Report - skinboxs.com/r/GRIB?clckid=42a7042f

Report Overview

Submitted URL
skinboxs.com/r/GRIB?clckid=42a7042f
IP
104.21.58.214
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 09:26:44
Access
public
Website Title
Trade CS2 (CSGO) Skins ⭐️ Best CS2 (CSGO) Trading Site & Trade Bot — SkinBoxs
Final URL
skinboxs.com/r/GRIB?clckid=42a7042f
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
114

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-18	428 B	29 kB	104.17.25.14
svgshare.com	337999	2016-10-21	2017-04-24	2024-03-23	429 B	5.0 kB	216.239.32.21
skinboxs.com	unknown	2023-09-30	2020-06-03	2024-04-09	27 kB	1.4 MB	104.21.58.214
cdn.skinsmonkey.com	unknown	2021-01-06	2022-06-27	2024-03-23	3.9 kB	43 kB	172.67.193.151
yt3.ggpht.com	203	2008-01-16	2014-01-15	2024-04-17	485 B	14 kB	142.250.74.161
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-18	537 B	897 B	142.250.74.106
use.typekit.net	494	2010-08-02	2012-07-05	2024-04-17	486 B	1.2 kB	23.36.76.186
skinsmonkey.com	unknown	2021-01-06	2021-01-06	2024-03-23	3.2 kB	842 kB	172.67.193.151
code.jquery.com	634	2005-12-10	2012-05-21	2024-04-18	409 B	114 kB	151.101.2.137

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed
2024-04-18	medium	skinboxs.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	skinboxs.com/a671b28bbfbab15df39a946796213b592a1b5c16373f/20c456e3dc15a66223ba84959a9304b8847c110c7e9a.js	104 kB	2023-07-09	2024-04-30
Pretty URL skinboxs.com/a671b28bbfbab15df39a946796213b592a1b5c16373f/20c456e3dc15a66223ba84959a9304b8847c110c7e9a.js IP 104.21.58.214 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-09 06:59:05 Last Seen2024-04-30 19:46:49 Times Seen150 Hash 074203926eb9a662dd886fab202b0ac6 2d11274820e52fadab57682eb68cb9501cd3bc8a 96e810bc7bf4ca303106a6904bd513aa89eb7e83bd2c66ba4ea9ac57f3b6f5b8 Loading...

	unknown	34 B	2023-04-11	2024-05-01
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:16:40 Last Seen2024-05-01 01:30:13 Times Seen75765 Hash 572cb94037fffc2a0a53b465972e15f1 0d679b041a7c1ca45cc99e2d229fc2b86762838d 6487e4bdd0f51bbfd9105810a41755847fdae2c274e2fc325cd22356d7707e35 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-05-01
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-01 00:20:28 Times Seen96292 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	code.jquery.com/ui/1.11.3/jquery-ui.js	470 kB	2023-03-07	2024-04-30
Pretty URL code.jquery.com/ui/1.11.3/jquery-ui.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:14 Last Seen2024-04-30 19:46:50 Times Seen2798 Hash c811575fd210af968e09caa681917b9b 0bf0ff43044448711b33453388c3a24d99e6cc9c d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e Loading...

	skinboxs.com/r/GRIB?clckid=42a7042f	1.3 kB	2023-10-25	2024-04-18
Pretty URL skinboxs.com/r/GRIB?clckid=42a7042f IP 104.21.58.214 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 04:34:03 Last Seen2024-04-18 11:26:45 Times Seen41 Hash f296426701318bdad18a235f0f137e7a d3fa10e62aa95a6cf9173d8666e30f5ac02a2532 65ba21615746ae3ab2e2315644ca7cf3e28b9a580e9886ac08e86063d97c89ba Loading...

	skinboxs.com/r/GRIB?clckid=42a7042f	52 kB	2024-04-18	2024-04-18
Pretty URL skinboxs.com/r/GRIB?clckid=42a7042f IP 104.21.58.214 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 11:26:30 Last Seen2024-04-18 11:26:45 Times Seen2 Hash db1d5e53004287919ec8ac3bfb5a8b1b 57d68187dc6261684eaa93367e63425ce2b32769 c480c40747a87b75003f68583e7570dc98863cdb9815fb3716339419745496cc Loading...

HTTP Transactions (76)

URL IP Response Size

use.typekit.net/jze6dae.css

23.36.76.186

200 OK

792 B

URL GET HTTP/2
use.typekit.net/jze6dae.css
IP
23.36.76.186:443
ASN
#20940 Akamai International B.V.

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint15:AD:3F:8A:55:B7:BC:20:D8:70:5B:06:E0:D2:92:7C:BE:C6:E0:56
ValidityThu, 01 Feb 2024 00:00:00 GMT - Mon, 03 Mar 2025 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (516)
Size
792 B (792 bytes)
Hash
f184cc6b73b5ec664e698024895d391c
a292e2f4519465981f93a0945bef17be25e716e7
eb9dc31f34fe5a75318e0734e3436399f48b605cb1cd05a6892cc16167a16be2

HTTP Headers

GET /jze6dae.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/
Origin: https://skinboxs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 792
date: Thu, 18 Apr 2024 09:26:17 GMT
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js

104.17.25.14

200 OK

28 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
104.17.25.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
28 kB (27748 bytes)
Hash
220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 229885
expires: Tue, 08 Apr 2025 09:26:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AHq4IEp%2B1wKzeo2ltTGcZC%2FNRU8oGp5M140BLsvWsQv1xF0EXm569cblpzt%2FBMqIsBTx8he9rTbXekR5LVQhlG1eN2ivIfHQS6Gdt75ZNTLZHk5dkHXmdKleNxfIz9W8kbRXrQeu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87639cc77e10b4eb-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

skinsmonkey.com/_nuxt/img/vulcan.36fdee8.png

172.67.193.151

200 OK

31 kB

URL GET HTTP/2
skinsmonkey.com/_nuxt/img/vulcan.36fdee8.png
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
PNG image data, 625 x 608, 8-bit colormap, non-interlaced
Size
31 kB (31195 bytes)
Hash
36fdee83b7702e31f5855dda9fe96e94
05bb26c50ed043602451ecf216e4695bc87982a0
f067c1ec20942b273a9a52662cca0337f71ff8858c0dde4a8813782d5663cc22

HTTP Headers

GET /_nuxt/img/vulcan.36fdee8.png HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/png
content-length: 31195
cache-control: max-age=2678400
last-modified: Fri, 22 Mar 2024 13:54:17 GMT
etag: W/"79db-18e6670e074"
expires: Thu, 18 Apr 2024 18:28:16 GMT
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 53881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5Wjr2jzVwE21twYINNzyRrfk5WoeTURTF7%2FhasyZm4njxr%2FQUHLlIBA2%2BgrA%2Fe2WctBJAmI5o%2FN%2FoQwKqLYQq1X4gMDyRjwooyq68KhZ4k70Awq2u%2BLdXQi8jJ9HLkged%2BU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc78eb556c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

skinsmonkey.com/_nuxt/img/fade.928bcd8.png

172.67.193.151

200 OK

17 kB

URL GET HTTP/2
skinsmonkey.com/_nuxt/img/fade.928bcd8.png
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
PNG image data, 517 x 438, 8-bit colormap, non-interlaced
Size
17 kB (17292 bytes)
Hash
928bcd81e53d02497ecc1ab163ef3830
62d802328def45256ae66769ae5977c84c3c6247
e35e531c0a9aeb28ef054f30aeb372386bad583660e5dcd3499623e3bbb2b2e3

HTTP Headers

GET /_nuxt/img/fade.928bcd8.png HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/png
content-length: 17292
cache-control: max-age=2678400
last-modified: Tue, 19 Mar 2024 14:19:43 GMT
etag: W/"438c-18e57151757"
expires: Thu, 18 Apr 2024 18:28:16 GMT
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 53881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p2qIUnxhbUn36PohN3uD5AC2avb%2BRFaPifsyPragPK5%2F2P%2BbSaCD2AgHg1luia8wBGAZQ9tm0gm6BQbG6tThumt58wFhyX4qPfxiSCvcFVtvs7XzUg699fiX0fonvo4flxo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc78eb056c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

skinsmonkey.com/_nuxt/img/tt.1dd387b.png

172.67.193.151

200 OK

20 kB

URL GET HTTP/2
skinsmonkey.com/_nuxt/img/tt.1dd387b.png
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
PNG image data, 452 x 363, 8-bit colormap, non-interlaced
Size
20 kB (20292 bytes)
Hash
1dd387b69ed4750d300669b3da964b9a
4178b9c42b964606e9cb5ea07b5a94d4b996114b
2615a1ea7f02da7051babe0882771973a798b5d227ccf8a548cb36a2405e7d5c

HTTP Headers

GET /_nuxt/img/tt.1dd387b.png HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/png
content-length: 20292
cache-control: max-age=2678400
last-modified: Fri, 22 Mar 2024 13:54:17 GMT
etag: W/"4f44-18e6670e074"
expires: Thu, 18 Apr 2024 18:28:16 GMT
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 53881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qklfelIqO6S9WZQogi104AyDzKzVHZElM%2BAo%2F%2B9WbqKz5SsEIFHZuVhxWx7yK5cmo6xHFLvpRKQynWminTkm3yXO%2BT05Yhrm0q9JjXCZhTWFZdMJ%2F8yMZasDr9SowKXhI5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc78eb456c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

skinsmonkey.com/_nuxt/img/howl.13f06b7.png

172.67.193.151

200 OK

31 kB

URL GET HTTP/2
skinsmonkey.com/_nuxt/img/howl.13f06b7.png
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
PNG image data, 545 x 599, 8-bit colormap, non-interlaced
Size
31 kB (30960 bytes)
Hash
13f06b7e21ffb8970b440372dc9a8e65
fddcbc985a0e80821a9dec4fce91a80b96449b6b
91d927997f1463b732c316daa7e19687c94044aa9a1dabef6f5504463fa16db0

HTTP Headers

GET /_nuxt/img/howl.13f06b7.png HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/png
content-length: 30960
cache-control: max-age=2678400
last-modified: Fri, 22 Mar 2024 13:54:17 GMT
etag: W/"78f0-18e6670e074"
expires: Thu, 18 Apr 2024 18:28:16 GMT
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 53881
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e4pHdCYKxHDFIHo3pQwr%2F5QRW8aNrUYqIn26y4LDrIh3G0WVYGHeJJMlw0TQCuzRJLclpnfHdSi7WhViK0erqEhdNR06FNnVjtgA8X2dNxKOOyIp%2BXdRAhc1wHcqwPv41Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc78eac56c7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

svgshare.com/i/15Wc.svg

216.239.32.21

200 OK

4.6 kB

URL GET HTTP/2
svgshare.com/i/15Wc.svg
IP
216.239.32.21:443
ASN
#15169 GOOGLE

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectsvgshare.com
Fingerprint88:08:DB:FA:76:D8:D3:6E:E0:C5:DB:F2:BF:E3:6A:17:55:3B:9F:F8
ValidityWed, 27 Mar 2024 19:10:48 GMT - Tue, 25 Jun 2024 20:00:39 GMT

File type
SVG Scalable Vector Graphics image
Size
4.6 kB (4566 bytes)
Hash
8c2f32dcb7521d2b286e53afb86c2e3d
d7c4d5c56f63d65b9a240d43f86188f09c49ba92
30a2117db3d513ae935436511b569d0095718b7fdb83e7ce6ccf2d2ddcfc219a

HTTP Headers

GET /i/15Wc.svg HTTP/1.1
Host: svgshare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
link: <https://webmention.herokuapp.com/api/webmention>; rel="webmention"
x-cloud-trace-context: 07a9be47952e1f75d6e19faf691c9d51
content-encoding: gzip
server: Google Frontend
date: Thu, 18 Apr 2024 08:32:07 GMT
cache-control: public, max-age=315360000
etag: sha1-18TVxW9j1luaJA1D+GGI8JxJupI= sha256-MKIRfbPVE66TVDZRG1adAJVxi3/bg+fObM8tLdz8IZo=
content-type: image/svg+xml
content-length: 4566
age: 3250
X-Firefox-Spdy: h2

code.jquery.com/ui/1.11.3/jquery-ui.js

151.101.2.137

200 OK

114 kB

URL GET HTTP/2
code.jquery.com/ui/1.11.3/jquery-ui.js
IP
151.101.2.137:443
ASN
#54113 FASTLY

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (547)
Size
114 kB (113814 bytes)
Hash
c811575fd210af968e09caa681917b9b
0bf0ff43044448711b33453388c3a24d99e6cc9c
d2f0522008bff05c6434e48ac8f11f7464331436a4d5d96a14a058a81a75c82e

HTTP Headers

GET /ui/1.11.3/jquery-ui.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-72b1e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 18 Apr 2024 09:26:17 GMT
age: 15896378
x-served-by: cache-lga21958-LGA, cache-hel1410034-HEL
x-cache: HIT, HIT
x-cache-hits: 2697, 900
x-timer: S1713432378.613256,VS0,VE0
vary: Accept-Encoding
content-length: 113814
X-Firefox-Spdy: h2

skinboxs.com/_nuxt/d775c0d.js

104.21.58.214

404 Not Found

583 B

URL GET HTTP/3
skinboxs.com/_nuxt/d775c0d.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
583 B (583 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/d775c0d.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cr7z3w%2Beg61PMerRsrp5inQndsaWGyL60pQhy4aWpRoAC1KV70BZbzoHEWD4FekLLstE%2F8ub1kRGhCY2IKBaUo9pod6Do0Z5F7I4iI7Yl4FeTIdnCShZT6GUc1L6uNQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc79fed1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/4684f73.js

104.21.58.214

404 Not Found

5.3 kB

URL GET HTTP/3
skinboxs.com/_nuxt/4684f73.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
5.3 kB (5289 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/4684f73.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fXYD9wXQuwJbUCVwKrhQmHIuCWkQfDzB4iPXXEu6Sz0GH3TqRUlhTjsm3eSHcZVHnyF1ojyoiKQPTkqQraj1%2ByuNoQt4DafDfRrbw8s%2B0PJsxXrwyHVK3U%2FEXlnpWYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbbbd71c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpoo6m1FBRp3_bGcjhQ09-jq5WYh8j_OrfdqWhe5sN4mOTE8bP4jVC9vh5yYmugd9KRJlI_MAnY_AS3kOy9h5ftuMvPmiE2vSQm5S3ZmBXigk5Eavsv26LMgCO2Og

172.67.193.151

200 OK

6.1 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpoo6m1FBRp3_bGcjhQ09-jq5WYh8j_OrfdqWhe5sN4mOTE8bP4jVC9vh5yYmugd9KRJlI_MAnY_AS3kOy9h5ftuMvPmiE2vSQm5S3ZmBXigk5Eavsv26LMgCO2Og
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
6.1 kB (6118 bytes)
Hash
0ef44056f4970ef3c5ce07ea5a8006dd
56075d113be18fd32cb0de3eaf3c33cbdbb51af1
43c7e47ed27123de3d2ad77c6e7bc9f85d037c746069da5e06b51b9d90877e80

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpoo6m1FBRp3_bGcjhQ09-jq5WYh8j_OrfdqWhe5sN4mOTE8bP4jVC9vh5yYmugd9KRJlI_MAnY_AS3kOy9h5ftuMvPmiE2vSQm5S3ZmBXigk5Eavsv26LMgCO2Og HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 6118
last-modified: Wed, 07 Feb 2024 03:08:59 GMT
x-rgw-object-type: Normal
etag: "0ef44056f4970ef3c5ce07ea5a8006dd"
x-amz-request-id: tx000001f56141a9b2c0299-0065c31cce-cd0c417a-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 787772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OFU87PBB72vSy6FLjcwyK39YnHucgArFNJa9PmSToC507Sa4Ls8EA%2Bjz%2BCEtneZG66YY%2Fx9fP5ln9nrljrL2hrhjrGkhXaXZaeoj2AFiDFM1mzV8ptzGJBS2c%2FuW%2F%2Brrx9ir3UvZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc8ba87127-OSL
alt-svc: h3=":443"; ma=86400

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK9cyzhr-JkvbnJ4Tdn2xZ_Ism3OyTptqh2Q3t8kU6ZGr0do6cIwNvMwyD-wK-xezn05O06Z3KznVhpGB8spT0CWMl

172.67.193.151

200 OK

4.9 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK9cyzhr-JkvbnJ4Tdn2xZ_Ism3OyTptqh2Q3t8kU6ZGr0do6cIwNvMwyD-wK-xezn05O06Z3KznVhpGB8spT0CWMl
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.9 kB (4902 bytes)
Hash
1ff44631880715282d48bfc69e03cac1
322a737ce90b1ecbf142de057e165156638250fd
ef676247afce47a01678d56c40cd31f864607da102f757657993e1e5229f8be0

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot621FAR17PLfYQJK9cyzhr-JkvbnJ4Tdn2xZ_Ism3OyTptqh2Q3t8kU6ZGr0do6cIwNvMwyD-wK-xezn05O06Z3KznVhpGB8spT0CWMl HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 4902
last-modified: Wed, 07 Feb 2024 04:15:59 GMT
x-rgw-object-type: Normal
etag: "1ff44631880715282d48bfc69e03cac1"
x-amz-request-id: tx00000c214ea0ecdd46b41-0065c31ca0-cac57c3f-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 782004
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xYL5iDKWxt%2Fx4%2F7eIQ1zO1UyoE1%2FXZxf0Aj9hT3MfFCXJAOUV18LfiuhtO6MhIIsarRPjSnVsZfBrZm1jFiWcD2lGhmCURDFtS01aS%2F6mpE3OS57jw9Rs92MGwEj%2BI1aeyasKZuW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc8baa7127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/86ac9bc.js

104.21.58.214

404 Not Found

8.0 kB

URL GET HTTP/3
skinboxs.com/_nuxt/86ac9bc.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
8.0 kB (8003 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/86ac9bc.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vumDJtHy0eZa8IG%2F3ZB52jHTko3M4GU2xadFaD%2F%2FpAGGKPga5%2FqyiWJlFfck14E%2B5JsRE4L%2Bs%2BmfUEo0eHaYKTRzfGnU30emgF0hYpqeHaqVddPRYKDPViGjSFG8fGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbcbea1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/d2de29a.js

104.21.58.214

404 Not Found

4.5 kB

URL GET HTTP/3
skinboxs.com/_nuxt/d2de29a.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
4.5 kB (4481 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/d2de29a.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vx040Tr8Qqv%2F2bSMLpnwXIC6%2Fu3Xpufn2yf3ZsgGvZiEVHUcGwCAa8Or7MhdrMj09h5y5SGvl1vgovpy%2Bm6pqk6AQnFZLU%2BES1Z%2FS8q9QbpbjxGR1OV5QvEud01nVSc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbdbfb1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAR17OORIXBD_9W_mY-dqPv9NLPF2GlQucF0iejH8dj2iQDtqUI-a2ilcY_Ge1RtM1mG8lG3xLq815e0uJ3XiSw0ptcExpY

172.67.193.151

200 OK

8.1 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAR17OORIXBD_9W_mY-dqPv9NLPF2GlQucF0iejH8dj2iQDtqUI-a2ilcY_Ge1RtM1mG8lG3xLq815e0uJ3XiSw0ptcExpY
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
8.1 kB (8072 bytes)
Hash
42eeaf0ae9ebc05f548776ba68d95ca2
9413b644836c72c5cd2be64f1f2ccfcba9ea0c2e
5a2c4f119060dec3ae404a70e5fcd5de85d9fa01fc241c1a3029b6fe3c48cec6

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpopuP1FAR17OORIXBD_9W_mY-dqPv9NLPF2GlQucF0iejH8dj2iQDtqUI-a2ilcY_Ge1RtM1mG8lG3xLq815e0uJ3XiSw0ptcExpY HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 8072
last-modified: Wed, 07 Feb 2024 02:38:43 GMT
x-rgw-object-type: Normal
etag: "42eeaf0ae9ebc05f548776ba68d95ca2"
x-amz-request-id: tx000001eb4d36e68770a96-0065c2f28c-cb2bd0ae-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 795456
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gf7CPWZjczWFNz9yvkmsyiCeaBsBS4MtxjrPzW8PqU4K10dSw2P%2FruBYuYaPFyR5N%2FVBKBDP87ylClLcuJySX063G9Vy8qktSAhsqmP9U8x635No8z2x7qZGHy9AcCliIen3X5%2Bq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc7b947127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/0d11d37.js

104.21.58.214

404 Not Found

733 kB

URL GET HTTP/3
skinboxs.com/_nuxt/0d11d37.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
733 kB (733310 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/0d11d37.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o98dAXOzQYmYPsOLfeHAezGLDcul4azRfyr8lez3B2rzAEtFrY5hW%2FPpOXTRCnMBxgkscY33Hid2Y7vKISYTvj7hi04eJr0Xjhe9X3GfCQYwq7Od2YaQwsi6UzouzTU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbbbcf1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/img/logo-dark.b994410.svg

104.21.58.214

404 Not Found

14 kB

URL GET HTTP/3
skinboxs.com/_nuxt/img/logo-dark.b994410.svg
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
14 kB (13825 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/logo-dark.b994410.svg HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TqIpUg9T0AausOPosjLfAxMmVzQEdVN405fdurgf9VlASlX0PM8uZnbWU9cg0xGblsWFZtFQ2K2a%2BhEyPIBilhi6PP9W0%2BwZYNIAR6ya3F%2BnkRjuBhFkBy8qXXcdP%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc8c9f1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff2

104.21.58.214

404 Not Found

9.9 kB

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
data
Size
9.9 kB (9861 bytes)
Hash
ed583f1e006ac1b7d7403457311c2fea
21215c5779d9641e85164a240e7cd45356f59a4b
88598f047656a15a45676caed25e7b8710ab0aad8d13eb5e61689513a3c41cb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SYigqVsS8KNXxxdc3paiXPHgPy%2F8D0guy50D8jvpUa89Fl3VAvdQYKlrruO4Vlncns%2Bxa51bsZXGztAQvPqQWjcAZZdrf3WGOYEL8uIeMuMR1Fpehfs5KpWZSIpfWHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccced0d1c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/eafff82.js

104.21.58.214

404 Not Found

7.8 kB

URL GET HTTP/3
skinboxs.com/_nuxt/eafff82.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
7.8 kB (7775 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/eafff82.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zoc3ZpbnhsBgFxTd%2FgfMjvAKKiIyF9VT2yHUSNK7PTS6tTljb4xXIJzEyW0uDu2wyaU6EPOKp%2BeJEZAvzwgJQR6HkXFXSdVjD%2FVGc%2BSO8NtpDoG33qElymHneob2kt4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbcbe61c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/46f627f.js

104.21.58.214

404 Not Found

9.9 kB

URL GET HTTP/3
skinboxs.com/_nuxt/46f627f.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
9.9 kB (9936 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/46f627f.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=q0aDLjkRRtDL6qmSVT3XxnkAbGCFO2pYT3%2FuT0NJqT70aUqKjLEx4fPdaEOzvFjabq6IloeYpectlcK2wWNfSAQjOgMazfhskWf0bRwGk6%2Bn9D30lvqYOgvvDiiFnFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbdbf81c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=70IXL7lUZYMpZ17Bv9MSPTdQhnSaOzNc1NgGDTS4nLN3q68Xs%2Beewv%2BMzTjRwbA85jTBIJFex%2BJ9fMfLSUlRFrI7L0LeQV%2BgN%2FjoVsBa6oN3%2FQusLsskBXWp1fcB6I4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cccdd071c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/img/logo-mini.96678c5.svg

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/img/logo-mini.96678c5.svg
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/logo-mini.96678c5.svg HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pz1s%2BGGYEasbfamGRKl9fYJ0hqw5OacycigbP1Z%2Fd2HG2Nlk4GjgZjAsaXE8wg55l7dJs0CELFbXy24ry09v9WykOj0wfIh2S78WkaYA%2FEEhgcZyYxjiydq1SNpRjeg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc72f6c1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinsmonkey.com/flags/US.svg

172.67.193.151

200 OK

2.2 kB

URL GET HTTP/2
skinsmonkey.com/flags/US.svg
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
SVG Scalable Vector Graphics image
Size
2.2 kB (2208 bytes)
Hash
f4e4b87d7024cade5d1cbfaa75e9da3a
d6c44ef737629c7116a4df26b7ec3f89f056ba74
96d34f2e613fda20efb0c898b3d03004e50355a0cb1cc845b803e2b0a2db83a8

HTTP Headers

GET /flags/US.svg HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/svg+xml
cache-control: public, max-age=2678400
last-modified: Tue, 12 Jul 2022 12:31:00 GMT
etag: W/"8a0-181f2642d66"
vary: Accept-Encoding
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F%2Fgywn7og7MZ%2FEICm3zj0KgSdePirO1xwwrxSUrS%2Bh1wzc8eRrM823%2FIDo5WkuTuQazasFPh4ZxjK3gWSS1pIucT7Inh18x31e4vhwKvYuV4jU0WseNzY%2B2fH73QplRx7D8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639cc78ea656c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

skinboxs.com/_nuxt/8543168.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/8543168.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/8543168.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ToirYiir9QkGyJ8KSw1etli7t9itVsTuqsTpd3jLz6ktiafMva7YuQQrnw9Mrv4CzyShOHfA5M3Fnj5VBmzT73TVIopph91f%2BlfCegZCmuuXCRGqEvUbHNMrjUzTBHQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccb9bb91c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/0e03aff.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/0e03aff.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/0e03aff.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fKC8d2BCyuVQRQVQx%2BXrPWQT6H6oPIckO7AvTc1shIYMFqim1fwwTp%2BYCU2VG9EszlCnmxmIDrfzYqCGO%2F6bvm1cjZbDsqBs9eyUpGXFTg2rtjfG74FM1Q2OhHr6cJY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbec0a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/43f66bc.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/43f66bc.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/43f66bc.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rAOxmShTYbZyERXSpoleJTtTnRXadE3bE4fthmYk3qZD5FW5%2FlHolTTsccx6hFnuXlKwdsujiOKoUuurewREh1FyRd6n2w%2BEw4w6ZG0TXjHbt4MjnCPpVO8lg3srfDk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7b8161c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alDLPIhm5D18d0i_rVyoHwjF2hpl1kNzqlIITBJAA3ZlnT_VHtxOm715ftu5SamHJg7yYmtivczhG3hE0ecKUx0uGnXixz

172.67.193.151

200 OK

5.2 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alDLPIhm5D18d0i_rVyoHwjF2hpl1kNzqlIITBJAA3ZlnT_VHtxOm715ftu5SamHJg7yYmtivczhG3hE0ecKUx0uGnXixz
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.2 kB (5178 bytes)
Hash
f5498a63b146328622d6646ea5bf2fe9
f0757ade993d91b45d6845ff7d1ee237d8b82711
e5654c16e0bc3040514108e1ae58a02ccfc9849dbdd37c002408418ef9b015cd

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhz2v_Nfz5H_uO1gb-Gw_alDLPIhm5D18d0i_rVyoHwjF2hpl1kNzqlIITBJAA3ZlnT_VHtxOm715ftu5SamHJg7yYmtivczhG3hE0ecKUx0uGnXixz HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 5178
last-modified: Wed, 07 Feb 2024 02:09:23 GMT
x-rgw-object-type: Normal
etag: "f5498a63b146328622d6646ea5bf2fe9"
x-amz-request-id: tx0000058daa7ac1302dd74-0065c2f2ba-bc9d9e0d-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 785286
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HnTlZl9j77mvX%2BR%2BJTg8W6XNSThEeXroLiYJfDcRKLgNXGWvyY0LdkwaPtb1Tc2vSyJSY0J4WBpIlA7BTBx2OTX3kBUyDIw6jgJt4M%2FewLC0p4dtdBK23h%2FEAk5oSgQhlihZ57Yd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc7b9a7127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/b453a8078b11778d022eb91a310acbaa94557b9aede4.css

104.21.58.214

200 OK

11 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/b453a8078b11778d022eb91a310acbaa94557b9aede4.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
ASCII text, with very long lines (3876)
Size
11 kB (10597 bytes)
Hash
2113b6560d12d0fbaafcb9b964364591
781afbd9b39e0ccfd8f6a5d906a48639b62105e0
02ed5fedd4d231fd7599d828707a1af9728f3dd33876047b5b045c1cec3f5d02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/b453a8078b11778d022eb91a310acbaa94557b9aede4.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:52 GMT
etag: W/"620a6490-2965"
x-country-code: SE
x-country-name: Sweden
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=auIDLAoZ%2B%2BY3Pk7G7V8tMH7VPlS9yQQccu3dtC1uWcYJ%2FmDObyV48UHpglwwu7Ns3TMz0nJzAC1K4MyA4LyrynRNW%2BWb5HyoLhS82klx%2FhqQjOuDHSFoIkphRQLqXMI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f561c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinsmonkey.com/_nuxt/img/trustpilot-5-stars.bea26c1.svg

172.67.193.151

200 OK

801 B

URL GET HTTP/2
skinsmonkey.com/_nuxt/img/trustpilot-5-stars.bea26c1.svg
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
SVG Scalable Vector Graphics image
Size
801 B (801 bytes)
Hash
8b2c336c48a2562b25fc8de91e60d5ad
0766c1d1326efd5c375c93c1211e17e537de4069
4b12729b4e5b494c4e72eb857c8e448518943886520803021d5a2a50c2789eb7

HTTP Headers

GET /_nuxt/img/trustpilot-5-stars.bea26c1.svg HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: image/svg+xml
cache-control: max-age=2678400
last-modified: Fri, 22 Mar 2024 13:54:17 GMT
etag: W/"321-18e6670e074"
vary: Accept-Encoding
expires: Thu, 18 Apr 2024 18:08:41 GMT
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: HIT
age: 55056
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=B3R4aw3L%2Fd6XkgH98A9HjNVc1OORJ6iEGaxC4K33Pq5u2TU0tEZN443FZEoXiWDD%2BYXBMn%2Fcy%2Fn%2FVAkvDgYBNGJ0%2FZ5gVJPg8BmhIhii%2BC9KfY2oX025eZx8XmCTnqA%2BPgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639cc78eb756c7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV09-5lpKKqPrxN7LEmyVS7cYg3LuT94qm21GyqUpsa2j7IIDDJwI7YwvRrFi7lOa5hpfpvs_A1zI97fpmYHCU

172.67.193.151

200 OK

4.4 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV09-5lpKKqPrxN7LEmyVS7cYg3LuT94qm21GyqUpsa2j7IIDDJwI7YwvRrFi7lOa5hpfpvs_A1zI97fpmYHCU
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
4.4 kB (4370 bytes)
Hash
a9b2f93de27ed2074a8ed450854be204
151db6b46de8052d9d3b3b91d8c5106160ec5442
91ec8e9e0bf7861df7b4183b1db9b82e0bcabd7c64b777c7e51f8d97a0a1123a

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpot7HxfDhjxszJemkV09-5lpKKqPrxN7LEmyVS7cYg3LuT94qm21GyqUpsa2j7IIDDJwI7YwvRrFi7lOa5hpfpvs_A1zI97fpmYHCU HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 4370
last-modified: Wed, 07 Feb 2024 02:20:29 GMT
x-rgw-object-type: Normal
etag: "a9b2f93de27ed2074a8ed450854be204"
x-amz-request-id: tx0000041e33385cf0b7f44-0065c2f266-cac57c3f-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 795472
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sc1aRlaogysUI5t3CBhdKKLa4HRBZ1%2Bk%2BtxRn570lFxehzm3WS%2FR7OhjqIVs64CdwUI%2F4BXN0D6uV1C9m0MnoNAAkBAZBaFXgTyw5%2FbpDVuDZZkNP2co98VM5A4xOed%2BglXVKNM3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc7b967127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/de0058b50c983a1f842a83023a8f5af45778f27c8553.css

104.21.58.214

200 OK

77 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/de0058b50c983a1f842a83023a8f5af45778f27c8553.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
ASCII text, with very long lines (4303), with CRLF line terminators
Size
77 kB (77205 bytes)
Hash
d75bc33f0e1f113e13918a1574bed89e
ce9524469a86d2cf429390d9a2b09151906f16f5
c2815908a70bff8204d9c9dc034dd649f3f560a90112b11ddd5e0e53583bd39c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/de0058b50c983a1f842a83023a8f5af45778f27c8553.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:56 GMT
etag: W/"620a6494-12d95"
x-country-code: NO
x-country-name: Norway
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JWrCVGq8IdJaRH0PHPL2IP%2FnanIbNFFcB%2BMYqukP%2BG%2FyP11FzpSi44IyjyKx4gub2pkWYuChuxRqz9FJpZxeLILboYjYPQZpkcTBgEUadUUzLjuBXpUUtpvPICFCAMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f4f1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/9406d40.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/9406d40.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/9406d40.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vm%2B8J86rstJEOm4qT34l9BMKqTJ%2BVbSvr1BA68NEZlmdx1armuEri8a7Bf%2BIGXOcvz0lEOf%2FW7x6yI3wmfvEvEq44COK4kj6MU0oQzozFL2WScOMbqXma0Pkf6L80gA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7b8181c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-regular.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-regular.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-regular.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DmWokfxnib0LjPdT9YWRgEHg3GZkkoVpvsHvVxlsEU8ITve5wzD0XECEQrZ7FCHjuX1PaSwgGPJUT%2F1%2F4ceDkqh9JkOZ840gu2BXKct5ruWxBuaTTBv4jtG46CWSe2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccb7b8e1c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/050a8b5.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/050a8b5.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/050a8b5.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FksPztxjRdfKAVohk2OfWxKRVDcsKniZyOmtvpVGzpkYagi7Nn6vszcnRqXxSr3TYU4EJrMcdWdQM7b611sx%2FnsYj3ZpVVsO7Cy8EhrDdyBQ753E%2BHaiprAWkftD9wo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbcbf31c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/83e88a93fcafbba5189628bafc2a65892053b69edbb3.css

104.21.58.214

200 OK

20 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/83e88a93fcafbba5189628bafc2a65892053b69edbb3.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
ASCII text, with very long lines (1188)
Size
20 kB (19982 bytes)
Hash
2727c215f1b26015043511e9735a46f7
7d1dc9acca9b896d0e880973e33e339188fab602
dbdcded3c4261a3c9d79cb3cf9e641744ad1f2db504690f3a1a06f6b3893dda4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/83e88a93fcafbba5189628bafc2a65892053b69edbb3.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Mon, 14 Feb 2022 14:17:57 GMT
etag: W/"620a6495-4e0e"
x-country-code: SE
x-country-name: Sweden
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iIDgVY3OjdO5P4dKZcSo9blifT3F4cWe3ryRwalJAQ7Td8detyYFlyL8Clz9AdjiSZoerGN0PkNhrVngCSVwmPY9vHWZhMFHZ9q6VgMMFTnjzyfmQx8kHA%2Fk8jSdD3c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f531c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/b368e8d.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/b368e8d.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/b368e8d.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aPfCM7%2BRVwkTFP8dOb77mj1whw%2BFqR3r%2Fu2dgmlGnos0HCxGqm%2F%2BW9WqCk6Ogmd5dkgsIFokdI7pEZZcKoSU55TyR6ILxdHmhWW8d%2BYIcMTqK2%2B8WcyyZPHl%2BkPL1Hc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc79fec1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/194d5c8.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/194d5c8.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/194d5c8.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m5hZtnGOhO6A6seoIhe%2FojTmTl%2Fr4m%2FwcymdlFRizFtLNzL2jGvyLpFfjSRsvHBneu8RjD0FnNZ%2BoBf7tkgXfVDf4%2BL4lrZ3OpUlaTbjzbNyJTJIiPwIzwXKGKWS1j0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbbbd61c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinsmonkey.com//tutorial.webm

172.67.193.151

206 Partial Content

733 kB

URL GET HTTP/3
skinsmonkey.com//tutorial.webm
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
WebM
Size
733 kB (733199 bytes)
Hash
3da4731e2e8cf0ec2efa97ed01cc42ca
17f676dd1ed5ebab9704d7310843c1ec7e62aa7f
687f28c125a6573c73aba4f08615b75f4f5a67d1c9239d9da132b3bd0d074913

HTTP Headers

GET //tutorial.webm HTTP/1.1
Host: skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: video/webm
content-length: 733199
cache-control: public, max-age=2678400
last-modified: Tue, 12 Jul 2022 12:31:00 GMT
etag: W/"b300f-181f2642d6e"
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
cf-cache-status: EXPIRED
content-range: bytes 0-733198/733199
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mY%2F6d0VN0GR%2FHfldNJ0IIUemZFfGZFWq5er4rK8IHGecBlPb%2Fg5mR%2BF3fIzzHmyFMPueBS5P5ifo81c6KqpIBxM35YcBeGc%2FDGw1%2Bykmsdn58z%2B6ZOnkBWvZ0prbd6mkYn8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc6b807127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ms%2FF0IIBge8yIafo%2BBmc4U3Y%2BaXG7abhH8WHn6DmaRyDQJLixX7LYZOrr9qrWk8Rce6t%2BWtgznG4gQta2b2e0WtcrDCvKZZHTQ%2BAjF5%2B0%2Bt00YFRsiL6IEwp%2FJ4OU50%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cccdd031c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/2f4b00139bf543afd67a9a4184df15a756cb5d85d20b.css

104.21.58.214

200 OK

5.9 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/2f4b00139bf543afd67a9a4184df15a756cb5d85d20b.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
ASCII text, with very long lines (6580), with no line terminators
Size
5.9 kB (5922 bytes)
Hash
98c5ed1ed20928239d1e7b38f57e8167
1b8c676f45c40536498a562a33f54b130f07a06e
11a4a756ff117cd7af81c16bf10bcd4f8a97ec3bc16e14ab877734e3b6075b73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/2f4b00139bf543afd67a9a4184df15a756cb5d85d20b.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Fri, 15 Apr 2022 15:36:03 GMT
etag: W/"625990e3-1722"
x-country-code: SE
x-country-name: Sweden
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VYp5JYOpxeJ%2FEX%2B8SbAUsYO3b1vaR%2FDRSrSFDDpyp%2BJMcAIBnxhdfFmY6uLY%2FDjisWdKOfV98SWXhFIZLDPTKM2RVepkSGxhWzegh6lM3YxB8iMHMXSbPcLB8n%2B9xbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f591c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/0e03aff.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/0e03aff.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/0e03aff.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RpJbK4DeOu7d7AMzH9822FVshJq30qNhLfKMCwJWFt%2B7ZS1%2FeXq6%2Fm%2FpkRJoynforeUPqFaBu3MnWQprdwy8R7tfTOE97Q6PRJapRGbYx1SIugD9lWWcU8rv21O%2B0tU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7b8151c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/c9dd6bb.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/c9dd6bb.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/c9dd6bb.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i1HV3J2yW8%2FcqaEd5FTyfMIQ5B40XsP7EXyscLE2kcFiRyQnsPdRyjycMXwJq%2B5%2F7vkauUtdMbBOgX4i8bR6gJNWiEIGpPiA%2FtbOEaC%2B0KkNNkz8jyhPJFUALXfJ4Is%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc79ff41c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/050a8b5.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/050a8b5.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/050a8b5.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v4iR%2FJaYqyYtKEz1%2By5XZW63oV4aiGel0h1oHvSCSU8JgU3zGhG0CFMBuEIG1tmoa%2BMV9ICh%2B7JKoxeRxEHIOQKZjshepO1s8eUJsvLYOiLfZ5kMdF50mi%2FXlCLYHss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7affc1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

yt3.ggpht.com/ytc/AKedOLTitjtKQfECpTisAk4oef2u4WX1ozYq2JbBg1cy9Q=s176-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

14 kB

URL GET HTTP/2
yt3.ggpht.com/ytc/AKedOLTitjtKQfECpTisAk4oef2u4WX1ozYq2JbBg1cy9Q=s176-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F
ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 176x176, components 3
Size
14 kB (13552 bytes)
Hash
f411edf524fd76a2091c09a02dda34d7
71f97df549f1df753acd71b66d3ea70499e825fc
c934831f3ec2cb1d1357aa80da1026be45ce726f2e95101d5e532b416a4dac9f

HTTP Headers

GET /ytc/AKedOLTitjtKQfECpTisAk4oef2u4WX1ozYq2JbBg1cy9Q=s176-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 13552
x-xss-protection: 0
date: Thu, 18 Apr 2024 09:26:04 GMT
expires: Fri, 19 Apr 2024 09:26:04 GMT
cache-control: public, max-age=86400, no-transform
etag: "vff"
content-type: image/jpeg
vary: Origin
age: 15
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-regular.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-regular.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-regular.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mHpuo6GSXQyccNcwV4MeZR%2FZpVNNEVuIuy5NKolQkc5n3%2BhzYlz%2FXboHAeBZCAlaWNeU0QLGUGjsBrBoiEC2RozZbTkRm06I0x%2FZHVSnMqWwPhyZW6sJ7FCqz8WdrnI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc71f5a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-700.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-700.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-700.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjO%2FJ2wW0PmKOpjjXduKU72mmNKEyCw5CDeKV7KPALK9MFsqnjbvHSiGk%2BtjHXKbfuiyXGSTsLOydq0jgSqY1uDoNDOWFOFPMQiKnD1%2B4rx26r%2F2kG9cIL7S8MhGqJA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc71f621c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/img/logo-mini.96678c5.svg

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/img/logo-mini.96678c5.svg
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/img/logo-mini.96678c5.svg HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y%2B%2Fd4C2HNPyKn3jm1DlMaVTCUiVgwsy2RCG4orXxbafUmG8HkIZ3NRuyeTA4Vws6mGCgL5B8UnjntW6%2FtMPyPAar7%2FfxZLt8BSGvKvxGdwsn2QvGulilcvCBUfI3DMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cca8ac81c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/a671b28bbfbab15df39a946796213b592a1b5c16373f/20c456e3dc15a66223ba84959a9304b8847c110c7e9a.js

104.21.58.214

200 OK

104 kB

URL GET HTTP/3
skinboxs.com/a671b28bbfbab15df39a946796213b592a1b5c16373f/20c456e3dc15a66223ba84959a9304b8847c110c7e9a.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type

Size
104 kB (104462 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /a671b28bbfbab15df39a946796213b592a1b5c16373f/20c456e3dc15a66223ba84959a9304b8847c110c7e9a.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: application/javascript
last-modified: Thu, 08 Jun 2023 16:13:01 GMT
etag: W/"6481fe0d-1980e"
x-country-code: NO
x-country-name: Norway
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MgLd2i1Lcqc%2Fhs%2F35oVqnXh9rJABcHVjDdNNdV1FCSaazApeUItrv00viAPjF069ePPPoGFiij7b34UnUdWGSEdKiMFjGBG%2BdH1YK7y%2BiRxII8UANz%2FEvyaGxpOpfmo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7b81c1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/43f66bc.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/43f66bc.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/43f66bc.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6mX7QYdRNpb8q4YSFYVPFn1qKKQ7N42FC6xV2qyFmq58k%2BLnWCIA77nU4h2GmY7OQ3nRBEYYV2ehqXlAFWTOjWQOSAkprK8Ai9fm3BFbcsPrl1Tbd3gHRDGJbPcNZBg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbec0b1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-300.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-300.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-300.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FhHv%2FHvsVufebIT2P0Xa2GqnnlpxChPzQ8ktU0mTdj5iJCo8gb%2Bp5ruj9Q7tldhckCwZ6kCV0nB6lr3JGiDit1oEg6im9Gkiqo1o04jjU40EiiV98C6uKCzYhzfOxkE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc6c891c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-600.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=anlPLjDiOEFqWnwn3v8bIsj4Rb0ICEpdduXyQj43gcCw3xVLcv3p5TfmXorzbDaFkzh0L6PBPSWQwq2W37euyhv7lSrLfibONLkLsb6RogVNWp5e2yff94qRI3%2B%2BKx0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccd2d5f1c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/9406d40.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/9406d40.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/9406d40.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G9ZRB5K8rLFHHsyQjw5DOgrvdC%2BvcV7We%2Be2zO2csaW7A22cKuwOWj%2BekGWhWJbleOptiXkSPT7lWnLjWmQcWt8fdCXbbN%2BXsstlseic7AeRFD4xQuvPNwDR3XTN5%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbfc0f1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-500.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-500.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-500.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K2EmUwEcZRpC%2B%2FWCGNKY6bg2S1blUzXVQAsbFJ%2Fkp17gAACWEVSHEexeUfqF70%2FyVPsRby2YJ9eGrvep1EUH%2BI7SmbrW6jyPtfTvT7N3vP1Ihv56Mo1juRDVChIeR9k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc71f611c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/49e1425.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/49e1425.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/49e1425.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s%2F%2FwWDKR%2BbS150dFKjTeXzMI%2FBc%2BGK1YVKu4s3JgrecmxhJ9sfxJPz8jj7jqJnqucOXznvUpgZ63SBdFHd2B%2Fe311TekDBCM5tMsaEeIJXo%2FaE%2BHbJRjV4ZNfi9RXLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7b81a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/74198b93a79b5d0e8039c965ff0a7e15e65c10b59718.css

104.21.58.214

200 OK

21 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/74198b93a79b5d0e8039c965ff0a7e15e65c10b59718.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
assembler source, ASCII text, with very long lines (1679), with CRLF line terminators
Size
21 kB (20749 bytes)
Hash
76b1bdbafa76a16eb077711e0852240f
4eeaffc1d6645d958efdf93b127bd345134bdee0
e72bfd5b2451298de330b65ffbf950c8f830c5d373435f26fce733e1264bef5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/74198b93a79b5d0e8039c965ff0a7e15e65c10b59718.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Sat, 04 Jun 2022 16:46:02 GMT
etag: W/"629b8c4a-510d"
x-country-code: RU
x-country-name: Russia
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5%2FX8zhaIr%2Fk1vRLcTDUL3BAv0pLl96qLJVwb1o5F0nmxYjkbkJijSgjnjrMeAN9r4q650pFosOw1eA3Cwdgk5c4zuPdY8q3mj5wSjlWqkJXXI8rXjcOn503V9xuhl1E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f4e1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-300.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-300.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-300.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PrSc%2BHyEr8GzDA5OAB8M95o7rJ1v9GnmhOb99tn%2BVhYjTD1XgfnzdFJPptLGdFzieZZR%2BqU8D53UrAJ3FIkoeH8BHi5p%2BhPPd%2F0knkNNyto%2BgJgnILTdQ3uOHaCBvBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc71f5e1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-700.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7eqbMt4Sab%2FGxFn7D%2FgtmWhaZLlxwnL5z7gktCqkAEU5dZz%2FgIcHvbUmmNVNdFtITm3ddzFAs4Il%2B9pJF%2BhBJ8hxuN77zFo3wcIRZwVSwam4Uo2BHXQKY49a50IYgpI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccd2d541c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/ccf4caa.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/ccf4caa.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ccf4caa.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D0Q3l00LOOTEGX%2FtOuLRNV9HnIbZlHkQNNFuAZyuGSJ7q3LHJv9PIRO2FPn9sCEoMoIusE%2Fop2lPe2yxxXm0qvope0m5NnjO6ZLqm7T3k7pyBz8NAkbcneG6OkMM7fo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbdc021c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/49e1425.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/49e1425.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/49e1425.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AytoHkEwEIpmbALmQDqE8G%2FmHaF79dW7B%2BQbc3ChIOwxAONFuNusyzroPlymPCYtP8BuIdcM%2FRzqlGazZqhxAHzIwiircvIaZnmxLaIXUH40ZCCQllGfx%2BxT8fox0G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbfc111c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/8543168.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/8543168.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/8543168.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trZj4ELNmHquTz76hbdLXaQ1SBoWhk6rpdrnaNMeA9w5%2FrGXi%2FGa5%2F4Xsvpue62hfDVD6VqCxEaz6Mdt2TBVQiavgCS3YVu%2BVz2XH381TYc7uwsq6XicqhfErM%2BkrFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc78fce1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/ccf4caa.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/ccf4caa.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/ccf4caa.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G9M74h6y5SjMUTrk66r6caF71%2FtVPCPq%2B%2BPcH97LXGvlZ0Ts10l%2F%2F%2BfGXcxP21ZaN5ZkBkrNk5NQQbM4%2BS3Rx%2BFAK4lNjsz2VIk7%2Fajs8ueKC4TmelFaglHgqNw2vUc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc7a8011c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-700.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-700.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-700.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KMrbdzKdZBnvW9bs7TEiPC6VB6yT%2Fjs2sYhDiRg%2FzjdL%2Br1Cg5NjDYf2RsAXX6QR5PWvlmAKx%2B%2FJjZqMn7CFJArk%2F5mLBNCSwF%2FO0a8aDgXU%2BAoMK%2FTkzgxSqF3CEOQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc7c931c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-300.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uxSu78W4aTkBw3lIGsjaP8tqu%2FZO7I0vondQJlGt30EEQrlsegFm9pwgPdlThbEOmYKpzdZwSLCrwK9oEjSIKJoaXoTFbUANfraQLHVh0hW%2FBrDyoPboiKJ8PqJYmms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccd2d581c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/r/GRIB?clckid=42a7042f

104.21.58.214

200 OK

263 kB

URL User Request GET HTTP/2
skinboxs.com/r/GRIB?clckid=42a7042f
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type

Size
263 kB (262890 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /r/GRIB?clckid=42a7042f HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
last-modified: Thu, 18 Apr 2024 09:04:23 GMT
x-country-code: NO
x-country-name: Norway
access-control-allow-headers: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N1OlPOz0dk1lkqA8WatZwbkN%2FzT2JJ7OshKGfexbj%2FSoYQSt7EBEn9oU3mHtl5N6lQ34EwpARl1SFVqM9OF4QuGMz4jTwx7Nh6T1yZXYQW79RRZKwxHSPZkeLZPX9B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639cc48a79b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Inter:wght@600&display=swap&text=0123456789

142.250.74.106

200 OK

265 B

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@600&display=swap&text=0123456789
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E
ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT

File type
ASCII text, with no line terminators
Size
265 B (265 bytes)
Hash
bdf0a833f47459122ab9a91e035c7799
ee79d4b794f258b992956b7e70279154e261cbe8
88217439d599642acdb1f31e1e19763e1452a1206ce0f18d329632e74f32c713

HTTP Headers

GET /css2?family=Inter:wght@600&display=swap&text=0123456789 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://skinboxs.com/
Origin: https://skinboxs.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 09:26:17 GMT
date: Thu, 18 Apr 2024 09:26:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

skinboxs.com/_nuxt/9b7278c.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/9b7278c.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/9b7278c.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MP7FRbp7sVZgwkYquBAd7nZVXRrlPHo2EBzzpsohsFlOy72%2BZw7mb81ve2wSMjN%2FI1ayo1R2JMb%2BjWuj2w%2B8gGY8zL3Q9FxdNmBpkpJhwEDRmMxMez9qtUmIiIXnNO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc79fef1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/b368e8d.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/b368e8d.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/b368e8d.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yPDXBzeap4x3W2Zd2rCf%2BuV25mYuI6RCcXbnQJlotxl5%2B9offTjPWm7SkuwGSjhSJRd0SDwF7ZUKQQYOgTvp3eijWGtTUYbX%2FpXCcb6gyJGlLcUUw6E9nL5cltIm4sA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbbbdb1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/space-grotesk-v12-latin-ext_latin-500.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/space-grotesk-v12-latin-ext_latin-500.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/space-grotesk-v12-latin-ext_latin-500.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xo2W1ysmja3w%2FRUQ%2FF2ELOVICW%2F%2FEJDo6QIGVXShkg7Se3A8kjCZrN7bEFlI5319uG5Ds1Bq8ALOI4mPsDgONWKCw6FU0aVmTJtOXAPcy4e3YOAtt7A5NyUNgXPs4PM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc6c8a1c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff2

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff2
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff2 HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=100ddMfTfeYPkErYD%2BekbQ5tAuopofHENsLSbBqOxUDbaAqYDB81k6khjJcxmuI4oz6rTUmwEG388TE4m5NTvJ3tJczFbD9AufRgReK4DIVAQ4JmtNZIMf3Cf4YXjJg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccc8ca41c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /font/source-sans-pro-v21-latin_cyrillic-ext_cyrillic-regular.woff HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d9RNLJDST6mjh9wZcnG0Zfhnbo2AYW%2FsQeqw9sRQlQWx7Ar69%2FEv2NzzsusQdjlla4XqdlXBh%2FL%2B6v%2BxTRkeftGqBglUIDF8vo9r2YjH2EigF8ciraneX9T42VxhuRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cccfd231c16-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/17b8d182f708f66a33d2e2e134804f986ade1cdcdbce.css

104.21.58.214

200 OK

12 kB

URL GET HTTP/3
skinboxs.com/c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/17b8d182f708f66a33d2e2e134804f986ade1cdcdbce.css
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
ASCII text, with CRLF line terminators
Size
12 kB (11972 bytes)
Hash
dacb80dabfaebd8b5c696ca29bddd59e
d10bdeb6162bb0591b13799eac711d320958d1c5
6a13129c52b4af929efe3e1fddeceb315a4f8038ad01c469f8d45d5c19483ac9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /c4793b4d08e10009125d6d64d015c0fb9e92ccf03f95/17b8d182f708f66a33d2e2e134804f986ade1cdcdbce.css HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/css
last-modified: Mon, 12 Jun 2023 15:47:18 GMT
etag: W/"64873e06-2ec4"
x-country-code: SE
x-country-name: Sweden
access-control-allow-headers: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vEH2mgtYk0NyR7bU2x7NW8iqaViD02%2FeWrIUj0TuR38Irq7246cZH0pAG%2BKPIB9pAY3kcrllNBZ4a%2Fgfp%2BlqQat9Atx09IyzbhcxhalUq8HphJLb8RMsct5I1sDLx0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc70f551c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/c9dd6bb.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/c9dd6bb.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/c9dd6bb.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iFrdfBagxfc0eYpZ2yZIB0xmS0t7En7vhk1prme9XMTeCwA7Y23ikjJnL90OrIKUSAc0lXkosglkakW%2BzwcOku0xKYNa8aqKd6U0ILz4Oinx%2B5cr8ev5na1aZYH%2F1lg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbcbf01c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/9b7278c.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/9b7278c.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/9b7278c.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZjU4jKj9AnQrpGhIt41x5%2BlfgYGsGD5wjq1v4zNEUPdLMkiirhW7CtikKff9fH732CmrTV9irhUXCzJ%2FOjuduDgi8V3OFCxBTk8gxje7HICLWY%2BoTivRbO%2F5%2F046tLo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639ccbcbe11c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszFJTwW09izh4-HluPxDKjBl2hU18l4jeHVu4qt2FDsqERoMW7zIIOVIwc2YljQqQW2wenqhZ_vv8-Yn3BruiIh5i3D30vgBg2yDLA

172.67.193.151

200 OK

7.9 kB

URL GET HTTP/3
cdn.skinsmonkey.com/economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszFJTwW09izh4-HluPxDKjBl2hU18l4jeHVu4qt2FDsqERoMW7zIIOVIwc2YljQqQW2wenqhZ_vv8-Yn3BruiIh5i3D30vgBg2yDLA
IP
172.67.193.151:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinsmonkey.com
Fingerprint4E:DE:0E:85:F9:DB:F9:5A:A5:0D:C0:DF:CF:A4:A2:66:AC:A1:B0:7D
ValidityWed, 17 Apr 2024 10:30:12 GMT - Tue, 16 Jul 2024 10:30:11 GMT

File type
RIFF (little-endian) data, Web/P image
Size
7.9 kB (7892 bytes)
Hash
55d79d19b26a145fe0c18a09c85886dc
d3647474e56897e739ec313c5862afc58609d35a
67fe7f22e5f2814f7c46ae46ad67aad9baad02447bf71265bd5a00e36d42e879

HTTP Headers

GET /economy/image/-9a81dlWLwJ2UUGcVs_nsVtzdOEdtWwKGZZLQHTxDZ7I56KU0Zwwo4NUX4oFJZEHLbXH5ApeO4YmlhxYQknCRvCo04DEVlxkKgpou-6kejhjxszFJTwW09izh4-HluPxDKjBl2hU18l4jeHVu4qt2FDsqERoMW7zIIOVIwc2YljQqQW2wenqhZ_vv8-Yn3BruiIh5i3D30vgBg2yDLA HTTP/1.1
Host: cdn.skinsmonkey.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:26:18 GMT
content-type: image/webp
content-length: 7892
last-modified: Wed, 07 Feb 2024 04:37:23 GMT
x-rgw-object-type: Normal
etag: "55d79d19b26a145fe0c18a09c85886dc"
x-amz-request-id: tx00000dc4ea8976f05b4c2-0065c31cac-bc9d9e0d-fra1b
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-do-cdn-uuid: e472c9dc-8945-45c9-9914-cb19252677a9
cache-control: max-age=2678400
x-envoy-upstream-healthchecked-cluster: 
cf-cache-status: HIT
age: 787772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RfLx7NxQ4w%2F%2Fw3OYFdy6SSliykWK%2FNQVq5tP%2BgPAuA1fV6pZX1H32AK8XN5xclJ0aRVVYl9ycUalX2H4jh%2B6hdDsSf2JvwnD8jh1%2FzH%2FSRPRUtf9KEgcHOaQ8Zwl8FHpVxDrmJn5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87639ccc8bab7127-OSL
alt-svc: h3=":443"; ma=86400

skinboxs.com/favicon.ico

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/favicon.ico
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:19 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6LTnkOT17z9Db3TDZAZKYnKm3IHaZuty2hS%2B7hiHZJ7rlkrPqJo785eWuTeTkzVzd9LpJzUYmbfyg8b13VCPLwcSdWJhtGCtCKExi5cpf2r5QkUyVAGe%2F%2Fp5F8K%2FnsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cd1aa2a1c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

skinboxs.com/_nuxt/194d5c8.js

104.21.58.214

404 Not Found

162 B

URL GET HTTP/3
skinboxs.com/_nuxt/194d5c8.js
IP
104.21.58.214:443
ASN
#13335 CLOUDFLARENET

Requested by
https://skinboxs.com/r/GRIB?clckid=42a7042f
Certificate
IssuerGoogle Trust Services LLC
Subjectskinboxs.com
Fingerprint0B:98:6A:F8:48:FE:CB:64:4D:1D:40:4E:E4:3C:52:14:8C:63:42:0C
ValidityTue, 02 Apr 2024 03:09:07 GMT - Mon, 01 Jul 2024 03:09:06 GMT

File type
HTML document, ASCII text, with no line terminators
Size
162 B (162 bytes)
Hash
2b838659c6ea3bbc1241837a1b44840b
296c38b80b7304bd14e5b6c934fca1c32d687917
a9ac287e62f49a385bf05052b658eea54ad6811b368db66f58b581a61435c9ff

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_nuxt/194d5c8.js HTTP/1.1
Host: skinboxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://skinboxs.com/r/GRIB?clckid=42a7042f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Thu, 18 Apr 2024 09:26:17 GMT
content-type: text/html
x-country-code: NO
x-country-name: Norway
cache-control: max-age=14400
cf-cache-status: HIT
age: 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=svKW8w4yHByPaac1rNROuKQC0YL1o3wlDaDi%2FEOqjt%2Bam2G%2FYgLRHjGZ%2FWq%2Big0hYjfhRv1%2FqYQ4vnZY28Rs4IvwPJ3tlr2AEoaiSTWlbjvd0FdyqqYraZzhVEMdHa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87639cc79fe81c16-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (76)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2

IP

ASN

Requested by

Certificate