Report - pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4

Report Overview

Submitted URL
pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
IP
104.21.16.194
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-28 13:48:39
Access
public
Website Title
Walmart 1000$ Bonus
Final URL
pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4#
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
32

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
pacdump.com	unknown	2023-02-13	2020-05-02	2023-10-08	11 kB	952 kB	172.67.215.146
pentlyconger.com	unknown	2021-08-12	2021-08-13	2023-10-25	938 B	4.1 kB	18.192.249.87

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed
2024-04-28	medium	pacdump.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	pacdump.com/w3/js/jquery.min.js	158 kB	2024-04-28	2024-05-10
Pretty URL pacdump.com/w3/js/jquery.min.js IP 172.67.215.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 15:48:39 Last Seen2024-05-10 05:16:16 Times Seen12 Hash 68718be302ebc37bd3e85cc972804a08 c9fa9d9e70d7dd6428f6fe94df31ae03c301df9d e1349616cdee61d2eb2b52713ec0c65de2cf30407fc802615f13bf2cab03aadf Loading...

	pacdump.com/w3/js/main.js	3.0 kB	2024-04-26	2024-05-10
Pretty URL pacdump.com/w3/js/main.js IP 172.67.215.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 01:52:05 Last Seen2024-05-10 05:16:15 Times Seen8 Hash d7d0535b377b575ac6f70e2869edef69 85d765741625217133057de4864234c03d875ae1 2229abd7623be96cec315148c9905b9ec8ddcf5c95ab3ec62238e726fa3978d7 Loading...

	pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4	517 B	2024-04-26	2024-05-10
Pretty URL pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4 IP 172.67.215.146 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 01:52:05 Last Seen2024-05-10 05:16:16 Times Seen7 Hash 0477c411ee4a23199c6c2992e22342e6 78470e89d6963b32abde1b9318148fb89d32bbcb 4e2742c756f5ddce0809447e552a382752828e624f827f59f0054e1fd0b81669 Loading...

	pentlyconger.com/d/.js?lpref=&lpurl=https%3A%2F%2Fpacdump.com%2Fw3%2F%3Fcep%3DDUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A%26lptoken%3D178d149e3197380c71e4%23&lpt=Walmart%201000%24%20Bonus&vtm=1714312094131	3.8 kB	2024-04-28	2024-04-28
Pretty URL pentlyconger.com/d/.js?lpref=&lpurl=https%3A%2F%2Fpacdump.com%2Fw3%2F%3Fcep%3DDUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A%26lptoken%3D178d149e3197380c71e4%23&lpt=Walmart%201000%24%20Bonus&vtm=1714312094131 IP 18.192.249.87 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 15:48:39 Last Seen2024-04-28 15:48:39 Times Seen2 Hash 1532456a612c68e405d972639bd15033 79bd652780e90da935897bfee3dd4209358383b0 dc6397446e2a74593663080a4c02c0d2088d8de85a3678d3479f218b14bad49d Loading...

HTTP Transactions (17)

URL IP Response Size

pacdump.com/w3/images/spin-button.png

172.67.215.146

200 OK

2.2 kB

URL GET HTTP/3
pacdump.com/w3/images/spin-button.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
PNG image data, 78 x 101, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2183 bytes)
Hash
a649d583e8f2912e5314a6df17deef92
eb97baf2d192fa147c6c8414a52fb7f91289df3e
83e54c14491844ac0a718311509eaabb6b8769e20a69118788fc8e4023e6cdf9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/spin-button.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:13 GMT
content-type: image/png
content-length: 2183
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-887"
expires: Wed, 22 May 2024 10:52:10 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 528963
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xOXeGLOtFaTnKXVxqyhfE8mOGuas08RN%2BU2059%2FtJx6FxdJR8gMa9zZuCcqjI9NoB714aG2c1VXF7Xp89xLNh8nnJI5noqPGLEYG5P7QcNuDxiyex7FYSNq2%2BFG2Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b78237f91ab52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/css/style.css

172.67.215.146

200 OK

8.5 kB

URL GET HTTP/3
pacdump.com/w3/css/style.css
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
ASCII text
Size
8.5 kB (8508 bytes)
Hash
9826af483ade54791774f2ca4a5cf842
1460d3dcef1cd0de22dc65870c398a323b7e06c5
03106d5c1c6dce356fd67ef2b25cf9e787c76fe86a8ce8db9446ef8ae95fda99

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/css/style.css HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:13 GMT
content-type: text/css
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
vary: Accept-Encoding
etag: W/"6625bfb8-9a49"
expires: Mon, 29 Apr 2024 01:48:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aseC0QogK6z5qaXQ4m438kNSnGsrjbt6I8GcEip0AY2c8LnngRbo7R7MWVET27NimZiFRtfJZ5OLdl%2FID7s0eq%2BhKauoPA1oQH76iEjmrAEvK2fcEhSXmtJ%2FH5feqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b78237f911b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/4.jpg

172.67.215.146

200 OK

1.0 kB

URL GET HTTP/3
pacdump.com/w3/images/4.jpg
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3
Size
1.0 kB (1042 bytes)
Hash
e489d022a40ba80f51fb5acc1addea46
41c334f49c248783037ceaf6fc335acff62f760c
c39b4bfbcc6aa147547ca922c4f80350b48dbfa59cbd5176f44373e3b20f3567

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/4.jpg HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/jpeg
content-length: 1042
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-412"
expires: Wed, 22 May 2024 10:52:10 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 528964
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XBP%2F8ZJqxKdOprohMUQ6H5Y2893OavXirb2rROVsvP0Er%2FyZAxuY76hLYYkQQWe1cgMMsE6ZehO5F7uv3YlG3SXMoRXFin7E42k6El2I8eDbqQqzn6XNy4MPzneEYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cdfb52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/prizewheel-amazon_3.png

172.67.215.146

200 OK

142 kB

URL GET HTTP/3
pacdump.com/w3/images/prizewheel-amazon_3.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
PNG image data, 645 x 644, 8-bit/color RGBA, non-interlaced
Size
142 kB (142095 bytes)
Hash
e95d11324db1a621b5cc439d15d18042
c7e00cb3441f83355c05e9fbea9b9f79dc1e9748
2a96c59dfa2d2bea133389eb373a348ba311a35e7b62bd86422f57f6e4d15f22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/prizewheel-amazon_3.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/png
content-length: 142095
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-22b0f"
expires: Tue, 28 May 2024 13:48:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=whmNlesQ9PnLy6UsNC7OUerZUumQKEjwSmKMbfDMYSWebQQf6MZ7ImcPoz97tAJDzK3gcCMzaH0KLAmWggpaGwn47WIZNSSuE%2B%2Fu%2F%2B3rvJn7oQRwqluPQuMO7aCOAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b78237f918b52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/1000walmart.png

172.67.215.146

200 OK

418 kB

URL GET HTTP/3
pacdump.com/w3/images/1000walmart.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
PNG image data, 1200 x 627, 8-bit/color RGBA, non-interlaced
Size
418 kB (417505 bytes)
Hash
b7370ac49bc67f20b6e4a8a6e996b3f5
f02c2c2b7662a192a1ecc3d626b4f0b48a0e5da0
1156d14262b4dc828bb1b005ef011d942c9c0714d7ff57b7153a36ea355fb715

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/1000walmart.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/png
content-length: 417505
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-65ee1"
expires: Tue, 28 May 2024 13:48:13 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cnoIrz4WwcmTCqHAaVn2KY06oEWevoSW%2F5eynbMnhsvcrdGzEHhaxb%2Br2%2Bk4wuYe2mAUVFFudy6S7JNFE8AjHYqoTF8ioLM1F8AUUA41qI2yWrkiPAUKzZvQ9tnJ5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b78237f91cb52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/3.jpg

172.67.215.146

200 OK

1.1 kB

URL GET HTTP/3
pacdump.com/w3/images/3.jpg
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3
Size
1.1 kB (1063 bytes)
Hash
72ab252d8ff828965ad984b8ab16991f
e45ea3665e80feb2e6309b04e1ec2e8d41bb279b
c5d70c3abf95aecc84bcc1b1f9fc25848e690852071169bf57522fd671550291

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/3.jpg HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/jpeg
content-length: 1063
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-427"
expires: Tue, 28 May 2024 13:48:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7mGuEg13MLMKumXstD2xe6BUWQlkMjdnFtzWv%2Bn0u0Ny%2FbR7GldLR5Xa3m8ct4b3%2B4RG0wGTnfuYJMuaBq%2FRlQDwirV6uoqui0AwUfo5TXuNy1ZYn1P7gi1h7p8bhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cdeb52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/like.png

172.67.215.146

200 OK

539 B

URL GET HTTP/3
pacdump.com/w3/images/like.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced
Size
539 B (539 bytes)
Hash
b9a87d56738130f9b2293bfdac0d6c16
ed485c8943516e188d516a66a0ceef340e3f682f
a13cace3635353a1fde8e82829511d61f2bb54ac9269dbfcc2fb40281b16955f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/like.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/png
content-length: 539
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-21b"
expires: Tue, 28 May 2024 13:48:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GYoWvEVJU8ZfM43eEpMXfWzmWkhLR9IxAfkpYGzEO%2FACg7wnzadp6SZZN2U4P6w%2BgW1%2Bv0R2s8DvkpMZnakpfp82mAymDRN3Rgt1Hkjy0vYR5YySy01stqYG5W%2F0iQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cdab52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/2.jpg

172.67.215.146

200 OK

3.7 kB

URL GET HTTP/3
pacdump.com/w3/images/2.jpg
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2017:06:15 10:57:43], baseline, precision 8, 50x50, components 3
Size
3.7 kB (3694 bytes)
Hash
02eebe83bc6786ef27b852477d4c4998
205314ba911137b6f6be4eefd946a2c62229e591
a0038f9d5f6fe1ce8fe1bf1cc7256f05e16c11d27041739c55918b823744753c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/2.jpg HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/jpeg
content-length: 3694
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-e6e"
expires: Tue, 28 May 2024 13:48:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MrKKLmOjrzVeh6eT48KCiuGo2pliFYoewH%2B5fc%2B%2FemaQnCuMfgUuDaBxyVMYFMKdwwHcN2INK4woS80qoiIVNnura50MXf2rX6eOnZVnzR26kWet2m5vC%2Fym3gKaKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cddb52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/1.jpg

172.67.215.146

200 OK

3.9 kB

URL GET HTTP/3
pacdump.com/w3/images/1.jpg
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2017:06:15 10:57:43], baseline, precision 8, 50x52, components 3
Size
3.9 kB (3900 bytes)
Hash
72c067fe856886245e7c47c7ff84e041
5210cb05f897db334c61f8971ccec9a7396ea8a7
9a106ad9f340c7bafdd365ea1ad24b9336c304b1e72653eb58e84b5604471030

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/1.jpg HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/jpeg
content-length: 3900
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-f3c"
expires: Tue, 28 May 2024 13:48:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Knot0NQhMEl8NU0yWu9nkFO3dScL3duHjl6cWZj45rlRlqdz7F6Anhmg%2FfHclsBjJQk%2FO8ZTczED6S9NxJTvF5dhD9dR%2Fc5h1m5%2FjXysftIwk5CqXZCG%2FPdTO%2FEz9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cdcb52d-OSL
alt-svc: h3=":443"; ma=86400

pentlyconger.com/d/.js?lpref=&lpurl=https%3A%2F%2Fpacdump.com%2Fw3%2F%3Fcep%3DDUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A%26lptoken%3D178d149e3197380c71e4%23&lpt=Walmart%201000%24%20Bonus&vtm=1714312094131

18.192.249.87

200 OK

3.8 kB

URL GET HTTP/2
pentlyconger.com/d/.js?lpref=&lpurl=https%3A%2F%2Fpacdump.com%2Fw3%2F%3Fcep%3DDUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A%26lptoken%3D178d149e3197380c71e4%23&lpt=Walmart%201000%24%20Bonus&vtm=1714312094131
IP
18.192.249.87:443
ASN
#16509 AMAZON-02

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerLet's Encrypt
Subjectpentlyconger.com
Fingerprint95:5B:7D:F6:FF:DE:FA:66:4E:48:88:35:D4:C3:41:42:A9:E7:CE:EB
ValidityThu, 21 Mar 2024 08:54:13 GMT - Wed, 19 Jun 2024 08:54:12 GMT

File type
JavaScript source, ASCII text, with very long lines (1732)
Size
3.8 kB (3763 bytes)
Hash
1532456a612c68e405d972639bd15033
79bd652780e90da935897bfee3dd4209358383b0
dc6397446e2a74593663080a4c02c0d2088d8de85a3678d3479f218b14bad49d

HTTP Headers

GET /d/.js?lpref=&lpurl=https%3A%2F%2Fpacdump.com%2Fw3%2F%3Fcep%3DDUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A%26lptoken%3D178d149e3197380c71e4%23&lpt=Walmart%201000%24%20Bonus&vtm=1714312094131 HTTP/1.1
Host: pentlyconger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: application/javascript;charset=UTF-8
content-length: 3763
access-control-allow-origin: *
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2

pacdump.com/w3/images/bg.png

172.67.215.146

200 OK

177 kB

URL GET HTTP/3
pacdump.com/w3/images/bg.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
PNG image data, 1280 x 560, 8-bit/color RGBA, non-interlaced
Size
177 kB (177384 bytes)
Hash
6cb857594b1972ebda177c5be766a8d9
d6db3a9bc7ec0f0fc147f2b5f8768641e76294bd
6c7bcc55f0028294dcfc2d3394ca758d3b6fddc2469d83ce207a54759a9bc4dd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/bg.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/png
content-length: 177384
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-2b4e8"
expires: Tue, 28 May 2024 13:48:14 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1RkL2cjaxC6daxAF%2B93LKJ6VpYjtY2juHbx2eq%2BR6f4sVy4sJoBT0QQOa4JxYNEHc66LVoJ4DZpC41I%2FFfX2f2qUd8%2BFgV%2B97ryCAzeZymm32n%2BpAV0HIKp2IPYDgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5cd8b52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/images/11.png

172.67.215.146

404 Not Found

7.5 kB

URL GET HTTP/3
pacdump.com/w3/images/11.png
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
7.5 kB (7452 bytes)
Hash
8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/11.png HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Sun, 28 Apr 2024 13:48:13 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fQPl0x8ObF8v8k0ioj54FBjD5eJcoUCgNjmJ1vwhFXAmPGAMgSIy9MPShlXekI7qRA7NefPCjWPzkjnjJmGjMgP7MP8aacCr9aI%2FMLdxcBY5aZVfJL0HXnFEQ8w0GA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b78237f91eb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4

172.67.215.146

200 OK

10 kB

URL User Request GET HTTP/2
pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type

Size
10 kB (10256 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4 HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 28 Apr 2024 13:48:13 GMT
content-type: text/html
last-modified: Mon, 22 Apr 2024 01:39:27 GMT
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VqhTpt0d30Jqh%2FPvmktuqIIKPrzVko7WcpAHsObz6q6aQc9kDPm09IXSLUM7pSPsKTK4Ihi6b4t9wlhbw9xn0VLngXWohD%2FrSl6VulljiRrpuGm5ZrVIVoiDnMMHQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b782353c400b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

pacdump.com/w3/images/5.jpg

172.67.215.146

200 OK

3.3 kB

URL GET HTTP/3
pacdump.com/w3/images/5.jpg
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2017:06:15 10:57:43], baseline, precision 8, 50x50, components 3
Size
3.3 kB (3268 bytes)
Hash
92c40a962aa579868b64b8b7f1b6575c
f676f1ce463a7b0b7b2c05587a9b52285e55e679
64e47fb0b1dc439d03463c15a7977d88988a4d3f7d563e3d772cc9ca8d41e414

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/images/5.jpg HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: image/jpeg
content-length: 3268
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
etag: "6625bfb8-cc4"
expires: Wed, 22 May 2024 10:52:10 GMT
cache-control: max-age=2592000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 528963
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I0fRERV7IVC8WT86ZpaTtcPpVFGyo%2F5Kz8RlWqx4fI6DHbkCWoe8Z39UYy9zcHKq59LktVcpyBYuVGCWaDlZjtWGtCLlNCdq8AK7dqxQdH1wawpeY7WP6LN%2BDRit2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823c5ce0b52d-OSL
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/js/main.js

172.67.215.146

200 OK

3.0 kB

URL GET HTTP/3
pacdump.com/w3/js/main.js
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JavaScript source, ASCII text, with very long lines (3074), with no line terminators
Size
3.0 kB (2955 bytes)
Hash
ebd35b871e299489b3446ca3e8635ef2
1386d022d8989c391fd366ff982cfae809aed6f0
77be90f292b1c86fb2f94ea9b211af5f6ba34399a088595f02c35b83cb3bc79e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/js/main.js HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:13 GMT
content-type: application/javascript
last-modified: Mon, 22 Apr 2024 01:39:04 GMT
vary: Accept-Encoding
etag: W/"6625bfb8-b8b"
expires: Mon, 29 Apr 2024 01:48:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2owxNKTaG82MKol%2BWqDF6ofQA9sHYNFIqIhSUZoxpW7PYqBSyHXb5IYBvuBjhm1vl%2BNSdznhjq%2BKMJDQCwuDMqzH25LpuhT9Pgy%2BSX4A91HquRUxSrJ8eFgZ0b6ogQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b78237f917b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pacdump.com/w3/js/jquery.min.js

172.67.215.146

200 OK

158 kB

URL GET HTTP/3
pacdump.com/w3/js/jquery.min.js
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
JavaScript source, ASCII text, with very long lines (800)
Size
158 kB (158127 bytes)
Hash
68718be302ebc37bd3e85cc972804a08
c9fa9d9e70d7dd6428f6fe94df31ae03c301df9d
e1349616cdee61d2eb2b52713ec0c65de2cf30407fc802615f13bf2cab03aadf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /w3/js/jquery.min.js HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:28:14 GMT
vary: Accept-Encoding
etag: W/"662b73ae-269af"
expires: Mon, 29 Apr 2024 01:48:13 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BjygY9RLahbs822QJ47tbV5y02BMyQ3QVbE0hnzKZ2VzvFqnz%2BKaPCbwh0ODwkUC1gASVNAhbKJUyryL6FCcJjMxCSSa9Yt4IvRfSfXUyzXQDMQxLlNWcEyJ1goBGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87b78237f912b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

pacdump.com/images/favicon.ico

172.67.215.146

404 Not Found

146 B

URL GET HTTP/3
pacdump.com/images/favicon.ico
IP
172.67.215.146:443
ASN
#13335 CLOUDFLARENET

Requested by
https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Certificate
IssuerGoogle Trust Services LLC
Subjectpacdump.com
Fingerprint19:F2:BA:14:84:6C:9A:F6:70:E5:55:A2:6B:60:16:7C:96:40:87:B4
ValidityTue, 02 Apr 2024 13:30:07 GMT - Mon, 01 Jul 2024 13:30:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
40b3fc14254227ec5012d996bf90c4e1
b0dd06eb5a779151151101337889ff09953f8ac0
740816c1b61e4a8443c26d30d3eecfea04815fca8cd605a142f9d8a35f86ceca

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: pacdump.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://pacdump.com/w3/?cep=DUHu_zIf_-_pn4xzBnizVjGyhmYgdya8JcAZlAqk1hp1CA4QYsQAG1SmEhrSw_atPYyYZdN4mlDqg8IcavMfG1pN_cEU_6DIvB9xnDGYhFlVMUxjF-9qP0HhuC2tMZgbgOtgwt7e3z7QW4yQlRYIZB5gmvdpFsbXZG7G_70CaZwIcCN7yHgB79BTJRbNnR_4ZouJab-6PsrCCo8adqxthZGi4McWAwxlcreA_7HGZPvhanyORplU36EGT4h3XZ9M8mGKAedCGKHvgNhpNR2Rk3c6bebPDuM7Cg3LI3sFawcp32QJt73QUPZuGurH0qACq_VUphct85fTuXIoC6-IdavH39o7l35kw-eARa07rLBb9nBFiiFIeDvuj4MS2deJNssfEEOBtKl7tyaC1jl61A&lptoken=178d149e3197380c71e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 28 Apr 2024 13:48:14 GMT
content-type: text/html
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gzefAhBJiT9FXfLhZBTuKug5IJC%2FQH%2FLSJh9J6gi%2Bd6KMejk7xMSk3G7YYTwk2Xdgdi6PI72vQioKLfcPLIM1z0UEmMTS%2Fx%2B%2FRsnNU6SWnsbb6w9EdbwAexRhMFy7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87b7823f9f81b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (17)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate