0ae1b33cec/revolution.extension.layeranimation.min.js?v=5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (55747), with CRLF line terminators
Hash c8447797a143c1450fc568df80d84644
5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0
6867ff7eec8e29d555e5bfcadc9e19f04d1e3a34de99255647f9ca573536b7ef
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/cf7be3ec-23ce-4770-8cb4-0f0ae1b33cec/revolution.extension.layeranimation.min.js?v=5a53d554a8bb9ed2806ca5c334908b23c9ad4bb0 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:55 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJbBPk52B8nA6qv9xQVWEpbMueCNkJUYTF%2F2C1OGN0aC49dYka7qsaQUbgicPUUnXOeFdvTYnO5BfnhO7Ui1QieWK%2FDylV5zSgSVymxpBAt%2Fwht6RT0idXjy0PEBOmEmt1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf998656b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/67bb4179-e3e6-4109-8db5-1694937ce15e/logo.png?v=4464e1ddbc5a5f69be33748f154edf0407170eb6
172.67.184.192200 OK 4.7 kB URL GET HTTP/3 shopallgift.com/storage/67bb4179-e3e6-4109-8db5-1694937ce15e/logo.png?v=4464e1ddbc5a5f69be33748f154edf0407170eb6
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type PNG image data, 231 x 80, 8-bit/color RGBA, non-interlaced
Hash 3386ad6d1a2cd0d5a78b99c60a994143
16415d8dc2fc38c263f7c29bf0ac7f422280092a
1d56a33c066a7eb73ae9cf925a0c277b65b0200b6750c09abed9d6cacf79b7b5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/67bb4179-e3e6-4109-8db5-1694937ce15e/logo.png?v=4464e1ddbc5a5f69be33748f154edf0407170eb6 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/png
cache-control: max-age=43200
etag: 4464e1ddbc5a5f69be33748f154edf0407170eb6
last-modified: Tue, 14 Nov 2023 09:34:43 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GYuxjx5xtg2OjghYWwkwOHZUz2P4wT%2FuQy9DAM4k0Y86GuZJDB1B6cPbAET%2FTZc3LZaTOfPGhcwo9Dz1eJMtPwVc%2BBfJ8CNlaZ6V0qRKh%2B2SQD%2BZ9swI%2F6Wxy3Rqag4LkEQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf491656b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/89fc52fb-462d-4340-acce-d8177f12e6f3/revolution.extension.kenburn.min.js?v=7416c32035abca45b2d02062193d8a1a99b9e028
172.67.184.192200 OK 2.1 kB URL GET HTTP/3 shopallgift.com/storage/89fc52fb-462d-4340-acce-d8177f12e6f3/revolution.extension.kenburn.min.js?v=7416c32035abca45b2d02062193d8a1a99b9e028
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (3515), with CRLF line terminators
Hash 2384ef0e1aa89244caa1e4821ee50bee
7416c32035abca45b2d02062193d8a1a99b9e028
40d3265afb721403e925443bc7fc2b1acd13150f5bc06f6018669a06a4c59ce4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/89fc52fb-462d-4340-acce-d8177f12e6f3/revolution.extension.kenburn.min.js?v=7416c32035abca45b2d02062193d8a1a99b9e028 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:53 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uIbh5sbty3oR2V5jHwpHpHbz54hMJLqJumSZw4ifrEAeUr8DiXYBHOjHZSH4NrH0mlcEHZYCJAvKt5i5dVBJ7X0ob86SLc2yLVUW7LKbASfd0kbHhaqzSz%2FQpCpg%2Bx1t9V0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf998556b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/9ff8b610-eabc-45cd-9e5f-e116dbcbf3fa/women1.png?v=bf2b4d054f8ad07b7df46c212b3c1d41ad16fe16
172.67.184.192200 OK 118 kB URL GET HTTP/3 shopallgift.com/storage/9ff8b610-eabc-45cd-9e5f-e116dbcbf3fa/women1.png?v=bf2b4d054f8ad07b7df46c212b3c1d41ad16fe16
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type PNG image data, 292 x 355, 8-bit/color RGBA, non-interlaced
Size 118 kB (118286 bytes)
Hash 0721adb21726f71e321dc84018550634
a421819a9fc924307cb487f6fba4a3c03bc34f82
de1fc52e6d98499d834b83d593f5fc6e3a6884ebae4471b2c8b29822c639e8a3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/9ff8b610-eabc-45cd-9e5f-e116dbcbf3fa/women1.png?v=bf2b4d054f8ad07b7df46c212b3c1d41ad16fe16 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/png
cache-control: max-age=43200
etag: bf2b4d054f8ad07b7df46c212b3c1d41ad16fe16
last-modified: Tue, 14 Nov 2023 09:27:25 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gx48ttsFadfeFv1Gz4R4WIFtyF03uQXrxz%2BSzgb94MzUUS7LK9GPgHuOBPVQmrkfbJxySVrJTsfQgjCcQiUA8SgGB9lrAEjbmSUi6fyms6MwzKy1XkgYtTXPrFQfALi4%2B6o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf594156b5-OSL
alt-svc: h3=":443"; ma=86400
cdn.livechatinc.com/widget/static/js/1.6a1e7e16.chunk.js
96.16.51.55200 OK 98 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/1.6a1e7e16.chunk.js
IP 96.16.51.55:443
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65462)
Hash af6b36995dc6b1a47e699eaf57ba5932
0f00363ee2af972df58ce59a21418af045edcd82
07e8a79ad327e2e13e59bc85ff0def00fb8390153a098eea8d4df64f36ccfc64
GET /widget/static/js/1.6a1e7e16.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 May 2024 11:34:23 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: fxsX4gylAlHlUQOK9YXTTLZoB0rvbNNH
server: AmazonS3
content-encoding: br
etag: W/"af6b36995dc6b1a47e699eaf57ba5932"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 8SMNAZouozHHuC-p_TxepH5GwfQfkPGflfYL2ER-q7TBqtxZCotRXg==
cache-control: max-age=31536000
expires: Thu, 08 May 2025 12:46:43 GMT
date: Wed, 08 May 2024 12:46:43 GMT
content-length: 98023
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/0.c662232b.chunk.js
96.16.51.55200 OK 66 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/0.c662232b.chunk.js
IP 96.16.51.55:443
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65462)
Hash ac1b9724f6e6781a506d9c1680a44b84
3edeb0fa635d4cbb4a855647c733a75cf9985d78
0723231b5ea38a06f08f621162e51cc56bc53b08e626087d7260127f808ea928
GET /widget/static/js/0.c662232b.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Apr 2024 13:11:22 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 7kC.itQ.Ypj0BYDgcp9jBDxxhaTS9ku.
server: AmazonS3
content-encoding: br
etag: W/"ac1b9724f6e6781a506d9c1680a44b84"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: Vw02gbxLb3-pZ3AGZuLuDLR9etnuZzF_T3DxI-o7u-UARqmi9wgDEA==
content-length: 66444
cache-control: max-age=31536000
expires: Thu, 08 May 2025 12:46:43 GMT
date: Wed, 08 May 2024 12:46:43 GMT
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.7d5b107f.chunk.js
96.16.51.55200 OK 156 kB URL GET HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.7d5b107f.chunk.js
IP 96.16.51.55:443
ASN #20940 Akamai International B.V.
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 156 kB (155999 bytes)
Hash 3ed89ff3e7f272d00fffc457a35f6f4a
10ee4c5a2623d9a46155dca08e538254a37406f1
9a57d426e55bfff07aba4ddd9262cf9005db9bd1c55bb20e61bb04b21107bcc6
GET /widget/static/js/iframe.7d5b107f.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 07 May 2024 11:34:24 GMT
etag: W/"3ed89ff3e7f272d00fffc457a35f6f4a"
x-amz-server-side-encryption: AES256
x-amz-version-id: gX0nyP3kArTNbnRinnu6DF8kCKPsaTdo
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: sKK1zi2B0CEWse3LhVngMd_0TsRqw0acuVAM6-QKDcSndJbzPOcTZw==
cache-control: max-age=31536000
expires: Thu, 08 May 2025 12:46:43 GMT
date: Wed, 08 May 2024 12:46:43 GMT
content-length: 155999
content-type: application/javascript; charset=utf-8
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
shopallgift.com/storage/2714e824-ee0e-453d-8746-d144c662c468/revolution.extension.navigation.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215
172.67.184.192200 OK 11 kB URL GET HTTP/3 shopallgift.com/storage/2714e824-ee0e-453d-8746-d144c662c468/revolution.extension.navigation.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (25862), with CRLF line terminators
Hash 020c9da0283aebff8fb8ea67e3331868
d192e2e9538833c8f18f279e04cb1801450dd215
6eec26458665f2ff755d8d9d752baf709166660fb8e5389c9fbe939df23ea2f1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/2714e824-ee0e-453d-8746-d144c662c468/revolution.extension.navigation.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:59 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GSMQl9J9LAa1Gh49kbDQCxiTrgPw1bQO2UNJi6cXRQ%2BjEEAGHNhmK1cTP8JGRc0zSUGYlMUnBx9ecvDfk%2FbUtwpz%2BRoKqL557%2FSKBNZmBi9KJ5b2p0oyXmFnRjHF669%2FPHk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf999156b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
accounts.livechatinc.com/v2/customer/c4b97640-d904-4573-a0fa-e01bf394611d/107/token
80.239.150.18200 OK 195 B URL POST HTTP/2 accounts.livechatinc.com/v2/customer/c4b97640-d904-4573-a0fa-e01bf394611d/107/token
IP 80.239.150.18:443
ASN #1299 Arelion Sweden AB
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash 11de99ad64030e50febbd382c4e25924
61f999d98d1a9d6d4e64fcb9aaae508092352007
4540b32be27449bf05f58afedba303e46555744a0f06493f96841ded3bb2c05c
POST /v2/customer/c4b97640-d904-4573-a0fa-e01bf394611d/107/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
DNT: 1
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Wed, 08 May 2024 12:46:44 GMT
set-cookie: __lc_cid=337fe0ac-4eec-442c-aba1-7bb4461311d2; Path=/v2/customer/c4b97640-d904-4573-a0fa-e01bf394611d/107/token; Domain=accounts.livechatinc.com; Expires=Fri, 08 May 2026 12:46:43 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=48462a77e5fd57308c66654da7aaa3c36f7a617ef08e23b32b92a093627d4a39898374df30cbf6b1781ff4501f040582ef3c5f22654955658943fcbf8da4; Path=/v2/customer/c4b97640-d904-4573-a0fa-e01bf394611d/107/token; Domain=accounts.livechatinc.com; Expires=Fri, 08 May 2026 12:46:43 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cid=337fe0ac-4eec-442c-aba1-7bb4461311d2; Path=/licence/g14081004_107/; Domain=accounts.livechatinc.com; Expires=Fri, 08 May 2026 12:46:43 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__lc_cst=48462a77e5fd57308c66654da7aaa3c36f7a617ef08e23b32b92a093627d4a39898374df30cbf6b1781ff4501f040582ef3c5f22654955658943fcbf8da4; Path=/licence/g14081004_107/; Domain=accounts.livechatinc.com; Expires=Fri, 08 May 2026 12:46:43 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned
__oauth_redirect_detector=counter=1&t=1715172433&tag=c4ef099b931cc4a19727e507c12d336a170a824f; Path=/; Expires=Wed, 08 May 2024 12:47:13 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d
80.239.150.33 0 B URL api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d
IP 80.239.150.33:0
ASN #1299 Arelion Sweden AB
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bMzjpaYHOAz7ux+yei4QRw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: uVx862BiEFirUbAB7Nuuwyr4PSM=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
Date: Wed, 08 May 2024 12:46:44 GMT
Upgrade: websocket
Connection: Upgrade
cdn.livechat-files.com/api/file/lc/img/14081004/7ae14e9e19c09d717112e692a57927b4.jpeg
23.36.79.16200 OK 4.4 kB URL GET HTTP/2 cdn.livechat-files.com/api/file/lc/img/14081004/7ae14e9e19c09d717112e692a57927b4.jpeg
IP 23.36.79.16:443
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 0x0, segment length 16, baseline, precision 8, 300x300, components 1
Hash f30f5916dbda05b5dad644d8e105d74d
f0f35c2a8c024698a38c61e44cf79ecdab3773ea
4ef03a52b3cf240bc2fc799480f55ac1f35a5330d5a0fec64dab60f21fc608db
GET /api/file/lc/img/14081004/7ae14e9e19c09d717112e692a57927b4.jpeg HTTP/1.1
Host: cdn.livechat-files.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 4384
content-type: image/jpeg
cache-control: private, max-age=42218
date: Wed, 08 May 2024 12:46:50 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
shopallgift.com/storage/edd5902d-fa6d-4e72-a223-09213129b5ab/revolution.extension.migration.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215
172.67.184.192200 OK 380 kB URL GET HTTP/3 shopallgift.com/storage/edd5902d-fa6d-4e72-a223-09213129b5ab/revolution.extension.migration.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (25862), with CRLF line terminators
Size 380 kB (379866 bytes)
Hash 020c9da0283aebff8fb8ea67e3331868
d192e2e9538833c8f18f279e04cb1801450dd215
6eec26458665f2ff755d8d9d752baf709166660fb8e5389c9fbe939df23ea2f1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/edd5902d-fa6d-4e72-a223-09213129b5ab/revolution.extension.migration.min.js?v=d192e2e9538833c8f18f279e04cb1801450dd215 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:57 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=go6aXlel69ceFQQ4BUhyT3YuzeCX7ulrxcCkrcYvSXpc5mHjLR5lcALscA%2FErtaZQYT6Kba7PQCW3ahj9WZVKYB8fBUDq3Eduoq0%2FOgYG2nvZLPM02Mi85svQnY3uzlE0bA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf998d56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/c9b47f76-8e34-43ac-80d0-c6318249f18e/jquery.fancybox.min.css?v=a64676403bb5c23f9800963b0b8f0475b532601f
172.67.184.192200 OK 14 kB URL GET HTTP/3 shopallgift.com/storage/c9b47f76-8e34-43ac-80d0-c6318249f18e/jquery.fancybox.min.css?v=a64676403bb5c23f9800963b0b8f0475b532601f
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/c9b47f76-8e34-43ac-80d0-c6318249f18e/jquery.fancybox.min.css?v=a64676403bb5c23f9800963b0b8f0475b532601f HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:26 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A24fIjmTnixh%2FqJSv%2Fz9tg3DtJ8zmSl22R7BnQwks9JaEZFc9usuvEqq4oQ71%2B%2F1KSI66U9gKwj2fLq%2Fkhf7PchulpsRUsmMyyRqkSHQKyFB5egtQWINeCJ7CDzOkKEyglY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf38e056b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/8950eed8-216a-4193-bed0-39b55b852d63/navigation.css?v=36156c05dc6998d642ded67b9ae5623ab84d2997
172.67.184.192200 OK 62 kB URL GET HTTP/3 shopallgift.com/storage/8950eed8-216a-4193-bed0-39b55b852d63/navigation.css?v=36156c05dc6998d642ded67b9ae5623ab84d2997
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 50c663c355c7ed5d50d442f49bdb9bf8
36156c05dc6998d642ded67b9ae5623ab84d2997
1038275e66032987e6c39ffae357df2c861b140a97768fb16ac30e7f8be97173
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/8950eed8-216a-4193-bed0-39b55b852d63/navigation.css?v=36156c05dc6998d642ded67b9ae5623ab84d2997 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:30:29 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FYHOuwadvnFuWoDIre%2BLx%2BmcBW3aRNX%2FbJk%2BuWjWsoeEsT%2F%2FPFFQPW62SGPThGLCYNmmfIF7qPryvLPbugyJSPqaAcluwjgXAnKgttblfap66Rx8FZpxxipq3shIgyQvaJM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28c956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/aos@2.3.1/dist/aos.js
104.17.247.203200 OK 14 kB URL GET HTTP/2 unpkg.com/aos@2.3.1/dist/aos.js
IP 104.17.247.203:443
Certificate IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File type JavaScript source, ASCII text, with very long lines (14239), with no line terminators
Hash 70b4897108480dbe11c443c2ab7679c9
70dbfd38a0f1fc3b1a7d9fadab58786484c34f17
f268612ba59ead1b24353bb77d66783bcc435aff1c22be5f93c40bac3869968e
GET /aos@2.3.1/dist/aos.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Thu, 17 May 2018 22:11:13 GMT
etag: "379f-cNv9OKDx/DsafZ+tq1h4ZITDTxc"
via: 1.1 fly.io
fly-request-id: 01HWR4V0DAS96HY7329QE7KJFZ-arn
cf-cache-status: HIT
age: 670062
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 88098dcfca68b4fd-OSL
X-Firefox-Spdy: h2
shopallgift.com/storage/e31c0388-2e48-492e-8768-ced436db7cd3/style.css?v=163167911c8feb7b23c63c24af8e2ca96283ae68
172.67.184.192200 OK 15 kB URL GET HTTP/3 shopallgift.com/storage/e31c0388-2e48-492e-8768-ced436db7cd3/style.css?v=163167911c8feb7b23c63c24af8e2ca96283ae68
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 6ccba46411dc10098b37e2540b98f1c7
163167911c8feb7b23c63c24af8e2ca96283ae68
c3379c70aff98db4c12ed4e0268cc3cb14b1798892620f4d91bd60d87c165ed1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/e31c0388-2e48-492e-8768-ced436db7cd3/style.css?v=163167911c8feb7b23c63c24af8e2ca96283ae68 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Wed, 15 Nov 2023 11:17:12 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HLajx6EgzGhiigdGbO9tSZlLob8Y4%2BXmC3ZFr3h8XKobJWp17Bkd7EUTJWzPYgiD8A7uAxb7ij3ibPfUDa%2BrNF1LfMI6BnmyudmUqL1mHNE8UYB0cUyowTh2rv7R2kbgVis%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf491256b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/44c2c9e9-4858-4ecb-bec2-44d962069cf0/bg-2.webp?v=1b5a7a2d1f7a99302ca7c6dce328f497c644ccf7
172.67.184.192200 OK 640 kB URL GET HTTP/3 shopallgift.com/storage/44c2c9e9-4858-4ecb-bec2-44d962069cf0/bg-2.webp?v=1b5a7a2d1f7a99302ca7c6dce328f497c644ccf7
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 693x841, components 3
Size 640 kB (640409 bytes)
Hash f1c29acedb6a1a37adbef619a1191938
1b5a7a2d1f7a99302ca7c6dce328f497c644ccf7
350d031230c1defbe41c15084d0a091a0b92d59654fe8fd9bcf1ee0ba87bc9dd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/44c2c9e9-4858-4ecb-bec2-44d962069cf0/bg-2.webp?v=1b5a7a2d1f7a99302ca7c6dce328f497c644ccf7 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
cache-control: max-age=43200
etag: 1b5a7a2d1f7a99302ca7c6dce328f497c644ccf7
last-modified: Tue, 14 Nov 2023 09:26:28 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HGp4FgBWTcxmLIzqtz3%2BqTDLkaJ9i%2Bu8et2f%2FY8O39BF0vcBfgMecwOeNL3l8QuiXj2IhplnSyfD%2F4iHL%2FP7z7lQSZvbT6qs4wzRwJZBc2qy1FHoy37GZZB6eRYOfQf1IMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf593f56b5-OSL
alt-svc: h3=":443"; ma=86400
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
151.101.193.229200 OK 156 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP 151.101.193.229:443
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
Size 156 kB (155845 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: br
accept-ranges: bytes
date: Wed, 08 May 2024 12:46:40 GMT
age: 28695641
x-served-by: cache-fra-eddf8230097-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25360
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&family=Lato&family=Marcellus&family=Raleway:wght@500;700;900&family=Jost:wght@200;300;400;500;600;700&display=swap
142.250.74.106200 OK 22 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@300;400;500;700&family=Lato&family=Marcellus&family=Raleway:wght@500;700;900&family=Jost:wght@200;300;400;500;600;700&display=swap
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash 6a51549bccdc4c0d64a535b13d696a6d
020b74e95abe01ac99ca982a9f20a28a5ab4c2ae
f16b01d4c02157cd3a1c4c7417ebd18f921965f2cb65656cd0f26b69a48f619c
GET /css2?family=Roboto:wght@300;400;500;700&family=Lato&family=Marcellus&family=Raleway:wght@500;700;900&family=Jost:wght@200;300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 12:46:41 GMT
date: Wed, 08 May 2024 12:46:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopallgift.com/storage/cb4422ff-a29e-4a1e-abf6-60bb677bdd59/style.css?v=3b45bad769038297a8e4b6047c7b5c46ac7f3d83
172.67.184.192200 OK 217 kB URL GET HTTP/3 shopallgift.com/storage/cb4422ff-a29e-4a1e-abf6-60bb677bdd59/style.css?v=3b45bad769038297a8e4b6047c7b5c46ac7f3d83
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Size 217 kB (216643 bytes)
Hash e30be0917cfbc44064cd4fc6fa6f42b5
3b45bad769038297a8e4b6047c7b5c46ac7f3d83
47a75be4fe9aa00c655aa0b9d2e68722895a9ab6e9d86535fceee14eb4acb096
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/cb4422ff-a29e-4a1e-abf6-60bb677bdd59/style.css?v=3b45bad769038297a8e4b6047c7b5c46ac7f3d83 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 10 Jul 2023 08:02:09 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q2pHH5N9oijshxNjGWawM2qGHKSchKKp2ABUuHrV5qndYHgKZ3FsNg3aycAb5TfF46WRnn5gOuTqKjWDmg%2FW46LpZgtVFraUcj3X8kN2ekJSt3YHznzeSPyG6hXtwwRKNyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28cd56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
23.36.79.17200 OK 8.9 kB URL GET HTTP/1.1 secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
IP 23.36.79.17:443
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (9051), with no line terminators
Hash 88f15ac0ce37d5c13bbfa9c08e2cda25
65842d73e0582565111bbcd7a0e927e769cdec7b
341613b2f91c79de710ced7db40898c1f94736ceecfd04993dd0d6b098b731f5
GET /customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Vary: Accept-Encoding
Content-Length: 2601
Date: Wed, 08 May 2024 12:46:43 GMT
Connection: keep-alive
shopallgift.com/storage/91c5a2bf-a597-418b-95e8-e646be9859e3/owl.js?v=635aff196b14f099dc9eafe697a2d6a40656095f
172.67.184.192200 OK 89 kB URL GET HTTP/3 shopallgift.com/storage/91c5a2bf-a597-418b-95e8-e646be9859e3/owl.js?v=635aff196b14f099dc9eafe697a2d6a40656095f
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (360), with CRLF line terminators
Hash 9bd6ebd9fd42bf1203537b58bdccfee1
635aff196b14f099dc9eafe697a2d6a40656095f
7b96175e110fc0ac4d90f7d2aefb72f1589e6c61738da0f32ddfafc8fe9c988b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/91c5a2bf-a597-418b-95e8-e646be9859e3/owl.js?v=635aff196b14f099dc9eafe697a2d6a40656095f HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:34:14 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gneq9iyOuwMnf%2BxtzvpLaS8oT%2Fe%2BXR4pyCJg%2BNPCJ7r2QidBIO2jI3Jrj5FH22%2FqQkHElprz37YGesWnnAVGGpLfUUof1epUzrEPDrVS6%2Bh1mU16YB%2FQGGDxxIxc9IDjEW8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfb9bc56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.livechat-static.com/api/file/lc/img/rich-greetings/handwave.gif
96.16.51.55200 OK 373 kB URL GET HTTP/2 cdn.livechat-static.com/api/file/lc/img/rich-greetings/handwave.gif
IP 96.16.51.55:443
ASN #20940 Akamai International B.V.
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type GIF image data, version 89a, 460 x 300
Size 373 kB (372763 bytes)
Hash b833044c92652fa9fab0e3210c3a57c4
47e4ab00ff06878f861d731ee9f0891beb7bad88
d368f73655941321fa294f8c0f5d63f0a6caaab3dccac499800b4e2e49358a51
GET /api/file/lc/img/rich-greetings/handwave.gif HTTP/1.1
Host: cdn.livechat-static.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 372763
content-type: image/gif
cache-control: private, max-age=40714
date: Wed, 08 May 2024 12:46:51 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
shopallgift.com/storage/83264c09-fb5c-42a9-aadd-8898781b897d/owl.css?v=779f876e61d14ce915401b4af00e5f67393decb2
172.67.184.192200 OK 4.3 kB URL GET HTTP/3 shopallgift.com/storage/83264c09-fb5c-42a9-aadd-8898781b897d/owl.css?v=779f876e61d14ce915401b4af00e5f67393decb2
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with very long lines (4638), with no line terminators
Hash 0d1316e7c0a7f200a96b6a9b6a8e089d
030ba4c83cebbfb5fed05d0afa7b8d2e3007033e
cc3b1a041395e9f1f42b346b488ba74896d885d655a8317ccd13a0299a2258f6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/83264c09-fb5c-42a9-aadd-8898781b897d/owl.css?v=779f876e61d14ce915401b4af00e5f67393decb2 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 11:01:44 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xmLppeKjknDTBi7VnV1oAiWv3wQxDgScL2JEuK5RYIOl9KUQL1kOvX%2BDp3mocrIAej2%2FgP%2Bdpbe1tJ76VnamzRKBxtt%2B4fIM2edCu61fYGpb4CC4tE1%2F47UyAfiRGUlK8sQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28d056b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/b787d267-a23b-4e23-b5d2-34837888ff6c/cta-bg.jpg?v=01ced699467f350f0180f8798d0c83b0b44918ed
172.67.184.192200 OK 83 kB URL GET HTTP/3 shopallgift.com/storage/b787d267-a23b-4e23-b5d2-34837888ff6c/cta-bg.jpg?v=01ced699467f350f0180f8798d0c83b0b44918ed
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2022:10:19 18:32:16], baseline, precision 8, 1920x557, components 3
Hash f25b96eb25a6021082eb9cb079a2d1c0
01ced699467f350f0180f8798d0c83b0b44918ed
51c23c6ca2525a776b856af8dd85535600438008539a49656447149107c0f2b7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/b787d267-a23b-4e23-b5d2-34837888ff6c/cta-bg.jpg?v=01ced699467f350f0180f8798d0c83b0b44918ed HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: image/jpeg
cache-control: max-age=43200
etag: 01ced699467f350f0180f8798d0c83b0b44918ed
last-modified: Fri, 03 Nov 2023 10:20:02 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QiyKkiL0ZFm9TD8Rz6MIlE898hmRTwM2vu8lt1uh56XDTZiFZKp9RBNY9CKPTQou9EgUBYA6cpnNCamDhXgnWuhUR7NweXg%2FverWsVfIOIJv0AgummshoKPBTEhKlFkAqxM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd4df8856b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/d1a97c04-2c06-4723-a549-a681b11d6bb5/settings.css?v=c066e997a493e78b13302243e02eca80557a962e
172.67.184.192200 OK 30 kB URL GET HTTP/3 shopallgift.com/storage/d1a97c04-2c06-4723-a549-a681b11d6bb5/settings.css?v=c066e997a493e78b13302243e02eca80557a962e
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with very long lines (29742), with CRLF line terminators
Hash 7407698d74dfc29b8097255d3b436f79
c066e997a493e78b13302243e02eca80557a962e
bf322a3313d9ac6277df23579a1effa9d414f208db1b7c4a54569b71c8ed4ad4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/d1a97c04-2c06-4723-a549-a681b11d6bb5/settings.css?v=c066e997a493e78b13302243e02eca80557a962e HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Tue, 04 Jul 2023 09:24:05 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MSC1vsI0KlqTa9JhPWhw%2FWQEMnQhaci%2FQYsWlVIPtARfJIYhx2Jh1cHuMsE%2BRq3JHU%2BfzQTwUWRwS0N0Ta7DK5MD695sGyE%2BPkvQSV8AShNc0SYBP5QDAYEZo2%2F%2BrkG2wfk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28c756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/3a50249f-af76-4366-a91e-e30ee9923899/flaticon.css?v=e691b891aa584116d9998a18ee0bdb1ab9fa38b9
172.67.184.192200 OK 10 kB URL GET HTTP/3 shopallgift.com/storage/3a50249f-af76-4366-a91e-e30ee9923899/flaticon.css?v=e691b891aa584116d9998a18ee0bdb1ab9fa38b9
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 004576a89fee1899c558ff06216a86fb
e691b891aa584116d9998a18ee0bdb1ab9fa38b9
48e8e7bdbf98d547b902d97dd99504f16339aed806ff1d0ab2ef3ea3e0744e6d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/3a50249f-af76-4366-a91e-e30ee9923899/flaticon.css?v=e691b891aa584116d9998a18ee0bdb1ab9fa38b9 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:53:47 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=j5M50tUCKEon959QtYW99WSo6PUfhUGTGouSbzUz8dMzRfgAxfEKqKmxCvByjLYllCp%2BOOifYoPmBXqoRqfAavlzq8pxZgh79XgoySzDsuTQdCAfKRsReXfdef0%2BrITobrk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf48fd56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/b90d593d-acdd-4765-9f34-20266472c38b/jquery.themepunch.tools.min.js?v=537edd9b364ac005df2d1c57be873945b2fecdf6
172.67.184.192200 OK 111 kB URL GET HTTP/3 shopallgift.com/storage/b90d593d-acdd-4765-9f34-20266472c38b/jquery.themepunch.tools.min.js?v=537edd9b364ac005df2d1c57be873945b2fecdf6
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (27287), with CRLF line terminators
Size 111 kB (110563 bytes)
Hash a748a9e56b2c639013c770506f1fd529
537edd9b364ac005df2d1c57be873945b2fecdf6
6eabb193731278713f4208ea84b8c7334c3dfc98f01cb074778280e1df536e62
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/b90d593d-acdd-4765-9f34-20266472c38b/jquery.themepunch.tools.min.js?v=537edd9b364ac005df2d1c57be873945b2fecdf6 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:19 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gabE%2FeaVgqdqAsyDmsrjzfQPDNYkOP2YbL60aiI93iEHrs8x%2FNr2sPSMJrrRCflhWY7Pv4bmsR1d69S6h02WtmCTBJOdMYlUQm9l4N%2FO5GAsQeOGByT%2F9vvNRDMJKLHDWTU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf897b56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/dad48c31-2b97-4373-a1b4-05755a26ee53/swiper.min.css?v=80609eb94f5aafd3ff0c473c32fbc46bb846efa4
172.67.184.192200 OK 14 kB URL GET HTTP/3 shopallgift.com/storage/dad48c31-2b97-4373-a1b4-05755a26ee53/swiper.min.css?v=80609eb94f5aafd3ff0c473c32fbc46bb846efa4
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with very long lines (13411), with CRLF line terminators
Hash 6bc1ee9725b3d0d1072d0a32371678ed
80609eb94f5aafd3ff0c473c32fbc46bb846efa4
34fb2b224c66eae436ed2503e8800f9117fb9d0640717ddc98776a14c4541733
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/dad48c31-2b97-4373-a1b4-05755a26ee53/swiper.min.css?v=80609eb94f5aafd3ff0c473c32fbc46bb846efa4 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:33 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XEQJ4J2%2FPyIwmHRIUSRDhJeeMFOFrac738Gwayd%2FFQ7bTRytMit9nGt4aJPPRNyEzXAMBRpUewJ3mbQNNreRva0HMn8WZBilEx50Oq9gb3WvAq7Vgoa%2BVMv54Y2fycqoG0o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf38de56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/f6b57dac-4695-4d57-b16a-5701b70cb052/linearicons-free.ttf?4l2k0u
172.67.184.192200 OK 66 kB URL GET HTTP/3 shopallgift.com/storage/f6b57dac-4695-4d57-b16a-5701b70cb052/linearicons-free.ttf?4l2k0u
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type TrueType Font data, 11 tables, 1st "OS/2", 24 names, Macintosh
Hash f998369775e2ce9e30d9963f1f646b84
b675857855471d8a82eac9027c7c9f091cc1ada4
2f2d8e8daf9e0a620acf0223472bc53f7e4c47ea21792907854df68496c2db7e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/f6b57dac-4695-4d57-b16a-5701b70cb052/linearicons-free.ttf?4l2k0u HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/storage/772b8850-59b2-46fa-9f6d-fd11d06e7029/linear.css?v=88df7b8b1a482a8403e0d2d749bc85c775f8b336
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: font/sfnt
cache-control: max-age=43200
etag: b675857855471d8a82eac9027c7c9f091cc1ada4
last-modified: Mon, 03 Jul 2023 07:58:54 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kT7Xnc6xDq8SsMkp2%2Bsa%2F1Q1inricU%2BaYt%2FGaK%2FhuLtJxiPCSjYqVHTdMt6gI4tngW3mKchiAJy%2BbqU8euqTKhmF7x79rbqsqvTIPUEqIIiv6Oq5Cdt6b01OtfBJyV%2BPZiA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd4ff9f56b5-OSL
alt-svc: h3=":443"; ma=86400
api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d
80.239.150.33101 Switching Protocols 0 B URL GET HTTP/1.1 api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d
IP 80.239.150.33:443
ASN #1299 Arelion Sweden AB
Requested by https://secure.livechatinc.com/customer/action/open_chat?license_id=14081004&group=107&embedded=1&widget_version=3&unique_groups=1
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.5/customer/rtm/ws?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bMzjpaYHOAz7ux+yei4QRw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: uVx862BiEFirUbAB7Nuuwyr4PSM=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
Date: Wed, 08 May 2024 12:46:44 GMT
Upgrade: websocket
Connection: Upgrade
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=14081004&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fshopallgift.com%2F&channel_type=code&jsonp=__estsw2v7a08
80.239.150.18200 OK 700 B URL GET HTTP/2 api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=14081004&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fshopallgift.com%2F&channel_type=code&jsonp=__estsw2v7a08
IP 80.239.150.18:443
ASN #1299 Arelion Sweden AB
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (732), with no line terminators
Hash da0ba2415fe4fed7ca2bcdf368da7aea
dcc2976a74c5e924e6f54245a50e5259a340d9ab
fbaaafbac2c619927dda1ff936639f2790e3577231768c0a637b6ae324765fae
GET /v3.6/customer/action/get_dynamic_configuration?license_id=14081004&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fshopallgift.com%2F&channel_type=code&jsonp=__estsw2v7a08 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: frame-ancestors https://shopallgift.com/;
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: allow-from https://shopallgift.com/
content-length: 700
date: Wed, 08 May 2024 12:46:42 GMT
X-Firefox-Spdy: h2
unpkg.com/aos@2.3.1/dist/aos.css
104.17.247.203200 OK 26 kB URL GET HTTP/2 unpkg.com/aos@2.3.1/dist/aos.css
IP 104.17.247.203:443
Certificate IssuerGoogle Trust Services LLC
Subjectunpkg.com
Fingerprint2E:F1:F6:31:28:EC:29:20:41:F4:58:4B:B1:CF:51:16:77:7E:BF:E3
ValidityMon, 01 Apr 2024 02:40:24 GMT - Sun, 30 Jun 2024 02:40:23 GMT
File type ASCII text, with very long lines (26053), with no line terminators
Hash 847da8fca8060ca1a70f976aab1210b9
0557d37454b67f42f2cb101e57e5070fb1193570
1aa8845fd06e475aefe733d4e55b36a92fcd487975049c8172341827ac9cc03e
GET /aos@2.3.1/dist/aos.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
content-encoding: br
cache-control: public, max-age=31536000
last-modified: Thu, 17 May 2018 22:11:13 GMT
etag: "65c5-BVfTdFS2f0LyyxAeV+UHD7EZNXA"
via: 1.1 fly.io
fly-request-id: 01HWQWRTV4SST6S1JY46JMBW7K-arn
cf-cache-status: HIT
age: 678523
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 88098dcfaa50b4fd-OSL
X-Firefox-Spdy: h2
shopallgift.com/storage/de075770-f4f3-413b-a4d1-0f7a8172240a/layers.css?v=29ce5433ed65387f6f6ef97159071e5987ae1599
172.67.184.192200 OK 147 kB URL GET HTTP/3 shopallgift.com/storage/de075770-f4f3-413b-a4d1-0f7a8172240a/layers.css?v=29ce5433ed65387f6f6ef97159071e5987ae1599
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Size 147 kB (146597 bytes)
Hash 67b50bc0d49c4b80742a835113b03562
29ce5433ed65387f6f6ef97159071e5987ae1599
cc830234af8b0e2ac01ad515ff209c43b29ba78d5145505a1088b18beefd2ac9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/de075770-f4f3-413b-a4d1-0f7a8172240a/layers.css?v=29ce5433ed65387f6f6ef97159071e5987ae1599 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:30:34 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6iIOox3rUnEsmAeVq62m0c%2F%2FFS2V%2FU6dF%2Fb7BRBJI8qdppA7dzXipm3wtUNOX%2FOQhj2oZa3PxlYJf3%2BTGih8NXdkKD7LKN5CBIy760v9VQsltEtd5oSITM35t6lnX7EnyYI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28c856b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=384c496c023913b78d3837c106ac447e_286c5eb6a94e1e495ddc04f255e72656&language=en&group_id=107&jsonp=__lc_localization
80.239.150.18200 OK 11 kB URL GET HTTP/2 api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=384c496c023913b78d3837c106ac447e_286c5eb6a94e1e495ddc04f255e72656&language=en&group_id=107&jsonp=__lc_localization
IP 80.239.150.18:443
ASN #1299 Arelion Sweden AB
Certificate IssuerDigiCert Inc
Subjectlivechat.com
FingerprintAD:E9:73:3D:F9:98:EE:AF:EA:A1:C6:F0:07:27:92:13:66:F0:44:6E
ValidityWed, 31 Jan 2024 00:00:00 GMT - Fri, 31 Jan 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.4/customer/action/get_localization?organization_id=c4b97640-d904-4573-a0fa-e01bf394611d&version=384c496c023913b78d3837c106ac447e_286c5eb6a94e1e495ddc04f255e72656&language=en&group_id=107&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Wed, 08 May 2024 12:56:43 GMT
date: Wed, 08 May 2024 12:46:43 GMT
content-length: 3925
X-Firefox-Spdy: h2
shopallgift.com/storage/0e675500-cebe-45d8-bd85-53730311d9c2/tm-bs-mp.css?v=c1d38d946ac2a014a0eb4791ea30816579081401
172.67.184.192200 OK 87 kB URL GET HTTP/3 shopallgift.com/storage/0e675500-cebe-45d8-bd85-53730311d9c2/tm-bs-mp.css?v=c1d38d946ac2a014a0eb4791ea30816579081401
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash d3b45d7c1814d66b5106782312a48909
c1d38d946ac2a014a0eb4791ea30816579081401
32b656b2cbaa16fec9bfaef6f17a11b0c3c05eff8868f146a0183d76eab64cd1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/0e675500-cebe-45d8-bd85-53730311d9c2/tm-bs-mp.css?v=c1d38d946ac2a014a0eb4791ea30816579081401 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:35 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cf8%2B6NOIxT1bobRuJj6yzjDhncffAUsQw2bC0YCSg8TZTNGhz7CcZ4xRTBAtNHKMPCpRkwl1gQ0Fv4mWDSNlegLsJvxm4fqVlhrwDMr5tAsvMNAEpTnBq6ol1J2T2nKPWE4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf490156b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/0a89d6b8-1f68-4d6d-93ae-b6062902ab19/main-slider-script.js?v=4a0a91644390f567c30d7ba32ef19b24bf9efdbd
172.67.184.192200 OK 3.0 kB URL GET HTTP/3 shopallgift.com/storage/0a89d6b8-1f68-4d6d-93ae-b6062902ab19/main-slider-script.js?v=4a0a91644390f567c30d7ba32ef19b24bf9efdbd
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (3254), with no line terminators
Hash 01af8e17d6283e7ed12c346a5eecaff2
08a9b70ade250398c6861c415fd6efef6006754e
356a693c67d308853660da733355f39eb3d79c699a9cc9bed63c491bc0c083b4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/0a89d6b8-1f68-4d6d-93ae-b6062902ab19/main-slider-script.js?v=4a0a91644390f567c30d7ba32ef19b24bf9efdbd HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 09:45:42 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qrX07flBlO88IopeYHXnlMAjW%2Bh%2FWGpF5Px5RgsiOioTUxmpRgbfjitgumkNz0BaZvWfGvSh5XgFtOuE1F6sgYb8t%2FhdJlX67%2BIdrcrVogP6RmS6LomlM1%2FkyC5SXgYkuVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9aa56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/9547a3b5-9840-455e-8290-556efec79826/concept-style.css?v=bf94ac79b777bf49ce29de6ae0d3537c6ed1e508
172.67.184.192200 OK 477 B URL GET HTTP/3 shopallgift.com/storage/9547a3b5-9840-455e-8290-556efec79826/concept-style.css?v=bf94ac79b777bf49ce29de6ae0d3537c6ed1e508
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with very long lines (521), with no line terminators
Hash cd9b4a7330a2f4402dd5afbdd366f15d
cbb55a4fe4deba8e01361a484db381228627a1bb
b9cd545536ef6ee8b05ff98c529ec8b448facfa236cdd8cee27f41abaec97db9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/9547a3b5-9840-455e-8290-556efec79826/concept-style.css?v=bf94ac79b777bf49ce29de6ae0d3537c6ed1e508 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Tue, 14 Nov 2023 09:29:03 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BjCa2HkvtIPKjxlpAOEPmxgf%2BHtZfjKHSNeUb%2B1os2prWS7hAxCSNZg%2FTkM%2F5YZBSqwb0TsE38aiQQKMNCVVbDAQM0R7%2FW5VHlSu1vJ7zYIE4y6gioGFFRj984SP131IoaY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf490d56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.184.192200 OK 1.2 kB URL GET HTTP/3 shopallgift.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
last-modified: Fri, 03 May 2024 18:04:18 GMT
etag: W/"66352722-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PGDlH437%2BG4nSscnwqTc8%2FfNcuy2eTzuhDicmvdgZOS72SN9BC7OeWuMFJL1dxqBLIqiPBDw2XAl1cAwwNuJ7yA4wx2lh%2FIP4FFqJIpCgFX%2F7f0WoQsE5k3zqyhfo07t%2Fko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf796656b5-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 10 May 2024 12:46:40 GMT
cache-control: max-age=172800, public
content-encoding: gzip
fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700&Poppins:wght@400;500;600;700&family=Schoolbell&display=swap
142.250.74.106200 OK 2.9 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=DM+Sans:wght@400;500;700&Poppins:wght@400;500;600;700&family=Schoolbell&display=swap
IP 142.250.74.106:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File type ASCII text, with very long lines (2927), with no line terminators
Hash 947cb10417efb1f3f35e2f2dc0f6db2a
3e75ae3cba1fc218c39dcae485c36c340e2642cd
6c4a3d6d9d54f5edf4345b03f1051e320a4619ea2d6fcec43ba5a4a1666fa354
GET /css2?family=DM+Sans:wght@400;500;700&Poppins:wght@400;500;600;700&family=Schoolbell&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 12:46:41 GMT
date: Wed, 08 May 2024 12:46:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shopallgift.com/storage/91dad925-becd-46ed-82d7-ed4889640160/revolution.extension.actions.min.js?v=f50367c2d0c711c703aff1d5550fa947c2ce1f14
172.67.184.192200 OK 8.3 kB URL GET HTTP/3 shopallgift.com/storage/91dad925-becd-46ed-82d7-ed4889640160/revolution.extension.actions.min.js?v=f50367c2d0c711c703aff1d5550fa947c2ce1f14
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (8567), with no line terminators
Hash 1f6dbea6f1919c0eefb64cb9a00afb57
5a96f685ec7b625553250cddf2594b432e728b15
849c8a575e66870f450579cd91c834a5282e87c898ddb5b3f49138fbe1ad8697
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/91dad925-becd-46ed-82d7-ed4889640160/revolution.extension.actions.min.js?v=f50367c2d0c711c703aff1d5550fa947c2ce1f14 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:49 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J3jUhU2UMk%2FG87PMIPEGbi6dG404mh%2FMLWH7WdKW5n%2BdgCPeLvkbiksD2MOArDSHyKlk1ZBxs9shJbAL6PaUpqj%2FAFoJ0TiDWmwmCFKJ0D9hLBD6rqiRr2V7Gu2wJpstje0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf897e56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/js/app.js
172.67.184.192200 OK 218 kB URL GET HTTP/3 shopallgift.com/js/app.js
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Size 218 kB (218197 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/app.js HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 07 May 2024 18:05:51 GMT
etag: W/"663a6d7f-35455"
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FA3AmSTFBScIW8KO6FPweynutEPKCJVvNOQG%2FPBPMAXIHETbY8Xqj5nREVGeuUdEQiQ%2B8qNHL6GmbR873U7dBntD411QPra5U8Ee4MnoOFojipnAxmzNJrbsX8QKuZAIAt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf897756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/e4c92ac8-03ba-4014-b8b2-40283384bec5/testimonial-bg.jpg?v=0a609cae6d6b4fb4fd9a4799391194ca52c6ca3d
172.67.184.192200 OK 544 kB URL GET HTTP/3 shopallgift.com/storage/e4c92ac8-03ba-4014-b8b2-40283384bec5/testimonial-bg.jpg?v=0a609cae6d6b4fb4fd9a4799391194ca52c6ca3d
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 693x841, components 3
Size 544 kB (544529 bytes)
Hash d365bfb4d1777a7ce48e8d9bcb8e0af7
0a609cae6d6b4fb4fd9a4799391194ca52c6ca3d
ecffb32894f81b32436e86b56ca007151d631dc0fa9314bce5f7e6c5a3dc4497
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/e4c92ac8-03ba-4014-b8b2-40283384bec5/testimonial-bg.jpg?v=0a609cae6d6b4fb4fd9a4799391194ca52c6ca3d HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: image/jpeg
cache-control: max-age=43200
etag: 0a609cae6d6b4fb4fd9a4799391194ca52c6ca3d
last-modified: Tue, 14 Nov 2023 09:24:40 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FsVueg1GJzvgInnjVId0sR4kihK8N9zY7FiWgmBMMw24PRAjU4I%2FL0rbvqWm1wZrC%2BUg8byJGxaBoazS5X9g2aoIC%2BCr4FPWhoA587YJDm1y3w9vGAt%2Bo5rYFiyBz50N7%2Bw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd4df8056b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/772b8850-59b2-46fa-9f6d-fd11d06e7029/linear.css?v=88df7b8b1a482a8403e0d2d749bc85c775f8b336
172.67.184.192200 OK 12 kB URL GET HTTP/3 shopallgift.com/storage/772b8850-59b2-46fa-9f6d-fd11d06e7029/linear.css?v=88df7b8b1a482a8403e0d2d749bc85c775f8b336
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 3a407a2e957f38a24f264d6b666d4313
88df7b8b1a482a8403e0d2d749bc85c775f8b336
979be0d24f41a7285e12f43a335d6b99a6cbdc9be75fbeb4860254620e883c16
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/772b8850-59b2-46fa-9f6d-fd11d06e7029/linear.css?v=88df7b8b1a482a8403e0d2d749bc85c775f8b336 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 08:00:28 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0QSexh3ntVf1GrBy%2FJTlcN%2B26oGQhx3uPLbRla9fYtEpwu5sgGk8VeCpITJ9dgVye03nbwb05AySUsx4FR%2BMueSY3IYhJzS6pkjx5WipcZCz6msKAtUTy5urO3HVEKubi4Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf38e656b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/32cac61c-5a22-41c7-b51a-6832c79f153e/animate.css?v=378aaa5cd626d05d5a45f21a5629bbb5c09bf534
172.67.184.192200 OK 79 kB URL GET HTTP/3 shopallgift.com/storage/32cac61c-5a22-41c7-b51a-6832c79f153e/animate.css?v=378aaa5cd626d05d5a45f21a5629bbb5c09bf534
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with CRLF line terminators
Hash 57fb9e2cfb317959f7824f4fbe950dbe
378aaa5cd626d05d5a45f21a5629bbb5c09bf534
75a917eda5c7d388adaa10a684b5468d51dd043ed1c517bec76b4ae0a6a4995d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/32cac61c-5a22-41c7-b51a-6832c79f153e/animate.css?v=378aaa5cd626d05d5a45f21a5629bbb5c09bf534 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:22 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4kUudZs5IIwoQk%2FfbONPgopmo%2FKLSuK1plCQUjAOm5wv7%2FL3kljzcbmqmJYtd8FjjoT3C%2BPmJ0X2RnwyVYSR5ERzvH9rtkFYv6T50dUxLCArkzuiEWhXXRZk9WviKD0%2FapI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf28ce56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/09cf18fa-5c55-472e-b6db-e833e8a3f08c/flaticon.ttf?ef1d05edba827b42d0bc8bc9ffeaf842
172.67.184.192200 OK 126 kB URL GET HTTP/3 shopallgift.com/storage/09cf18fa-5c55-472e-b6db-e833e8a3f08c/flaticon.ttf?ef1d05edba827b42d0bc8bc9ffeaf842
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, flaticonRegularflaticonflaticonVersion 1.0flaticonGenerated by svg2ttf from Fontello project.htt
Size 126 kB (126280 bytes)
Hash 9c57e20cb35b99497375b357c4285dbd
8d8e8da4256a795d247d760cf045b170f6ec5b38
24441d36fa6b97f2f5f9899d1ebc8ac9b87884a19520b66d2bb320e6159df5ad
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/09cf18fa-5c55-472e-b6db-e833e8a3f08c/flaticon.ttf?ef1d05edba827b42d0bc8bc9ffeaf842 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/storage/3a50249f-af76-4366-a91e-e30ee9923899/flaticon.css?v=e691b891aa584116d9998a18ee0bdb1ab9fa38b9
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: font/sfnt
cache-control: max-age=43200
etag: 8d8e8da4256a795d247d760cf045b170f6ec5b38
last-modified: Mon, 03 Jul 2023 07:52:08 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=odGlAwuD3WA661oO97BOmqJzLNlmkc12E%2FUOF4b20GhcvGaHzFnV3AiNNzkb%2FieiDIXo7kUKRQNOYigHZYIDFa7bpSrJtl2laDOW8IexCV1ElE4cbIxapviQuMTPkAa9%2F2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dd51fb956b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/99bd5b87-9fae-4fc0-a28c-a09f665b412a/uk-flag.png?v=81a7768e98e431ae608c64f70bdc9e264a9d5323
172.67.184.192200 OK 9.2 kB URL GET HTTP/3 shopallgift.com/storage/99bd5b87-9fae-4fc0-a28c-a09f665b412a/uk-flag.png?v=81a7768e98e431ae608c64f70bdc9e264a9d5323
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JPEG image data, progressive, precision 8, 87x64, components 3
Hash 3bb91897a6c1bed060703eb030eb5f2d
81a7768e98e431ae608c64f70bdc9e264a9d5323
90b9c5418311f5a00676c119f4ed44f9513056b2a6235a761625b7348a6803aa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/99bd5b87-9fae-4fc0-a28c-a09f665b412a/uk-flag.png?v=81a7768e98e431ae608c64f70bdc9e264a9d5323 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: image/jpeg
cache-control: max-age=43200
etag: 81a7768e98e431ae608c64f70bdc9e264a9d5323
last-modified: Thu, 17 Nov 2022 11:05:44 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lnd7alEHtQCowGXN9oxPtO%2FTja3PWJWaMp7xPRcGbSzcpOFXnpidHTlm59fy2rzzYdQ9GmOx%2Fl6HuM7BgAzL7mjU2doaCgUuapMnOdYWd6%2FjH24oiygyQuk5dsDhuIYuaG0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfb9c256b5-OSL
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/ce8bf21f-877f-4f6f-8629-05fae5373b65/revolution.extension.parallax.min.js?v=e00d5e9a3dca546921b83d15a0cb7a9261467027
172.67.184.192200 OK 11 kB URL GET HTTP/3 shopallgift.com/storage/ce8bf21f-877f-4f6f-8629-05fae5373b65/revolution.extension.parallax.min.js?v=e00d5e9a3dca546921b83d15a0cb7a9261467027
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (10692), with CRLF line terminators
Hash aaf7e95e34f292b1a098887db6cf9ee3
e00d5e9a3dca546921b83d15a0cb7a9261467027
149d1060d155832cca22142423c095866d6b03277f372ebc1967ecdf579a435b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/ce8bf21f-877f-4f6f-8629-05fae5373b65/revolution.extension.parallax.min.js?v=e00d5e9a3dca546921b83d15a0cb7a9261467027 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:33:01 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYi%2Bs7Ni2pw79xIfdT10owqoDu4fQKpXmWICJH7YrO3nATcIu3jgbl0%2F9xME4LwWl9kopa7oy6CivSKVOcpv3kKuzjIFsaqbkAxRD4IFdUjK1SQg4agYOQ2yAs8m1bW0jiU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9a356b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/b86405aa-4c8f-44ae-856f-c1f7b31fde8a/jquery-ui.css?v=82a4e3672587c56da47c1de18b58d508921cd386
172.67.184.192200 OK 37 kB URL GET HTTP/3 shopallgift.com/storage/b86405aa-4c8f-44ae-856f-c1f7b31fde8a/jquery-ui.css?v=82a4e3672587c56da47c1de18b58d508921cd386
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type ASCII text, with very long lines (2363), with CRLF line terminators
Hash 2568ba482043c2e442d3956f4e83b844
82a4e3672587c56da47c1de18b58d508921cd386
d583c5aa7d8bf28388c1163556a2c7d79614954f1a5847f2797625a1fd0c96fb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/b86405aa-4c8f-44ae-856f-c1f7b31fde8a/jquery-ui.css?v=82a4e3672587c56da47c1de18b58d508921cd386 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:47:28 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6m4UU%2BmVTgBMTraUpXpc%2Fy0KLij7sgh7GRly73nAc0t3smY5T%2FGjEXMcs9em0cXkgsbs%2FpH5B3Pf4h1ECHGBZENCtv6njygF3im%2FBftVL5%2BsJACpajD2EOef72j7vTnEjoM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf38e356b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/880b4221-642a-42a6-9333-02c92836736f/vendor.min.js?v=f799ac63eb5638c8f07cee884f72f3f37a74bcb9
172.67.184.192200 OK 490 kB URL GET HTTP/3 shopallgift.com/storage/880b4221-642a-42a6-9333-02c92836736f/vendor.min.js?v=f799ac63eb5638c8f07cee884f72f3f37a74bcb9
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Size 490 kB (490171 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/880b4221-642a-42a6-9333-02c92836736f/vendor.min.js?v=f799ac63eb5638c8f07cee884f72f3f37a74bcb9 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Thu, 29 Jun 2023 09:16:20 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LWbgWk%2FyBwmZOQWDtF83OS0N%2Ff0nur5sLNdnQXdhfuVsSAMfX%2FxCBLgEaXQt2%2Fcs6wjAVvEp7VMivwaG8m3E6%2BQ7l57%2BJd34tGurpXfVlJQ2iNcAu9AXDqpjnTbFoWWcEc4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf897956b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/2c8d199f-0105-449f-bc49-69c8a9207762/revolution.extension.slideanims.min.js?v=9aa2e656e163d9a3ea622b4897974884583e4cac
172.67.184.192200 OK 29 kB URL GET HTTP/3 shopallgift.com/storage/2c8d199f-0105-449f-bc49-69c8a9207762/revolution.extension.slideanims.min.js?v=9aa2e656e163d9a3ea622b4897974884583e4cac
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (29149), with CRLF line terminators
Hash 8cc105dfeffdc03367dcbe7ea3ef264a
9aa2e656e163d9a3ea622b4897974884583e4cac
80a9123891e91ebbb1c06a2d2c79533155a8f17c51ac09013efa57bc007f303a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/2c8d199f-0105-449f-bc49-69c8a9207762/revolution.extension.slideanims.min.js?v=9aa2e656e163d9a3ea622b4897974884583e4cac HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:33:03 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aXFYvEK3hKvcx102u9JMxX86auI%2FBEe%2FnrqHDx5S%2B5uWiACPSjkTnGeHnmUnzp6Bf93rcgUJYxWQuVzr%2Fb7cV1bjdF0ykUD2M%2FF5PdBb%2F%2FNmfGKdlB%2BpD0mNZTJmi97DWp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9a756b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
shopallgift.com/storage/280f51d9-6402-4366-817c-3f125d7ef178/jquery.fancybox.js?v=36a2851d9ba535be1d42c8c2e4353743ba0b2374
172.67.184.192200 OK 159 kB URL GET HTTP/3 shopallgift.com/storage/280f51d9-6402-4366-817c-3f125d7ef178/jquery.fancybox.js?v=36a2851d9ba535be1d42c8c2e4353743ba0b2374
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
Size 159 kB (159342 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/280f51d9-6402-4366-817c-3f125d7ef178/jquery.fancybox.js?v=36a2851d9ba535be1d42c8c2e4353743ba0b2374 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:34:12 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GzJRENREOODuqz6yHLUjgGUNJ3VHh9C9NhBJJ0oEEIMFpxXBhstogE20FtxiuSU42cTprjQn54tCD%2BBWUWe6%2F%2B2crXrbxQMoOWkmxAzQ6i8guhWE5%2FQasQpx%2FJNpmgbOknA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcfa9ab56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
pro.fontawesome.com/releases/v5.15.3/webfonts/fa-regular-400.woff2
104.18.40.68200 OK 169 kB URL GET HTTP/2 pro.fontawesome.com/releases/v5.15.3/webfonts/fa-regular-400.woff2
IP 104.18.40.68:443
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 168768, version 331.-31261
Size 169 kB (168768 bytes)
Hash d8689b99dce7c881d3130f3c91cfefdf
fb005c93930c13b3a5f449bbc75ba5ee23f609fa
4de49631fe60b17010f7cda29a6236ca6ad6102ea204e5c31d2c1e79ee276938
GET /releases/v5.15.3/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://pro.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:41 GMT
content-type: font/woff2
content-length: 168768
x-amz-id-2: m79NfULraExQ++qspU1Toal5u8d2zzQqZXQ6U0IE5L008g5QT+QqJkkqFK3zyLRVweNuxOzVYHU=
x-amz-request-id: 9NCXHECX5VHMAZ1Y
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:23:20 GMT
etag: "d8689b99dce7c881d3130f3c91cfefdf"
cache-control: max-age=31556926
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 88098dd55e5db4f9-OSL
X-Firefox-Spdy: h2
pro.fontawesome.com/releases/v5.15.3/css/all.css
104.18.40.68200 OK 174 kB URL GET HTTP/2 pro.fontawesome.com/releases/v5.15.3/css/all.css
IP 104.18.40.68:443
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint93:F9:69:8C:73:B0:08:60:65:F3:39:41:39:66:D3:2B:78:3A:6E:3D
ValidityMon, 04 Dec 2023 00:00:00 GMT - Fri, 03 Jan 2025 23:59:59 GMT
File type ASCII text, with very long lines (65393)
Size 174 kB (174333 bytes)
Hash a28e912c1a41becec7f68848d739d5c0
d43883d0d3cc312199f3c281a9daf7652c3525b9
839ce8e32e994f4fb4af526183b8f41ba67e47c7025746cc94e7e6a53d3d3453
GET /releases/v5.15.3/css/all.css HTTP/1.1
Host: pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://shopallgift.com
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: text/css
x-amz-id-2: Y6hw4gSum9KhnZkLMOLIQKh8I4ZyXtpMGTbuoqUGD1QlfAdae3h1jB1ZPPNFuzChO2anMKd/RB3hX5czubWxMgiM0WRwEwtI0ZhoZgsroEM=
x-amz-request-id: 4FX8GN7TQR4D20ZQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 28 Jun 2021 17:21:37 GMT
etag: W/"a28e912c1a41becec7f68848d739d5c0"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 247005
server: cloudflare
cf-ray: 88098dcf7dadb4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
shopallgift.com/storage/f75293e6-2361-4f70-b41a-54a3078652f9/jquery.themepunch.revolution.min.js?v=e8ddc925c3ebaa77f120932e1acf3b680e84df51
172.67.184.192200 OK 65 kB URL GET HTTP/3 shopallgift.com/storage/f75293e6-2361-4f70-b41a-54a3078652f9/jquery.themepunch.revolution.min.js?v=e8ddc925c3ebaa77f120932e1acf3b680e84df51
IP 172.67.184.192:443
Certificate IssuerLet's Encrypt
Subjectshopallgift.com
Fingerprint6F:4A:DE:4A:45:DA:AF:38:AF:56:67:E4:A3:E7:80:83:AB:B6:64:4F
ValidityMon, 29 Apr 2024 23:26:41 GMT - Sun, 28 Jul 2024 23:26:40 GMT
File type JavaScript source, ASCII text, with very long lines (64561), with CRLF line terminators
Hash edd0a8f07cc892d86518ad62642dcab0
e8ddc925c3ebaa77f120932e1acf3b680e84df51
5bf19de4a1e69b7b3cce947da22702f074c0963192bf9eb3ea9210ac07c52f67
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /storage/f75293e6-2361-4f70-b41a-54a3078652f9/jquery.themepunch.revolution.min.js?v=e8ddc925c3ebaa77f120932e1acf3b680e84df51 HTTP/1.1
Host: shopallgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://shopallgift.com/
Cookie: XSRF-TOKEN=eyJpdiI6IkovUGRiR3doTmNlWEhXVXZSRERZRmc9PSIsInZhbHVlIjoiQWE3dUZmV2k3RGZtdnRLWXRaYlhjN1liTmQ4VGQ5VUhLcDVtNnhrdFpVbkNON2NHRFdUSkc3K1Y2SWNPUUNJc3I5RkpNN2ZQeGpwY3JFNVpJYlR6QXJTUXBVdWFuYlJnYlY5L0JST1JEemVuTFZkN3ZJR0VRU2oxTzcwWk0ydjQiLCJtYWMiOiI3YTRiNzQwZmIxMTc4M2EwYzJkMzQyYjhmNWNmYWEyYTFiMGRkMjk1OWE1MGExMTlmZjFlMzM3MjcyZWQ1MWEzIiwidGFnIjoiIn0%3D; SESSION_ID=eyJpdiI6IjU3ZFJYZmhPZWJFWTNPNHZBbHN0d1E9PSIsInZhbHVlIjoiQlBWQ2JsUllDL0NBVHExVHcvUmRsSG5UdHhVN25OQzRwYys0ZEF0eHFmNlU3ZmFWV2J1ZTczbDFrOW03TXRzLzErbVRKdEZxc0VXc282U2thLzJud3BpVDhqb3dqTWlsYUx4bDNlaVZwc1hXamRIcWdRcTNMUTJxYWVzMUExY1EiLCJtYWMiOiI1YThkMGZjNzU3YzJmMzM1MDNhYjU4Y2Y2ZGUwNjJkY2I2M2YyNjBiMGZkNzI5ZTBmODVkMmRlOWFiMTc2MjdkIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 08 May 2024 12:46:40 GMT
content-type: application/javascript
cache-control: max-age=43200
last-modified: Mon, 03 Jul 2023 07:32:17 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SRAGQwNeTJmI%2FA6unigcLgJH8ka5Gx%2BQrHWsv3RFWl%2B9cnRNJ64bmU%2FZWw%2FN3IQXbbCRpFWF3LHoRYtRLsw73jw2wjh7IGTR7ju45maQ%2Fq%2FJmGZEj5JGhnHUZlaqaLn3jBg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88098dcf897a56b5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400