Report - datanodes.to/h10wazter9mf/Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--

Report Overview

Visited public
2025-05-28 23:04:24
Tags
URL
datanodes.to/h10wazter9mf/Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar
Finishing URL
datanodes.to/download
IP / ASN
104.26.14.76
#13335 CLOUDFLARENET
Title
Download Far Cry Duology fitgirl repacks site part1 rar

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
datanodes.to	unknown	unknown	2022-08-16	2025-05-24	15 kB	628 kB	172.67.69.166
d1i4rchxg0yau7.cloudfront.net	unknown	2008-04-25	2025-05-19	2025-05-26	429 B	385 kB	54.230.245.198
ereissomeone.org	unknown	2025-04-22	2025-05-28	2025-05-28	2.0 kB	8.2 kB	54.240.174.118
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2025-05-28	1.9 kB	1.7 kB	216.239.32.36
ukankingwithea.com	unknown	2024-01-01	2024-09-05	2025-05-22	860 B	1.7 kB	104.21.32.1
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-05-28	3.2 kB	67 kB	142.250.74.35
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-05-28	433 B	388 kB	142.250.178.104
undefined	142677	unknown	2020-01-28	2025-05-22	968 B	0 B	0.0.0.0
fonts.googleapis.com	8877	2005-01-25	2012-05-23	2025-05-28	485 B	9.1 kB	142.250.74.10
www.gstatic.com	unknown	2008-02-11	2012-05-29	2025-05-28	2.4 kB	2.0 MB	142.250.74.99
d2eq4x4u2q3fwc.cloudfront.net	unknown	2008-04-25	2025-03-11	2025-05-22	455 B	385 kB	54.230.245.20
qn.ethnicspue.com	unknown	2025-03-31	2025-04-03	2025-05-22	414 B	1.1 kB	23.109.170.72
accounts.google.com	81	1997-09-15	2012-05-23	2025-05-28	3.7 kB	13 kB	142.250.147.84
www.google.com	7	1997-09-15	2015-05-10	2025-05-28	5.4 kB	119 kB	142.250.178.100
www.google.no	25607	2001-02-26	2012-06-26	2025-05-28	836 B	580 B	142.250.178.67
dasesiumworkhovdim.com	unknown	2025-04-22	2025-05-28	2025-05-28	1.7 kB	1.6 kB	104.21.18.69

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2025-05-28	medium	ethnicspue.com	Sinkholed
2025-05-28	medium	undefined	Sinkholed

ThreatFox

No alerts detected

JavaScript (34)

	URL	From	Size	First Seen	Last Seen
	about:blank	ScriptElement	236 B	2025-05-28	2025-05-28
Pretty URL about:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 362a25584db5128eb1f8e787061a7eef 427e44fa56bc468e6b582f41f7f3805f7d992432 a89c5b061b83db6d122889ee7889746ee81619e44b0f65eb5c2d7c255cf1e1b3 Loading...

	datanodes.to/download	Function	85 kB	2025-05-28	2025-05-28
Pretty URL datanodes.to/download IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by Function Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 2655089a85da50211df43409b8c25696 9691a48480724d34c3a95085d1ac40c070152fb1 7759e0b6b8ba2063f020e07fee0e448dcc5fdb80b6440b144463ebf68cda9daf Loading...

	d1i4rchxg0yau7.cloudfront.net/FYzJoVGoAXQYyVRdbDGlbUgdQYl9UFBgmDwUPDDUeAlwHMA8QHBw7TAlBBzoaXmMmJSQkQFhjAxBLTiAQBw9YcgYCXA9pTAZcC2lbRVMMNldXFBwkBQgPAjoHAlgJIxgNU04hC15fBy4DD14JcVglB0ZkT1ECQCMDDVYHIxlGAFg6HkYAWGVaTQJNZyhGAF-gjAw0EXHFZIRdaZBJVBk1nKEYAWCYcRgEpZVlXHFh9T1ECDzEJCF1NZixRAllkWlICWXFYU1QBJg8FXRBxWCUDW2BEUxQdaVs	ScriptElement	931 B	2025-05-28	2025-05-28
Pretty URL d1i4rchxg0yau7.cloudfront.net/FYzJoVGoAXQYyVRdbDGlbUgdQYl9UFBgmDwUPDDUeAlwHMA8QHBw7TAlBBzoaXmMmJSQkQFhjAxBLTiAQBw9YcgYCXA9pTAZcC2lbRVMMNldXFBwkBQgPAjoHAlgJIxgNU04hC15fBy4DD14JcVglB0ZkT1ECQCMDDVYHIxlGAFg6HkYAWGVaTQJNZyhGAF-gjAw0EXHFZIRdaZBJVBk1nKEYAWCYcRgEpZVlXHFh9T1ECDzEJCF1NZixRAllkWlICWXFYU1QBJg8FXRBxWCUDW2BEUxQdaVs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 5c9ab06848111f18a336aed48a34e630 dc5af3164f33a0ad1942ee334feb953ac57761dc 747229b969f23f253b0903faec855e9fe1e5b4f9d02b6b23594dd3f864c8a409 Loading...

	datanodes.to/download	ScriptElement	201 B	2024-01-28	2025-06-22
Pretty URL datanodes.to/download IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-28 23:21 Last Seen2025-06-22 22:18 Times Seen4978 Hash 91d8cca2b82a7c5662115578bd3f5d2c 8d5b2b8321f95d3d8dbd0564329c0a766caa94a7 ffc523a7eb7f38b0e10cf099f40e1c0537c1c75210f0491ddac4e2496eb9d8b5 Loading...

	datanodes.to/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	8.5 kB	2025-05-28	2025-05-28
Pretty URL datanodes.to/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:33 Times Seen2 Hash 0e1fad59ba534a302355f1a845014fa6 48d56c7ea6cb00adc4f9f928b7709f0adf57c03e dbff94b81735ba9dda3aeac3279d9c1cc50e398c34516d9d326717afbefa9533 Loading...

	www.googletagmanager.com/gtag/js?id=G-7DP7NV2LKF	ScriptElement	388 kB	2025-05-28	2025-05-28
Pretty URL www.googletagmanager.com/gtag/js?id=G-7DP7NV2LKF IP 142.250.178.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 8d3881a04293f8e9b7ae4a55d3054a2e b0c3892146c75f6e73c6868be4b4118a507d9c7d 35449ee8624efa736313380ccdfaabe70503c30b32dfa1a714b0ca767baadb65 Loading...

	www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js	ScriptElement	654 kB	2025-05-21	2025-06-19
Pretty URL www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-21 21:21 Last Seen2025-06-19 17:07 Times Seen1563 Hash 962ff1936244194670add930242b7dec 1014eb79a4105e3eb3e7ffba63b8dd7a584dd9bf dcad914962ca2218e1178a3f93abcbeaa168406321a8e1744def00d8ebd4b3ac Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	Eval	62 B	2025-05-16	2025-06-02
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-16 07:56 Last Seen2025-06-02 06:52 Times Seen780 Hash 055623b3e64993bb24c6a8a6118a0ad3 17309d0849304687a6734955a1a1b66e40ed2887 20d81a06760b9cd0c7e8d85f6142ef15766ee38d5bd01b53de75679c72498415 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	Eval	22 B	2025-05-16	2025-06-02
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-16 07:56 Last Seen2025-06-02 06:52 Times Seen780 Hash 97722b2cd4719136e29bd76f5494f94f ebde91bda2da80c6b722e74e2bde48991aad05eb 2b0250aefefafa88573d9e8af2a43f02712bda9067e46ad76d706ae7183cb4a4 Loading...

	datanodes.to/download	ScriptElement	921 B	2025-05-28	2025-05-28
Pretty URL datanodes.to/download IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 4295ee33c048e9956c460fbffd84c5a2 e8d3df5092c643d3031e5b596a32457ef7720c28 d6078f3bf1ef4b855ecf5316dd9fcdb78493b69a17baf40a29a3c9cf8f449be6 Loading...

	datanodes.to/download	ScriptElement	65 kB	2025-03-11	2025-06-01
Pretty URL datanodes.to/download IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-03-11 12:33 Last Seen2025-06-01 17:42 Times Seen1576 Hash cf5d3caafa215d3955b337fc76d05c7a 0fc2c762dbefde4f3f5475f08055de96d0c1b919 0e9415315cffcdb8aff889bd92d91caa9c147cfe3b59e5e2595b33ac1f685926 Loading...

	datanodes.to/theme_2023/dist/assets/LoadingIcon-59fcef50.js	ImportedModule	667 B	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/LoadingIcon-59fcef50.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2168 Hash 3bf8f7142f945fb29a79ec7ddde813ab 510746b341aec2afe4c3f6e4bdc58f3de28a6a7d d9d4e80bef2de510da666b488f7d8c4faf40604a500ac13bb5f165a09763e15e Loading...

	ereissomeone.org/UmlZcGozCzodVTNUO1YfIAVkVVgUTGs2DmMAbQIJOhE+QBMzHG5eCT4GLBQMIAY3BEQ8DC1VWBQvAAogPT8eHysKOAAJPAANOzQtPgsMFw4DMDVJPxQrPh0uJTwJNC4HDBgcHRokGEg7GisuRz4TBRsyED0IAR0nPyMKIQEDLzEaKyorFSQDEzgbB1MLCj4pKQooYAA+EzM6M1g+CwsmJx8nNRQyFCsuGygDDgkxAD0hGBwNGCAhFyQHWW0YKWNcPzITZi0dQV4YCg8XBhBZAxs+YywaISkfLR0mMxogIRwtEy8+RiI5MBgnLQQIDSEgHDMgGC0TL3QXABMeaTUyGi8DOTg2CAMyIAQrMkEEGSwAMT0RMDoiDRcZAyYGCiEfGFMGWBwzLigsEzMsYycDGRIAKDUcAQUFEDM9Ci8AJVsDKxMXUhQxCzISBSoMND1gKxwlEgMNOCYZdAMqHwQiVAg+GxwuK0BdOxog	ScriptElement	3.0 kB	2025-05-28	2025-05-28
Pretty URL ereissomeone.org/UmlZcGozCzodVTNUO1YfIAVkVVgUTGs2DmMAbQIJOhE+QBMzHG5eCT4GLBQMIAY3BEQ8DC1VWBQvAAogPT8eHysKOAAJPAANOzQtPgsMFw4DMDVJPxQrPh0uJTwJNC4HDBgcHRokGEg7GisuRz4TBRsyED0IAR0nPyMKIQEDLzEaKyorFSQDEzgbB1MLCj4pKQooYAA+EzM6M1g+CwsmJx8nNRQyFCsuGygDDgkxAD0hGBwNGCAhFyQHWW0YKWNcPzITZi0dQV4YCg8XBhBZAxs+YywaISkfLR0mMxogIRwtEy8+RiI5MBgnLQQIDSEgHDMgGC0TL3QXABMeaTUyGi8DOTg2CAMyIAQrMkEEGSwAMT0RMDoiDRcZAyYGCiEfGFMGWBwzLigsEzMsYycDGRIAKDUcAQUFEDM9Ci8AJVsDKxMXUhQxCzISBSoMND1gKxwlEgMNOCYZdAMqHwQiVAg+GxwuK0BdOxog IP 54.240.174.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash f50a446d1336423b97063d60c87d4b2b 011968b6a6554b2536b35d49983664603fb8d378 0af1809bbd58877d490b5e88ff1f525d1447c32737109aaa536c3622741df372 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	ScriptElement	69 B	2023-03-07	2025-06-24
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-24 05:03 Times Seen124703 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js	ScriptElement	654 kB	2025-05-21	2025-06-19
Pretty URL www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-21 21:21 Last Seen2025-06-19 17:07 Times Seen1563 Hash 962ff1936244194670add930242b7dec 1014eb79a4105e3eb3e7ffba63b8dd7a584dd9bf dcad914962ca2218e1178a3f93abcbeaa168406321a8e1744def00d8ebd4b3ac Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	Eval	22 B	2025-05-16	2025-06-02
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-16 07:56 Last Seen2025-06-02 06:52 Times Seen780 Hash 0c5cacc30ec62d259ba28aeb6042f6c3 5c53b1d0178509a6b0c366eb8897cd8753088896 abcbd00c73435f8379cfb6bfaa821857fb5d7faa9d18efdf6791b322228e5ffb Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	Eval	23 kB	2025-05-28	2025-05-28
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash c682f3ed0d04fe2533716ae697c10c3f ba80398452e019df96dc334e3475fe7b6847f553 b0ed3a6b1ae988b24b526aa7c855b39d6af6dc573d86a60921f9f4b950cd3a6d Loading...

	datanodes.to/theme_2023/dist/assets/Tooltip-298cb247.js	ImportedModule	17 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/Tooltip-298cb247.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2167 Hash e9abb5c958cc124ca4108f522fececdb cb0430b6ad9229cf2179a201e15360e496f24491 8125fdfeff86def1e8543526af797cbb7eb4bd87a161da3f18968b3fd8a83e53 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	Eval	19 kB	2025-05-16	2025-06-02
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by eval Embedded in HTML false Observations First Seen2025-05-16 07:56 Last Seen2025-06-02 06:52 Times Seen780 Hash 7bbe9c2275a48487caa3ed9d664942a8 ad8ae548ff3253acb98e2107b13cf3e3d5b5f706 1fdd60c9ef802dcd1afea071cd7ac7c9c480f1b0166a25c7aee1ed8725c81b3f Loading...

	datanodes.to/theme_2023/dist/assets/index-dd92db6d.js	ImportedModule	6.4 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/index-dd92db6d.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2179 Hash 6ce1ad7fa6b6028bd38010eb93880db5 dbf9628e8a116865693cbd5cce1c41fcaac94beb ba8edc5521e36bb2e21448a0f062d3727e459e9165cb9aabbd48bb1b6befd6c7 Loading...

	datanodes.to/theme_2023/dist/assets/_plugin-vue_export-helper-c27b6911.js	ImportedModule	91 B	2023-03-08	2025-06-24
Pretty URL datanodes.to/theme_2023/dist/assets/_plugin-vue_export-helper-c27b6911.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-03-08 16:39 Last Seen2025-06-24 03:47 Times Seen5734 Hash 25e3a5dcaf00fb2b1ba0c8ecea6d2560 7850b3fd4aeb69387bdb5a60025d15c41351d5eb cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa Loading...

	datanodes.to/theme_2023/dist/assets/open-closed-f13f7375.js	ImportedModule	3.5 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/open-closed-f13f7375.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2179 Hash 7b96d51da905a5c0edc478d43d79c7c8 17dd5bebfca4ffd4e42f72ef4ab9434a00d3e70f d6d247a9877ed90663542f79369d23970577ba3910d707664fc06492d3878452 Loading...

	qn.ethnicspue.com/1clkn/31269	ScriptElement	6 B	2023-03-07	2025-06-24
Pretty URL qn.ethnicspue.com/1clkn/31269 IP 23.109.170.72 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03 Last Seen2025-06-24 00:30 Times Seen13309 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	datanodes.to/theme_2023/dist/assets/_commonjsHelpers-d4b30cbb.js	ImportedModule	571 B	2023-12-09	2025-06-22
Pretty URL datanodes.to/theme_2023/dist/assets/_commonjsHelpers-d4b30cbb.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2023-12-09 19:26 Last Seen2025-06-22 22:18 Times Seen4018 Hash 438e021bb3322f23fb81092ef78dd510 51a31923f243d4af84ef0f6e710bdf202e52c6c9 85533b0eb874013bd2468499e014675813269c8983bf7e0abc366d1715020769 Loading...

	ereissomeone.org/T3d2ekouFRUXdS5KFFw/PRtLX3gJUkQ8Ln4eQggpJw8RSjMuAkFUKSMYAx4sPRgYDmQhEgJfeAkkOxAmNiUbMBgZHwEdEhotJzwkOyM3DTIEFDAjCAcAP0oIfiYzPCMsICNLKSs+ER4ICQAvChgJHz0yGSgkMksADjEwDnkWDRE1CwoTEDILBS8wP3oGPhpCCQcPQhQOCSIzLAkCOiMrGAsuNzQdGEdPAxgKLTwyGX4RITwpKT0BEh4bEDcVCzclOz95PCcuLwctPBFPHgcyNzscNwA8LHkdJDERfi08NyAuGxAwEB8OPS44JwEmNx0iDBYwMxIMHVs4IBo2PDUNNh8jOCI3NTQ/KQ40Jwo9GR8VMQcIOSc7ITwyL0sMNTQzPDMbNj8rHHwlJSwcOCU6K3oXNAwoehoQOzAbIRMlOzI3NhIdGC0kDhktCyIZGRsONSI7G34UEhEYBzUzN2wlBBkUOnIcRChzCi08Mig6ERg+fw	ScriptElement	3.0 kB	2025-05-28	2025-05-28
Pretty URL ereissomeone.org/T3d2ekouFRUXdS5KFFw/PRtLX3gJUkQ8Ln4eQggpJw8RSjMuAkFUKSMYAx4sPRgYDmQhEgJfeAkkOxAmNiUbMBgZHwEdEhotJzwkOyM3DTIEFDAjCAcAP0oIfiYzPCMsICNLKSs+ER4ICQAvChgJHz0yGSgkMksADjEwDnkWDRE1CwoTEDILBS8wP3oGPhpCCQcPQhQOCSIzLAkCOiMrGAsuNzQdGEdPAxgKLTwyGX4RITwpKT0BEh4bEDcVCzclOz95PCcuLwctPBFPHgcyNzscNwA8LHkdJDERfi08NyAuGxAwEB8OPS44JwEmNx0iDBYwMxIMHVs4IBo2PDUNNh8jOCI3NTQ/KQ40Jwo9GR8VMQcIOSc7ITwyL0sMNTQzPDMbNj8rHHwlJSwcOCU6K3oXNAwoehoQOzAbIRMlOzI3NhIdGC0kDhktCyIZGRsONSI7G34UEhEYBzUzN2wlBBkUOnIcRChzCi08Mig6ERg+fw IP 54.240.174.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 1d2f23e69890216e45340daa249afc37 37eff88ca9117407dc1fd20f4c8468ac232f1797 e1a143f920e0fa3b9776edc34f57de7b7fe8dcc231d442b1c51443350e8ef6e1 Loading...

	d1i4rchxg0yau7.cloudfront.net/SMjlyRmJRVhwgXUZQFntTAwxKcFYBHwI0B1QEFicWU1cdIgdBFwYpRFhKHSgSD1JAFFt3YzgOAEdfHAJXFE0IIl8CHx4nDFUEVCMMUQRDYANWW09yREZJHS1fWFcfJwhTTgAoAxRME3sPXUMbKg5THEAAVxwJV3RSGk4bKAZdTgFjUAJXBmNQAghCaFIXCj-BjUAJOGyhUBhxBBEcACQpwVhcKMGNQAksEY1FzCEFyTAIQV3RSVVwRLQ0XCzR0UgMJQndSAxxAdgRbSxcgDUocQABTAQ1cdkRHBEM	ScriptElement	850 B	2025-05-28	2025-05-28
Pretty URL d1i4rchxg0yau7.cloudfront.net/SMjlyRmJRVhwgXUZQFntTAwxKcFYBHwI0B1QEFicWU1cdIgdBFwYpRFhKHSgSD1JAFFt3YzgOAEdfHAJXFE0IIl8CHx4nDFUEVCMMUQRDYANWW09yREZJHS1fWFcfJwhTTgAoAxRME3sPXUMbKg5THEAAVxwJV3RSGk4bKAZdTgFjUAJXBmNQAghCaFIXCj-BjUAJOGyhUBhxBBEcACQpwVhcKMGNQAksEY1FzCEFyTAIQV3RSVVwRLQ0XCzR0UgMJQndSAxxAdgRbSxcgDUocQABTAQ1cdkRHBEM IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 51ff91ea24cc9ee99ea98a8233189b72 f52db275507d8b22f8eb6c0b0a8d3ca8a53cb8c1 f7e99599b3ef1e79e0a75f9d672713d9f91e024bbab5bedb965f8f9e95790e6e Loading...

	www.google.com/recaptcha/api.js?render=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs	ScriptElement	1.1 kB	2025-05-22	2025-05-29
Pretty URL www.google.com/recaptcha/api.js?render=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs IP 142.250.178.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-22 15:21 Last Seen2025-05-29 14:30 Times Seen137 Hash 0f4541d89c0a2f40fb5b465e286a39a9 84197037bba9df6e53b7689cb9bd5397f575c00c 13298d210c4b5bf8a3b3cec104a612dc5a78a5a85d05e2bdf32265f014587b65 Loading...

	datanodes.to/theme_2023/dist/assets/app-80bcdb82.js	ScriptElement	183 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/app-80bcdb82.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2194 Hash 68168e1fcc3f0b89637287285c331e9b 2252e15424087258ef80a353512b685215e68335 df548d433ea12395b99a860e96667848bea70b8eeae6348959d3a1cee6fa57c4 Loading...

	datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js	ScriptElement	1.1 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2169 Hash 4838938921365808702372a0947114c2 8aa1c4e51dacf60f069c52a80039fbcc6dc50e70 555e00c6b3d5c3ff1b6e855201b7216e68c5783adaa25dafc2ad68d3ee75677c Loading...

	datanodes.to/theme_2023/dist/assets/Util-ba300788.js	ImportedModule	2.9 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/Util-ba300788.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2167 Hash 5813b7c66e53d58affc0cbed8e8de4d8 178cc0740966c30105212ab634ff274db3cca2f7 64e9941143b72dce37a3a356e68f051bbf5aaa12c3ac0b2f3972b471083d7477 Loading...

	datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js	ScriptElement	79 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2168 Hash 0141e4901d84ce0029f3b424362c7af2 571f2a8995a2ebf2d68f3fafdfd5d316ede31ff0 a30a91209bf26dabfad3b83901707969815ac9908e11b12dc52b7a80b8f4ee80 Loading...

	d1i4rchxg0yau7.cloudfront.net/?hcrid=1158643	ScriptElement	384 kB	2025-05-28	2025-05-28
Pretty URL d1i4rchxg0yau7.cloudfront.net/?hcrid=1158643 IP 54.230.245.198 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash c96ccd12b9982b4f6023347f53244294 0af8a853e7badebfe2ae1763d87e565f8f0949e3 40193f585cc6c27f94a7a447df93d81ac69a9c2c4681baceb227221ee9253d86 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db	ScriptElement	64 kB	2025-05-28	2025-05-28
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db IP 142.250.178.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2025-05-28 23:04 Last Seen2025-05-28 23:04 Times Seen1 Hash 0379b9cca6dd50ec97c7a2d985f848a3 05bf2cfdc9798e6b94922310180cef965715895c 98f388ec71ec402742c8d113bb256785dfaeb8d4359e3d45e24dd7fc99d8c659 Loading...

	datanodes.to/theme_2023/dist/assets/transition-a1567fd4.js	ImportedModule	28 kB	2025-02-09	2025-06-16
Pretty URL datanodes.to/theme_2023/dist/assets/transition-a1567fd4.js IP 172.67.69.166 ASN #13335 CLOUDFLARENET Introduced by importedModule Embedded in HTML false Observations First Seen2025-02-09 17:55 Last Seen2025-06-16 09:09 Times Seen2167 Hash 6b949827cd27578f8d96e716764745fd fc5d054a81cc11c95726bf55f11fc0c96ae0f58b 579bb21ed189cf13357365e55a2dc69ca1e3866ce7566362e163cfe86b3f3aee Loading...

HTTP Transactions (63)

URL IP Response Size

GET www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js

142.250.74.99

200 OK

654 kB

URL GET
www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
JavaScript source, ASCII text, with very long lines (534)
Size
654 kB (653660 bytes)
Hash
962ff1936244194670add930242b7dec
1014eb79a4105e3eb3e7ffba63b8dd7a584dd9bf
dcad914962ca2218e1178a3f93abcbeaa168406321a8e1744def00d8ebd4b3ac

HTTP Headers

GET /recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 277777
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 11:36:18 GMT
expires: Thu, 28 May 2026 11:36:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 May 2025 21:04:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41253
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

POST region1.analytics.google.com/g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=scroll&epn.percent_scrolled=90&tfd=7224

216.239.32.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=scroll&epn.percent_scrolled=90&tfd=7224
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintCD:0C:1B:2D:7B:57:E1:F7:53:C1:91:15:C4:3B:B8:35:6A:5D:21:4B
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_eu=AEAAAAQ&_s=2&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=scroll&epn.percent_scrolled=90&tfd=7224 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/3 204 No Content
access-control-allow-origin: https://datanodes.to
date: Wed, 28 May 2025 23:03:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:156:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:156:0
report-to: {"group":"ascnsrsggc:156:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:156:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET datanodes.to/download

172.67.69.166

200 OK

83 kB

URL User Request GET
datanodes.to/download
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (56885)
Size
83 kB (82686 bytes)
Hash
6a1ff8323d3ad72dec6302060211c76f
8b8cdce3f7d80a8e4e8ee1e4b3ae6674d4fb8e7f
d976461cd3c7d29e4726073cd663b7173b29d8ffdba27ab15ec9fea8b46d3d17

HTTP Headers

GET /download HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:48 GMT
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
set-cookie: affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; domain=.datanodes.to; path=/; expires=Wed, 11-Jun-2025 23:03:48 GMT
expires: Tue, 27 May 2025 23:03:48 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UKPOgYSPFUqwHDE%2Fro%2Fr6MO3WOVDcFFGoZK18BUKOUvXscPnu%2Bjt3bRcCznwZ9pFw3yZPNTEOOZIlkWPmoeqJtL8qK9JnUHl%2F2UmYecPJF%2FOnSkmbbo7WTf6ysUNyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 947163315f600afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4667&min_rtt=483&rtt_var=8343&sent=10&recv=14&lost=0&retrans=0&sent_bytes=4018&recv_bytes=1325&delivery_rate=6873417&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=280&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js

172.67.69.166

200 OK

1.1 kB

URL GET
datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
Java source, ASCII text, with very long lines (1119)
Size
1.1 kB (1120 bytes)
Hash
4838938921365808702372a0947114c2
8aa1c4e51dacf60f069c52a80039fbcc6dc50e70
555e00c6b3d5c3ff1b6e855201b7216e68c5783adaa25dafc2ad68d3ee75677c

HTTP Headers

GET /theme_2023/dist/assets/VirusScan-e53a5e80.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/app-80bcdb82.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-460"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2BWIHENPVD0D6Bo654BxyHkLqrHSEug1pcdzsQ1jUNZ4hAPy0DZhHWCM%2BHX2MDYL20Xfsqz0tch%2FJuOM9swXx9fahLOkhoZbgsUKS3ATstsV%2BOLFluKKEPjUfAQSIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716337bb320afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3175&min_rtt=445&rtt_var=4418&sent=145&recv=38&lost=0&retrans=0&sent_bytes=172385&recv_bytes=2212&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1173&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/_plugin-vue_export-helper-c27b6911.js

172.67.69.166

200 OK

91 B

URL GET
datanodes.to/theme_2023/dist/assets/_plugin-vue_export-helper-c27b6911.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
ASCII text
Size
91 B (91 bytes)
Hash
25e3a5dcaf00fb2b1ba0c8ecea6d2560
7850b3fd4aeb69387bdb5a60025d15c41351d5eb
cb85b0f263dbe24e857338301c0627076592e9f1f1a5662929f86d2c126444aa

HTTP Headers

GET /theme_2023/dist/assets/_plugin-vue_export-helper-c27b6911.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-5b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=igx4Esyh4GrNIsBBPV3GYZavr0OfUaR8v7FC9%2BbTPy95dGIt5PnWDtUW621IfBk5ISJgzU0nw3iMagJTyZePLdEWOTXEvALZd0dTUhG%2FAO%2BJP89WeN2n%2FoYYphTOwg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163386bb60afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4546&min_rtt=445&rtt_var=5657&sent=158&recv=45&lost=0&retrans=0&sent_bytes=177286&recv_bytes=2839&delivery_rate=61700815&cwnd=256&unsent_bytes=491&cid=7bf0f8a1feb7224d&ts=1282&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js

172.67.69.166

200 OK

79 kB

URL GET
datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (55448)
Size
79 kB (78976 bytes)
Hash
0141e4901d84ce0029f3b424362c7af2
571f2a8995a2ebf2d68f3fafdfd5d316ede31ff0
a30a91209bf26dabfad3b83901707969815ac9908e11b12dc52b7a80b8f4ee80

HTTP Headers

GET /theme_2023/dist/assets/FileActions-fa6032ae.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/app-80bcdb82.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-13480"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IT9Gcyc%2FCDiucmHNzl1DjQHPIbkR86wYUTM6qqa%2Bwt7zJ2oebuyFiB7B2b9EJhotAyE1%2BaWuc6snzEKEZtJIEOntbl3%2BmEXZgtXCewDPJ0wt7m3AOBUR5K09FQpMeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716338fc150afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=5303&min_rtt=383&rtt_var=7077&sent=169&recv=52&lost=0&retrans=0&sent_bytes=183656&recv_bytes=3079&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1372&x=0"
X-Firefox-Spdy: h2

GET ukankingwithea.com/

104.21.32.1

200 OK

27 B

URL GET
ukankingwithea.com/
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
27 B (27 bytes)
Hash
f27ab4ea6a1dbc26beaecf086ee1b76a
1a5fecce91239ccf1845ad5ae7cba4799d35bdc3
67b9cb2ccb81c874272719ade181b8ee3cc6b991958586e78843be629b4a4b4b

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:51 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://datanodes.to
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Jt7jQVHybriuUHYHVTX2%2Fxl5I7UeaBmjWOD6%2BEN7zy7Vo2TQLrt69pRKiVRjJ2X9IWPFVZ00Y2VlnjIbOELiOlOCr5IRxyH8BLO%2B9df3uYc%3D"}]}
content-encoding: br
set-cookie: csu=1902618734290661@1@1748473431; SameSite=None; Secure; Max-Age=31104000
cf-ray: 947163406d2a712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/app-36afb1c9.css

172.67.69.166

200 OK

53 kB

URL GET
datanodes.to/theme_2023/dist/assets/app-36afb1c9.css
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
Unicode text, UTF-8 text, with very long lines (53102)
Size
53 kB (53111 bytes)
Hash
2cdd57f3f007cbfdba60cf21c501419d
62720b0e8af26f35c3b3cea435fe42f9dd8a8b11
36afb1c9ed858b12e612a7e7db9bb7f6993c8f595ba4c600e226cd7c15be6b2f

HTTP Headers

GET /theme_2023/dist/assets/app-36afb1c9.css HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: text/css
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-cf77"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sTpvYQEpS5eV0MyTQBdUWJUKSqUPqJw6d4zuZGcHtjVJ%2BnCHCuZqhW4kfZXKofs8Q2hESzicKhP1TukhTS2ktE7FrZ9678K0q2tOw3vuN%2F6DilSUBA%2FBdeec2AwT%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9471633499490afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1609&min_rtt=445&rtt_var=1712&sent=133&recv=35&lost=0&retrans=0&sent_bytes=157584&recv_bytes=1945&delivery_rate=61700815&cwnd=256&unsent_bytes=4344&cid=7bf0f8a1feb7224d&ts=773&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/Tooltip-4872b02d.css

172.67.69.166

200 OK

372 B

URL GET
datanodes.to/theme_2023/dist/assets/Tooltip-4872b02d.css
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
ASCII text, with very long lines (371)
Size
372 B (372 bytes)
Hash
cdfb8cc2e705f53d307841b8e9e2fe02
c86370de829ba384fdcde4d556472b27eca7b803
4872b02d2bbe6f70834822916d6e55e3190f18172efaddf935dada716fdb5452

HTTP Headers

GET /theme_2023/dist/assets/Tooltip-4872b02d.css HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: text/css
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-174"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PUP2SRq61W0vcpDGZqrTAj7z6h37jxfQ%2F5HQMN%2FvkDTNrd1TKkHrfM6wojKXy4d%2ByaFiQDTRMbEVqunlR%2BX9qT8bFWSuVHlo9ZC%2BroZ%2F1r4DS1IJO%2BwPNPSv8oWjsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163379b190afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3053&min_rtt=445&rtt_var=3559&sent=149&recv=40&lost=0&retrans=0&sent_bytes=174070&recv_bytes=2326&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1248&x=0"
X-Firefox-Spdy: h2

GET www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js

142.250.74.99

200 OK

654 kB

URL GET
www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
JavaScript source, ASCII text, with very long lines (534)
Size
654 kB (653660 bytes)
Hash
962ff1936244194670add930242b7dec
1014eb79a4105e3eb3e7ffba63b8dd7a584dd9bf
dcad914962ca2218e1178a3f93abcbeaa168406321a8e1744def00d8ebd4b3ac

HTTP Headers

GET /recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 277777
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 11:36:18 GMT
expires: Thu, 28 May 2026 11:36:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 May 2025 21:04:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41252
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintC1:23:6B:8B:E9:B9:28:BB:DE:15:E9:38:B1:9E:50:AA:7D:13:C9:E9
ValidityTue, 29 Apr 2025 19:30:06 GMT - Tue, 22 Jul 2025 19:30:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:3ppUHUU4eDaqwXAgd8le6U0_td7ZpQ:eE9u-ys7yJM9X1Ya; Expires=Fri, 28-May-2027 23:03:51 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiM-dzVfjd9Sq77QUwEPPUVEmTO4uAM-JviVCYZpSF0am4xIeHd5JiYIe-gURm-632jUvTI5
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-MVIZ0JaJ9m4Lz1a5kmeRkQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/LoadingIcon-59fcef50.js

172.67.69.166

200 OK

667 B

URL GET
datanodes.to/theme_2023/dist/assets/LoadingIcon-59fcef50.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
Java source, ASCII text, with very long lines (666)
Size
667 B (667 bytes)
Hash
3bf8f7142f945fb29a79ec7ddde813ab
510746b341aec2afe4c3f6e4bdc58f3de28a6a7d
d9d4e80bef2de510da666b488f7d8c4faf40604a500ac13bb5f165a09763e15e

HTTP Headers

GET /theme_2023/dist/assets/LoadingIcon-59fcef50.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-29b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cclomiy6DKCPv9de47kxqiq1MMUh3PUIqK5PsyNs1JbmSC1YpfqvgTrPhdaqGAWnx8GNcE%2B33fsmX2kBghMzlkf40FigWkFoFhrkiZM8pEKDkwDIbbswpXaRyYB3kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163386bb30afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4546&min_rtt=445&rtt_var=5657&sent=157&recv=45&lost=0&retrans=0&sent_bytes=176775&recv_bytes=2839&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1282&x=0"
X-Firefox-Spdy: h2

POST www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

0 B

URL POST
www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuf
Content-Length: 1579
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Cookie: _GRECAPTCHA=09ANMylNA1xTf8MVffKl69_UjW-qGSK2RkCy8LW50VXoRujzMOLNLKoxgeim-gzSLgJeCiO4zVHWC9yxSh7nO3C5U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/binary
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiO2IeBHLXZlcR9OgM1XZaUufFGAWi4XHI4BtvD3egED30d4NZoAVSa6H029buUruxJX2PXlig&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-734514080%3A1748473431336453

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiO2IeBHLXZlcR9OgM1XZaUufFGAWi4XHI4BtvD3egED30d4NZoAVSa6H029buUruxJX2PXlig&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-734514080%3A1748473431336453
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiO2IeBHLXZlcR9OgM1XZaUufFGAWi4XHI4BtvD3egED30d4NZoAVSa6H029buUruxJX2PXlig&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-734514080%3A1748473431336453 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-ViI2c7aLMwT6SkCS5hhVGg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.01cbH3b9GVo.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 May 2025 02:39:21 GMT
expires: Wed, 27 May 2026 02:39:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 159870
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

0 B

URL POST
www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Content-Length: 1596
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/binary
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: cross-origin
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7DP7NV2LKF&cid=480715960.1748473430&gtm=45je55r0v9175474265za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&z=1267024298

142.250.178.67

200 OK

42 B

URL GET
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7DP7NV2LKF&cid=480715960.1748473430&gtm=45je55r0v9175474265za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&z=1267024298
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.no
Fingerprint68:9D:28:1F:B0:AD:6F:3C:EA:FE:69:86:E1:1F:1D:EC:20:83:A5:36
ValidityTue, 29 Apr 2025 19:31:04 GMT - Tue, 22 Jul 2025 19:31:03 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7DP7NV2LKF&cid=480715960.1748473430&gtm=45je55r0v9175474265za200&aip=1&dma=1&dma_cps=syphamo&gcd=13l3l3l2l1l1&npa=1&frm=0&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&z=1267024298 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 May 2025 23:03:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET dasesiumworkhovdim.com/R0pQSVpodTM6ZyV6YT4/KnsILA8jAAgfLnIZFXA7ECQgAQkBJXY9MyN3YXhsdn9lfXw3IzR0a39sIz07Mz8jdGthIz4vNXpsJnRraXp+e3RybCV0a2E+ICg9ent2OS4zJm14bXNyZH5pc3lgfG9w

104.21.18.69

204 No Content

0 B

URL GET
dasesiumworkhovdim.com/R0pQSVpodTM6ZyV6YT4/KnsILA8jAAgfLnIZFXA7ECQgAQkBJXY9MyN3YXhsdn9lfXw3IzR0a39sIz07Mz8jdGthIz4vNXpsJnRraXp+e3RybCV0a2E+ICg9ent2OS4zJm14bXNyZH5pc3lgfG9w
IP
104.21.18.69:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdasesiumworkhovdim.com
Fingerprint17:BE:CF:55:7A:BA:21:C9:48:F4:87:CE:78:6F:18:CB:DA:95:97:22
ValidityTue, 22 Apr 2025 10:32:08 GMT - Mon, 21 Jul 2025 11:30:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /R0pQSVpodTM6ZyV6YT4/KnsILA8jAAgfLnIZFXA7ECQgAQkBJXY9MyN3YXhsdn9lfXw3IzR0a39sIz07Mz8jdGthIz4vNXpsJnRraXp+e3RybCV0a2E+ICg9ent2OS4zJm14bXNyZH5pc3lgfG9w HTTP/1.1
Host: dasesiumworkhovdim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 28 May 2025 23:03:50 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=paJN%2Brok2Zvko1ozbWUWEJrvBq6pKXT8LdL0GyTTBonDOingYPdbQVRcGk6lJtVKzfT12pOgPSztmNFD9tRHKDlag1OrrSyd2tRWa%2B2aPODm3rbo"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 9471633d4cdab4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db

142.250.178.100

200 OK

73 kB

URL GET
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type
HTML document, ASCII text, with very long lines (56624)
Size
73 kB (73100 bytes)
Hash
39d3487f67eb49dd80b126312b527a6d
8040cbf94e7a09c327419eeac749f5d451e9fac4
71cf9a827c4df340526f68a44884c472811ad33515aac4b96d60ffd2c59dd721

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:50 GMT
content-security-policy: script-src 'nonce-eC4SesFf0X6gO9SMZrLQ7w' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET ukankingwithea.com/

104.21.32.1

200 OK

27 B

URL GET
ukankingwithea.com/
IP
104.21.32.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectukankingwithea.com
Fingerprint02:15:28:2A:F2:F8:5D:3A:DE:6D:1D:DC:CF:6D:06:BA:00:3A:63:70
ValidityTue, 29 Apr 2025 13:46:48 GMT - Mon, 28 Jul 2025 14:44:24 GMT

File type
ASCII text, with no line terminators
Size
27 B (27 bytes)
Hash
40ecbd3243a5fabd95ce4d7955b3b786
18060767d69f0320ae3bb95e8cd4b6cf712bf61d
3edd5c8eeedb49d26f00484fc15f65c2be17d1150da5ed3353087796dc9aa10b

HTTP Headers

GET / HTTP/1.1
Host: ukankingwithea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:51 GMT
content-type: text/plain
server: cloudflare
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
access-control-allow-origin: https://datanodes.to
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=unEHKCrMmiPBjwXfH7sR0EYzGBBaspSyvQr5EnZGmAEIgL4rw7%2FlTCxOfR5mVhTi6NplVRRSOpHMEHRUYg%2FJJUSzVE7nO8h%2FYQjPfZJaQrg%3D"}]}
content-encoding: br
set-cookie: csu=1469752943145237@1@1748473431; SameSite=None; Secure; Max-Age=31104000
cf-ray: 947163406d2b712a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js

142.250.74.99

200 OK

654 kB

URL GET
www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
JavaScript source, ASCII text, with very long lines (534)
Size
654 kB (653660 bytes)
Hash
962ff1936244194670add930242b7dec
1014eb79a4105e3eb3e7ffba63b8dd7a584dd9bf
dcad914962ca2218e1178a3f93abcbeaa168406321a8e1744def00d8ebd4b3ac

HTTP Headers

GET /recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 277777
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 11:36:18 GMT
expires: Thu, 28 May 2026 11:36:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 May 2025 21:04:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41253
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.google.com/recaptcha/api.js?render=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

1.1 kB

URL GET
www.google.com/recaptcha/api.js?render=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectwww.google.com
FingerprintE9:B0:B0:1C:16:B4:D5:F5:55:93:95:F0:9A:BC:7C:BD:1A:F8:2F:AA
ValidityTue, 29 Apr 2025 19:30:04 GMT - Tue, 22 Jul 2025 19:30:03 GMT

File type
JavaScript source, ASCII text, with very long lines (1051), with no line terminators
Size
1.1 kB (1051 bytes)
Hash
0f4541d89c0a2f40fb5b465e286a39a9
84197037bba9df6e53b7689cb9bd5397f575c00c
13298d210c4b5bf8a3b3cec104a612dc5a78a5a85d05e2bdf32265f014587b65

HTTP Headers

GET /recaptcha/api.js?render=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 28 May 2025 23:03:49 GMT
date: Wed, 28 May 2025 23:03:49 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/cdn-cgi/challenge-platform/h/g/scripts/jsd/6fab0cec561d/main.js?

172.67.69.166

200 OK

8.5 kB

URL GET
datanodes.to/cdn-cgi/challenge-platform/h/g/scripts/jsd/6fab0cec561d/main.js?
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (8458), with no line terminators
Size
8.5 kB (8458 bytes)
Hash
0e1fad59ba534a302355f1a845014fa6
48d56c7ea6cb00adc4f9f928b7709f0adf57c03e
dbff94b81735ba9dda3aeac3279d9c1cc50e398c34516d9d326717afbefa9533

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/6fab0cec561d/main.js? HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZxchzegYrCIKz7TU5liNbsPTYgBBtbl%2BtHgA590nwJmLrHyuqKTm%2B9FFy2OnY2XN7WZyGaZsPu6EM6tJmVHLUR4NHOdyWgX7f5RMvDMspoOAPMDDkRBlcUWgp%2BGiWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716338cbf40afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4009&min_rtt=383&rtt_var=4300&sent=164&recv=49&lost=0&retrans=0&sent_bytes=179207&recv_bytes=2966&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1340&x=0"
X-Firefox-Spdy: h2

GET d2eq4x4u2q3fwc.cloudfront.net/?uxqed=1158643

54.230.245.20

200 OK

384 kB

URL GET
d2eq4x4u2q3fwc.cloudfront.net/?uxqed=1158643
IP
54.230.245.20:443
ASN
#16509 AMAZON-02

Requested by
https://datanodes.to/download
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
384 kB (384415 bytes)
Hash
299ec29a9565055a9df7320ffdde5908
7eea6cabc4603e67f54d9086123536404d326c53
fbaf46380a27f77dd32713cf07753291c6e713472f1fe84df39ed33e22a20f97

HTTP Headers

GET /?uxqed=1158643 HTTP/1.1
Host: d2eq4x4u2q3fwc.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 126880
date: Wed, 28 May 2025 17:56:36 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://datanodes.to
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qfOnHBJpHWfC7VLO66bl4u_KuHp-K3wvCOaIh-v31zr2h4ZadTjv6g==
age: 18434
X-Firefox-Spdy: h2

POST www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

0 B

URL POST
www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Content-Length: 1596
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/binary
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET datanodes.to/theme_2023/dist/assets/index-dd92db6d.js

172.67.69.166

200 OK

6.4 kB

URL GET
datanodes.to/theme_2023/dist/assets/index-dd92db6d.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
Java source, ASCII text, with very long lines (6392)
Size
6.4 kB (6393 bytes)
Hash
6ce1ad7fa6b6028bd38010eb93880db5
dbf9628e8a116865693cbd5cce1c41fcaac94beb
ba8edc5521e36bb2e21448a0f062d3727e459e9165cb9aabbd48bb1b6befd6c7

HTTP Headers

GET /theme_2023/dist/assets/index-dd92db6d.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-18f9"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6xYeO87wBKQyos6aI4MTz1xiHBLhmz3DB1cexvECyflOcvfOt%2F51w1h3ET7YY%2F599UGy%2FVNhJ5ATxcItLNsOnF5glqLlgUaSgFVPSvSBTGHAFJ8bordX6MO3U5OMSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163386bb40afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=4546&min_rtt=445&rtt_var=5657&sent=154&recv=45&lost=0&retrans=0&sent_bytes=174833&recv_bytes=2839&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1281&x=0"
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiM-CLXLJt0FgRTcyZmEOGbL6i-aGs7MUUiiE87eSuburrSbW7Q597z1W2ZpJz5Kwx8nvEHZ

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiM-CLXLJt0FgRTcyZmEOGbL6i-aGs7MUUiiE87eSuburrSbW7Q597z1W2ZpJz5Kwx8nvEHZ
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintC1:23:6B:8B:E9:B9:28:BB:DE:15:E9:38:B1:9E:50:AA:7D:13:C9:E9
ValidityTue, 29 Apr 2025 19:30:06 GMT - Tue, 22 Jul 2025 19:30:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiM-CLXLJt0FgRTcyZmEOGbL6i-aGs7MUUiiE87eSuburrSbW7Q597z1W2ZpJz5Kwx8nvEHZ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:mNFFjF8GVX6x644F30uq2LWEk8Qnwg:J38GfUCSrT1nk-RT;Path=/;Expires=Fri, 28-May-2027 23:03:51 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiMzhgj8mo1mrrt_lrOwYZHlRu3AWw2wWiJSFtd-RSXys_9IaJ-xfVrup0JYpr0uSdB_jZ5zLQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S839920244%3A1748473431376324
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-fWRzuUkGZ3hgyq2aGLOEdg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 417
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.googletagmanager.com/gtag/js?id=G-7DP7NV2LKF

142.250.178.104

200 OK

388 kB

URL GET
www.googletagmanager.com/gtag/js?id=G-7DP7NV2LKF
IP
142.250.178.104:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintCD:0C:1B:2D:7B:57:E1:F7:53:C1:91:15:C4:3B:B8:35:6A:5D:21:4B
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type
JavaScript source, ASCII text, with very long lines (6125)
Size
388 kB (387467 bytes)
Hash
8d3881a04293f8e9b7ae4a55d3054a2e
b0c3892146c75f6e73c6868be4b4118a507d9c7d
35449ee8624efa736313380ccdfaabe70503c30b32dfa1a714b0ca767baadb65

HTTP Headers

GET /gtag/js?id=G-7DP7NV2LKF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 May 2025 23:03:49 GMT
expires: Wed, 28 May 2025 23:03:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0
report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],}
server: Google Tag Manager
content-length: 129375
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/app-80bcdb82.js

172.67.69.166

200 OK

183 kB

URL GET
datanodes.to/theme_2023/dist/assets/app-80bcdb82.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (32531)
Size
183 kB (183021 bytes)
Hash
68168e1fcc3f0b89637287285c331e9b
2252e15424087258ef80a353512b685215e68335
df548d433ea12395b99a860e96667848bea70b8eeae6348959d3a1cee6fa57c4

HTTP Headers

GET /theme_2023/dist/assets/app-80bcdb82.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-2caed"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9GsZi%2Fqq0fa2AqWL6ivA%2F7bTSTGG3gz2HWFyPj%2B1NSwBRUdaMtZlgEdHJoIQjOg52UYx3rQgqpmiVsH1A1ke1POBjZcMY31gCAf4shdJM5P8CCLaaEIiF1bYf3jiIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716334994e0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2882&min_rtt=458&rtt_var=4083&sent=44&recv=27&lost=0&retrans=0&sent_bytes=39290&recv_bytes=1945&delivery_rate=15162303&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=683&x=0"
X-Firefox-Spdy: h2

GET d1i4rchxg0yau7.cloudfront.net/?hcrid=1158643

54.230.245.198

200 OK

384 kB

URL GET
d1i4rchxg0yau7.cloudfront.net/?hcrid=1158643
IP
54.230.245.198:443
ASN
#16509 AMAZON-02

Requested by
https://datanodes.to/download
Certificate
IssuerAmazon
Subject*.cloudfront.net
Fingerprint8F:00:F1:34:A7:1E:27:1C:CF:CD:A6:53:8B:C4:82:B0:68:BC:C8:72
ValidityMon, 05 May 2025 00:00:00 GMT - Thu, 23 Apr 2026 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (38488)
Size
384 kB (384415 bytes)
Hash
c96ccd12b9982b4f6023347f53244294
0af8a853e7badebfe2ae1763d87e565f8f0949e3
40193f585cc6c27f94a7a447df93d81ac69a9c2c4681baceb227221ee9253d86

HTTP Headers

GET /?hcrid=1158643 HTTP/1.1
Host: d1i4rchxg0yau7.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 126882
date: Wed, 28 May 2025 23:03:50 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vz0uzCI_wO_R0dCKNwXxcEtCDmOsAWgKeEymvpOnG9VFBqjqp1v3Sg==
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

15 kB

URL GET
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 00:15:28 GMT
expires: Thu, 28 May 2026 00:15:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 82103
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

POST www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

0 B

URL POST
www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Content-Length: 1596
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/binary
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

142.250.74.35

200 OK

8.0 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 May 2025 21:01:18 GMT
expires: Tue, 26 May 2026 21:01:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:07:17 GMT
content-type: font/woff2
age: 180151
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/Util-ba300788.js

172.67.69.166

200 OK

2.9 kB

URL GET
datanodes.to/theme_2023/dist/assets/Util-ba300788.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (2854)
Size
2.9 kB (2857 bytes)
Hash
5813b7c66e53d58affc0cbed8e8de4d8
178cc0740966c30105212ab634ff274db3cca2f7
64e9941143b72dce37a3a356e68f051bbf5aaa12c3ac0b2f3972b471083d7477

HTTP Headers

GET /theme_2023/dist/assets/Util-ba300788.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-b29"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qwbcoUQtmcSfXGaRlNmkojgKvKrq6nwUgv%2BQexfAT9SMvbFFFPBGVvn4Qi1Cf8yMv1j8e%2Bxtcpc89dM%2BO2Fc68SMP78IapKhxOzym2BgzNjdxPTV1HELlyHv2FlMaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9471633b7ddb0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3355&min_rtt=383&rtt_var=5584&sent=207&recv=85&lost=0&retrans=0&sent_bytes=216240&recv_bytes=16112&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1772&x=0"
X-Firefox-Spdy: h2

POST www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

0 B

URL POST
www.google.com/recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /recaptcha/api2/clr?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Content-Length: 1596
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/binary
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
cross-origin-resource-policy: cross-origin
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET dasesiumworkhovdim.com/aHhLNFpHRyhHZwsvLE4DEhwIbD0qLwpfGDo5DVcfOS5zcA85NW1AMwxFegVvUE5/B3wYES8Ja04LP1UuHQt2BXwBFi1bZ04OdgV0W0xlB2xGTG1BZ1leP0Q7D0V6EiocDCcJa19McwBtW0x4BG5QTg

104.21.18.69

204 No Content

0 B

URL GET
dasesiumworkhovdim.com/aHhLNFpHRyhHZwsvLE4DEhwIbD0qLwpfGDo5DVcfOS5zcA85NW1AMwxFegVvUE5/B3wYES8Ja04LP1UuHQt2BXwBFi1bZ04OdgV0W0xlB2xGTG1BZ1leP0Q7D0V6EiocDCcJa19McwBtW0x4BG5QTg
IP
104.21.18.69:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdasesiumworkhovdim.com
Fingerprint17:BE:CF:55:7A:BA:21:C9:48:F4:87:CE:78:6F:18:CB:DA:95:97:22
ValidityTue, 22 Apr 2025 10:32:08 GMT - Mon, 21 Jul 2025 11:30:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /aHhLNFpHRyhHZwsvLE4DEhwIbD0qLwpfGDo5DVcfOS5zcA85NW1AMwxFegVvUE5/B3wYES8Ja04LP1UuHQt2BXwBFi1bZ04OdgV0W0xlB2xGTG1BZ1leP0Q7D0V6EiocDCcJa19McwBtW0x4BG5QTg HTTP/1.1
Host: dasesiumworkhovdim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 28 May 2025 23:03:50 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=XxPE%2FKToEvX8Vu7HRTGjG04GCSR8EknnI35Gyq8W%2FLlug3EYVgZeFHP%2FGLRCkV%2FitjGuzhSXKOsQOmiczElpaf8hMlEDUdEgL9j0T%2FOXHzbTNRXu"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 9471633d0cafb4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/_commonjsHelpers-d4b30cbb.js

172.67.69.166

200 OK

571 B

URL GET
datanodes.to/theme_2023/dist/assets/_commonjsHelpers-d4b30cbb.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (570)
Size
571 B (571 bytes)
Hash
438e021bb3322f23fb81092ef78dd510
51a31923f243d4af84ef0f6e710bdf202e52c6c9
85533b0eb874013bd2468499e014675813269c8983bf7e0abc366d1715020769

HTTP Headers

GET /theme_2023/dist/assets/_commonjsHelpers-d4b30cbb.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/VirusScan-e53a5e80.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-23b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=peSkp0ivr4tbPTf0zTR5sCDcUN7470BQyU7cMi8vuHo16X9x%2FIImBqqWbTn93QzKQDzrr6VkFmKDUp9ox5IP9IiTbd12EvdTmL70iyK%2FaLQEdJ3syfgZRjY%2BlIXE5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163386bba0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3641&min_rtt=383&rtt_var=4752&sent=161&recv=47&lost=0&retrans=0&sent_bytes=178368&recv_bytes=2839&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1287&x=0"
X-Firefox-Spdy: h2

POST region1.analytics.google.com/g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1465

216.239.32.36

204 No Content

0 B

URL POST
region1.analytics.google.com/g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1465
IP
216.239.32.36:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintCD:0C:1B:2D:7B:57:E1:F7:53:C1:91:15:C4:3B:B8:35:6A:5D:21:4B
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-7DP7NV2LKF&gtm=45je55r0v9175474265za200&_p=1748473429474&_gaz=1&gcd=13l3l3l2l1l1&npa=1&dma_cps=syphamo&dma=1&tag_exp=101509157~102938614~103116026~103130498~103130500~103200004~103233427~103252644~103252646~104481633~104481635&cid=480715960.1748473430&ul=en-us&sr=1280x1024&frm=0&pscdl=noapi&_s=1&sid=1748473429&sct=1&seg=0&dl=https%3A%2F%2Fdatanodes.to%2Fdownload&dt=Download%20Far%20Cry%20Duology%20fitgirl%20repacks%20site%20part1%20rar&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=1465 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://datanodes.to
date: Wed, 28 May 2025 23:03:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:156:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:156:0
report-to: {"group":"ascnsrsggc:156:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:156:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ereissomeone.org/UmlZcGozCzodVTNUO1YfIAVkVVgUTGs2DmMAbQIJOhE+QBMzHG5eCT4GLBQMIAY3BEQ8DC1VWBQvAAogPT8eHysKOAAJPAANOzQtPgsMFw4DMDVJPxQrPh0uJTwJNC4HDBgcHRokGEg7GisuRz4TBRsyED0IAR0nPyMKIQEDLzEaKyorFSQDEzgbB1MLCj4pKQooYAA+EzM6M1g+CwsmJx8nNRQyFCsuGygDDgkxAD0hGBwNGCAhFyQHWW0YKWNcPzITZi0dQV4YCg8XBhBZAxs+YywaISkfLR0mMxogIRwtEy8+RiI5MBgnLQQIDSEgHDMgGC0TL3QXABMeaTUyGi8DOTg2CAMyIAQrMkEEGSwAMT0RMDoiDRcZAyYGCiEfGFMGWBwzLigsEzMsYycDGRIAKDUcAQUFEDM9Ci8AJVsDKxMXUhQxCzISBSoMND1gKxwlEgMNOCYZdAMqHwQiVAg+GxwuK0BdOxog

54.240.174.118

200 OK

3.1 kB

URL GET
ereissomeone.org/UmlZcGozCzodVTNUO1YfIAVkVVgUTGs2DmMAbQIJOhE+QBMzHG5eCT4GLBQMIAY3BEQ8DC1VWBQvAAogPT8eHysKOAAJPAANOzQtPgsMFw4DMDVJPxQrPh0uJTwJNC4HDBgcHRokGEg7GisuRz4TBRsyED0IAR0nPyMKIQEDLzEaKyorFSQDEzgbB1MLCj4pKQooYAA+EzM6M1g+CwsmJx8nNRQyFCsuGygDDgkxAD0hGBwNGCAhFyQHWW0YKWNcPzITZi0dQV4YCg8XBhBZAxs+YywaISkfLR0mMxogIRwtEy8+RiI5MBgnLQQIDSEgHDMgGC0TL3QXABMeaTUyGi8DOTg2CAMyIAQrMkEEGSwAMT0RMDoiDRcZAyYGCiEfGFMGWBwzLigsEzMsYycDGRIAKDUcAQUFEDM9Ci8AJVsDKxMXUhQxCzISBSoMND1gKxwlEgMNOCYZdAMqHwQiVAg+GxwuK0BdOxog
IP
54.240.174.118:443
ASN
#16509 AMAZON-02

Requested by
https://datanodes.to/download
Certificate
IssuerAmazon
Subjectereissomeone.org
Fingerprint0D:7F:36:01:91:47:1F:E5:D2:36:1C:B8:7E:83:39:4C:7D:6D:1B:47
ValidityTue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3065), with no line terminators
Size
3.1 kB (3065 bytes)
Hash
a8d02870497deb74eb7e65ed6941759d
e24f53e0594b8207946fbc61a845d3a388ab9873
1fde5e47f4199b4eec2e7df24015da15510e16218eb2acf6c824a95539e6d056

HTTP Headers

GET /UmlZcGozCzodVTNUO1YfIAVkVVgUTGs2DmMAbQIJOhE+QBMzHG5eCT4GLBQMIAY3BEQ8DC1VWBQvAAogPT8eHysKOAAJPAANOzQtPgsMFw4DMDVJPxQrPh0uJTwJNC4HDBgcHRokGEg7GisuRz4TBRsyED0IAR0nPyMKIQEDLzEaKyorFSQDEzgbB1MLCj4pKQooYAA+EzM6M1g+CwsmJx8nNRQyFCsuGygDDgkxAD0hGBwNGCAhFyQHWW0YKWNcPzITZi0dQV4YCg8XBhBZAxs+YywaISkfLR0mMxogIRwtEy8+RiI5MBgnLQQIDSEgHDMgGC0TL3QXABMeaTUyGi8DOTg2CAMyIAQrMkEEGSwAMT0RMDoiDRcZAyYGCiEfGFMGWBwzLigsEzMsYycDGRIAKDUcAQUFEDM9Ci8AJVsDKxMXUhQxCzISBSoMND1gKxwlEgMNOCYZdAMqHwQiVAg+GxwuK0BdOxog HTTP/1.1
Host: ereissomeone.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1209
date: Wed, 28 May 2025 23:03:50 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=t3zlZOpomsyD5Id4/1VYkMq2nYc645aaK+7vZ6hQYbkFVUI3QjNsS7qNSQ9HNIY92qGoSmAk3h7kmV+1Sle9ge9lsoznd3MQwLIf/vuv5qKcuR97bYryqBgaKGZD; Expires=Wed, 04 Jun 2025 23:03:50 GMT; Path=/
AWSALBCORS=t3zlZOpomsyD5Id4/1VYkMq2nYc645aaK+7vZ6hQYbkFVUI3QjNsS7qNSQ9HNIY92qGoSmAk3h7kmV+1Sle9ge9lsoznd3MQwLIf/vuv5qKcuR97bYryqBgaKGZD; Expires=Wed, 04 Jun 2025 23:03:50 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ebdcjz3NdSW3UiU90VzoNCvgcMkGMgJbzG9OWCMc8tYf3qP8AtFnpg==
X-Firefox-Spdy: h2

GET www.google.com/recaptcha/api2/webworker.js?hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd

142.250.178.100

200 OK

102 B

URL GET
www.google.com/recaptcha/api2/webworker.js?hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type
ASCII text, with no line terminators
Size
102 B (102 bytes)
Hash
adba95423919961022147e0db606a979
936a9f5325c174ac1d74b68ffc85473b9f7da1cb
5ed5bb071a4e5ba8591e3ed4935098d4b614b0290bcbb27eea8a0062abc2f159

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
expires: Wed, 28 May 2025 23:03:51 GMT
date: Wed, 28 May 2025 23:03:51 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/styles__ltr.css

142.250.74.99

200 OK

79 kB

URL GET
www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/styles__ltr.css
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
79 kB (78627 bytes)
Hash
d512904c784698cf0c889f2af70b4f38
00c20a86070dcc6f20d57b29bedbf732d8517e53
6671fed8c2d19f5f79b545e73b099e1fe4fbea186a46b9cdfc9c31e8103ac219

HTTP Headers

GET /recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 42060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 06:30:36 GMT
expires: Thu, 28 May 2026 06:30:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 May 2025 21:04:58 GMT
content-type: text/css
vary: Accept-Encoding
age: 59595
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

POST www.google.com/recaptcha/api2/reload?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs

142.250.178.100

200 OK

38 kB

URL POST
www.google.com/recaptcha/api2/reload?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs
IP
142.250.178.100:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type
ASCII text, with very long lines (38441)
Size
38 kB (38446 bytes)
Hash
4b01762c01a57cb73449d023f3a76efe
452b825589340aaa3b8f72de4412da2b3407311d
66a35a947958eacfefed5ce3770b3ab1ccf62d56539d740fa597c9780b7fb7b5

HTTP Headers

POST /recaptcha/api2/reload?k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-protobuffer
Content-Length: 11389
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cross-origin-resource-policy: same-site
content-encoding: gzip
date: Wed, 28 May 2025 23:03:53 GMT
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: _GRECAPTCHA=09ANMylNA1xTf8MVffKl69_UjW-qGSK2RkCy8LW50VXoRujzMOLNLKoxgeim-gzSLgJeCiO4zVHWC9yxSh7nO3C5U; Expires=Mon, 24-Nov-2025 23:03:53 GMT; Path=/recaptcha; Secure; HttpOnly; Priority=HIGH; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Wed, 28 May 2025 23:03:53 GMT
cache-control: private

GET datanodes.to/theme_2023/src/assets/images/virus-scan.png

172.67.69.166

200 OK

34 kB

URL GET
datanodes.to/theme_2023/src/assets/images/virus-scan.png
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
34 kB (33827 bytes)
Hash
ed8693e5b49bbfec66898fd26b979317
0fe86ee5614e13c3c93672a4d57ef69555f3e701
5b6ef28011995150a50e6e59ca8728a5f0f92c7dfe27f08433e398a7fc177a9d

HTTP Headers

GET /theme_2023/src/assets/images/virus-scan.png HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: image/png
content-length: 33827
last-modified: Wed, 31 Jan 2024 09:41:40 GMT
etag: "65ba15d4-8423"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UWJBetuIJsMtQcx5GHyEFNU628SRIKLV6dCyE%2F%2BngDYklvP3tRwtsi36qgBuhjrO1GPyS4PlvbRv0vseizHmv%2FR1xChGs15C0bbQ22JF4MPa3NORongTqJtX1MQBYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716334994c0afe-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1609&min_rtt=445&rtt_var=1712&sent=111&recv=35&lost=0&retrans=0&sent_bytes=127362&recv_bytes=1945&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=769&x=0"
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2

142.250.74.35

200 OK

7.9 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v23/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 May 2025 10:26:17 GMT
expires: Fri, 22 May 2026 10:26:17 GMT
cache-control: public, max-age=31536000
age: 563852
last-modified: Wed, 23 Apr 2025 16:05:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/favicon.ico

172.67.69.166

200 OK

2.5 kB

URL GET
datanodes.to/favicon.ico
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
Size
2.5 kB (2461 bytes)
Hash
c813091dc9f029ba08588f60cc450755
d2b2f0efc676eff758c4194d80ff2e9ee973f556
682e513cfa795efc1e53c502e9a8aa3d91db160b7fd15f94de2a4156a6961474

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: image/x-icon
last-modified: Thu, 01 Sep 2022 19:47:58 GMT
etag: W/"63110c6e-99d"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u%2Bt9tzK6cpQzUMYOf9UgdmSiluvu2flVe6GGRMdBqZdzEdC1ty9KxTHdipdcCWmtBVncZr9%2FelvpHkiXi4Lzg%2BIn2G1Xq6fNaj2HbcM7OtwaybVomO3%2FuTsZ3sgDdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163396c6a0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=6928&min_rtt=383&rtt_var=11648&sent=193&recv=65&lost=0&retrans=0&sent_bytes=212201&recv_bytes=3247&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1543&x=0"
X-Firefox-Spdy: h2

POST datanodes.to/cdn-cgi/challenge-platform/h/g/jsd/r/0.7774685979977431:1748471405:k-wsYV5nJ-xBWlg__qMt0y4zLpXxx-ZpbqXmUh9LfMw/947163315f600afe

172.67.69.166

200 OK

0 B

URL POST
datanodes.to/cdn-cgi/challenge-platform/h/g/jsd/r/0.7774685979977431:1748471405:k-wsYV5nJ-xBWlg__qMt0y4zLpXxx-ZpbqXmUh9LfMw/947163315f600afe
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/0.7774685979977431:1748471405:k-wsYV5nJ-xBWlg__qMt0y4zLpXxx-ZpbqXmUh9LfMw/947163315f600afe HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12066
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=uqOpA2DfeFRzAEGpi9QlJz_o2Za1MpLHv_9s.TgjWJg-1748473430-1.2.1.1-yFPDO.24FDxbZmdtWuJlcxcJ9IvVWocsJtWRp8PoKZlQqW.YmywvlDzeTy8jiD8YJy0s9I9TxbEH3Bqx34X7TyQu5lTz29PV4_Vg1QgZfkQCpydlRv3rj3rYtwKmVE.lqddqIrkl545nKsZSqqMnAxqAOyqrFr0WNtgBeTn89E_YsebyOIkj6a.bl0AKQ3a7LNDrgUQoizDuSfgaARbpX2iP2e62Pu7vEVw._bKUatxC14pa0GduqWXPzsahzHc43VX4BJu5u9AmdCd8GtuM0rbh_VlRMR4fTY.2_JBQLpUayUbDSHyymzMYxYS8hr9DvO7BuoDvfV9OEoUb.7nPZ62RkYO6y5wrnbiTTHbh7pQ; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=datanodes.to; Expires=Thu, 28 May 2026 23:03:50 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cfTHRsUMeTbpGAq%2BS88Td9q%2Bu1j72mEVAYmDsN4sg2IBUYrkMdPG6s4YI%2BNchXNG%2BGZ3oSVTy%2Ft8JQZvyqWzVGqKtQNk6Bj1weopL0rHMV8cbY1a%2BOm0BU%2BAHmKBGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 9471633b6dc90afe-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3769&min_rtt=383&rtt_var=6343&sent=204&recv=80&lost=0&retrans=0&sent_bytes=215355&recv_bytes=15609&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1759&x=0"
X-Firefox-Spdy: h2

GET ereissomeone.org/T3d2ekouFRUXdS5KFFw/PRtLX3gJUkQ8Ln4eQggpJw8RSjMuAkFUKSMYAx4sPRgYDmQhEgJfeAkkOxAmNiUbMBgZHwEdEhotJzwkOyM3DTIEFDAjCAcAP0oIfiYzPCMsICNLKSs+ER4ICQAvChgJHz0yGSgkMksADjEwDnkWDRE1CwoTEDILBS8wP3oGPhpCCQcPQhQOCSIzLAkCOiMrGAsuNzQdGEdPAxgKLTwyGX4RITwpKT0BEh4bEDcVCzclOz95PCcuLwctPBFPHgcyNzscNwA8LHkdJDERfi08NyAuGxAwEB8OPS44JwEmNx0iDBYwMxIMHVs4IBo2PDUNNh8jOCI3NTQ/KQ40Jwo9GR8VMQcIOSc7ITwyL0sMNTQzPDMbNj8rHHwlJSwcOCU6K3oXNAwoehoQOzAbIRMlOzI3NhIdGC0kDhktCyIZGRsONSI7G34UEhEYBzUzN2wlBBkUOnIcRChzCi08Mig6ERg+fw

54.240.174.118

200 OK

3.1 kB

URL GET
ereissomeone.org/T3d2ekouFRUXdS5KFFw/PRtLX3gJUkQ8Ln4eQggpJw8RSjMuAkFUKSMYAx4sPRgYDmQhEgJfeAkkOxAmNiUbMBgZHwEdEhotJzwkOyM3DTIEFDAjCAcAP0oIfiYzPCMsICNLKSs+ER4ICQAvChgJHz0yGSgkMksADjEwDnkWDRE1CwoTEDILBS8wP3oGPhpCCQcPQhQOCSIzLAkCOiMrGAsuNzQdGEdPAxgKLTwyGX4RITwpKT0BEh4bEDcVCzclOz95PCcuLwctPBFPHgcyNzscNwA8LHkdJDERfi08NyAuGxAwEB8OPS44JwEmNx0iDBYwMxIMHVs4IBo2PDUNNh8jOCI3NTQ/KQ40Jwo9GR8VMQcIOSc7ITwyL0sMNTQzPDMbNj8rHHwlJSwcOCU6K3oXNAwoehoQOzAbIRMlOzI3NhIdGC0kDhktCyIZGRsONSI7G34UEhEYBzUzN2wlBBkUOnIcRChzCi08Mig6ERg+fw
IP
54.240.174.118:443
ASN
#16509 AMAZON-02

Requested by
https://datanodes.to/download
Certificate
IssuerAmazon
Subjectereissomeone.org
Fingerprint0D:7F:36:01:91:47:1F:E5:D2:36:1C:B8:7E:83:39:4C:7D:6D:1B:47
ValidityTue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3072), with no line terminators
Size
3.1 kB (3072 bytes)
Hash
63b1935f556462ee01a4ef751e5a2bb2
3095b32b731215c81657a0b8b21815200eb69df4
a612cc1fb5903b99c14802bc42be0f8bc1c8d4a1641744ead2085dea449b70ff

HTTP Headers

GET /T3d2ekouFRUXdS5KFFw/PRtLX3gJUkQ8Ln4eQggpJw8RSjMuAkFUKSMYAx4sPRgYDmQhEgJfeAkkOxAmNiUbMBgZHwEdEhotJzwkOyM3DTIEFDAjCAcAP0oIfiYzPCMsICNLKSs+ER4ICQAvChgJHz0yGSgkMksADjEwDnkWDRE1CwoTEDILBS8wP3oGPhpCCQcPQhQOCSIzLAkCOiMrGAsuNzQdGEdPAxgKLTwyGX4RITwpKT0BEh4bEDcVCzclOz95PCcuLwctPBFPHgcyNzscNwA8LHkdJDERfi08NyAuGxAwEB8OPS44JwEmNx0iDBYwMxIMHVs4IBo2PDUNNh8jOCI3NTQ/KQ40Jwo9GR8VMQcIOSc7ITwyL0sMNTQzPDMbNj8rHHwlJSwcOCU6K3oXNAwoehoQOzAbIRMlOzI3NhIdGC0kDhktCyIZGRsONSI7G34UEhEYBzUzN2wlBBkUOnIcRChzCi08Mig6ERg+fw HTTP/1.1
Host: ereissomeone.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1213
date: Wed, 28 May 2025 23:03:50 GMT
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
set-cookie: AWSALB=0C/3IGns6nexQROHY1rTudWFYdbw4lOXS+3EMNZaH8zvWwwOYbDCDXrH6xY6ZR2xOAn5wGBn3axROVPRaa/4UsCvQWoWRKvkbIWeQ23AQdyxkTHpLDg0GKdHJJla; Expires=Wed, 04 Jun 2025 23:03:50 GMT; Path=/
AWSALBCORS=0C/3IGns6nexQROHY1rTudWFYdbw4lOXS+3EMNZaH8zvWwwOYbDCDXrH6xY6ZR2xOAn5wGBn3axROVPRaa/4UsCvQWoWRKvkbIWeQ23AQdyxkTHpLDg0GKdHJJla; Expires=Wed, 04 Jun 2025 23:03:50 GMT; Path=/; SameSite=None
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kdBUmoEtPYIuyvbo5ZTSominWO_D2vI8BYT5eWQb4K_lrJXFYQwRpw==
X-Firefox-Spdy: h2

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

142.250.74.35

200 OK

7.7 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 May 2025 20:17:34 GMT
expires: Thu, 28 May 2026 20:17:34 GMT
cache-control: public, max-age=31536000
age: 9975
last-modified: Wed, 23 Apr 2025 16:07:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/transition-a1567fd4.js

172.67.69.166

200 OK

28 kB

URL GET
datanodes.to/theme_2023/dist/assets/transition-a1567fd4.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (27942)
Size
28 kB (27943 bytes)
Hash
6b949827cd27578f8d96e716764745fd
fc5d054a81cc11c95726bf55f11fc0c96ae0f58b
579bb21ed189cf13357365e55a2dc69ca1e3866ce7566362e163cfe86b3f3aee

HTTP Headers

GET /theme_2023/dist/assets/transition-a1567fd4.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-6d27"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2Fsk4mR2sp%2F2O1CXgcyQHDtmDY9Oh7usyDNphMDa1JE%2BuxZU5%2FAaeaQyPZEoD9D5qnR59u1LSziNB6jaCsdpLx2oz%2BV7lxzPUiFNeG1xTpKI3MieDQehz5kedn%2BIrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9471633b7ddf0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=3004&min_rtt=383&rtt_var=4890&sent=210&recv=86&lost=0&retrans=0&sent_bytes=218054&recv_bytes=16112&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1772&x=0"
X-Firefox-Spdy: h2

GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintC1:23:6B:8B:E9:B9:28:BB:DE:15:E9:38:B1:9E:50:AA:7D:13:C9:E9
ValidityTue, 29 Apr 2025 19:30:06 GMT - Tue, 22 Jul 2025 19:30:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:xN6QYfqkajWtVMnIPMjZNzbnotan6A:zHdSQs8ZV665hsJL; Expires=Fri, 28-May-2027 23:03:51 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AdBytiM-CLXLJt0FgRTcyZmEOGbL6i-aGs7MUUiiE87eSuburrSbW7Q597z1W2ZpJz5Kwx8nvEHZ
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-lppdVWj_gQp7jDuG6tm6Tw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET dasesiumworkhovdim.com/dnhTWlZZRzApaxMwATM1HS4eCBAsPTcxFDctBj4hJz0JDwQYMXUuPxJFYmtjTk5mbXAGETdnZ1ALJzsiAwtua3AfFjU1a1AObmt4RUx9aWBYTHUva0deJyo3EUVifCYCDD9nZ0FMa25hRUxgamNETQ

104.21.18.69

204 No Content

0 B

URL GET
dasesiumworkhovdim.com/dnhTWlZZRzApaxMwATM1HS4eCBAsPTcxFDctBj4hJz0JDwQYMXUuPxJFYmtjTk5mbXAGETdnZ1ALJzsiAwtua3AfFjU1a1AObmt4RUx9aWBYTHUva0deJyo3EUVifCYCDD9nZ0FMa25hRUxgamNETQ
IP
104.21.18.69:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdasesiumworkhovdim.com
Fingerprint17:BE:CF:55:7A:BA:21:C9:48:F4:87:CE:78:6F:18:CB:DA:95:97:22
ValidityTue, 22 Apr 2025 10:32:08 GMT - Mon, 21 Jul 2025 11:30:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dnhTWlZZRzApaxMwATM1HS4eCBAsPTcxFDctBj4hJz0JDwQYMXUuPxJFYmtjTk5mbXAGETdnZ1ALJzsiAwtua3AfFjU1a1AObmt4RUx9aWBYTHUva0deJyo3EUVifCYCDD9nZ0FMa25hRUxgamNETQ HTTP/1.1
Host: dasesiumworkhovdim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 28 May 2025 23:03:50 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ZTAek92S2lLTjf%2BDmKh9pSpdbl4KnKjdz5P0SUza8DZQ8og0SNudpug7%2BUQo5AlLDI0EmYndeoyAb02AAgM9hr4u9N65lqEZj66MQlEPkLcv4B8O"}]}
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
server: cloudflare
cf-ray: 9471633d3cd3b4ee-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiMzhgj8mo1mrrt_lrOwYZHlRu3AWw2wWiJSFtd-RSXys_9IaJ-xfVrup0JYpr0uSdB_jZ5zLQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S839920244%3A1748473431376324

142.250.147.84

403 Forbidden

0 B

URL GET
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiMzhgj8mo1mrrt_lrOwYZHlRu3AWw2wWiJSFtd-RSXys_9IaJ-xfVrup0JYpr0uSdB_jZ5zLQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S839920244%3A1748473431376324
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.google.com
FingerprintFB:A6:1D:0D:68:F3:93:B4:34:F8:25:60:BF:1D:20:2E:15:8E:7D:2A
ValidityTue, 29 Apr 2025 19:28:10 GMT - Tue, 22 Jul 2025 19:28:09 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AdBytiMzhgj8mo1mrrt_lrOwYZHlRu3AWw2wWiJSFtd-RSXys_9IaJ-xfVrup0JYpr0uSdB_jZ5zLQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S839920244%3A1748473431376324 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-fCzix8zS9ahd1Dk1E348Tw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
content-security-policy-report-only: script-src 'unsafe-inline' 'unsafe-eval' blob: data: https://ajax.googleapis.com/ajax/libs/jquery/3.6.4/jquery.min.js https://translate.google.com/translate_a/element.js https://www.google.com/recaptcha/api.js https://www.google.com/tools/feedback/load.js https://www.google.com/tools/feedback/open.js https://www.google.com/tools/feedback/open_to_help_guide_lazy.js https://www.google.com/tools/feedback/help_api.js https://www.gstatic.com/inproduct_help/service/lazy.min.js https://www.gstatic.com/inproduct_help/api/main.min.js https://www.gstatic.com/inproduct_help/chatsupport/chatsupport_button_v2.js https://www.gstatic.com/feedback/js/help/prod/service/lazy.min.js https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.google.com/tools/feedback/chat_load.js https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/_/mss/boq-one-google/_/ https://www.gstatic.com/og/_/js/ https://apis.google.com/js/api.js https://apis.google.com/js/client.js https://www.googletagmanager.com/gtag/js https://www.google-analytics.com/analytics.js https://www.googletagmanager.com/gtag/destination https://www.gstatic.com/_/mss/boq-identity/_/js/k=boq-identity.AccountsSignInUi.en.01cbH3b9GVo.es5.O/ https://apis.google.com/_/scs/abc-static/_/js/ https://translate.googleapis.com/_/translate_http/_/js/ https://www.gstatic.com/recaptcha/releases/;report-uri /v3/signin/_/AccountsSignInUi/cspreport/fine-allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET datanodes.to/h10wazter9mf/Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar

172.67.69.166

302 Found

83 kB

URL User Request GET
datanodes.to/h10wazter9mf/Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type

Size
83 kB (82686 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /h10wazter9mf/Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 28 May 2025 23:03:48 GMT
location: https://datanodes.to/download
cf-cache-status: BYPASS
set-cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; domain=.datanodes.to; path=/; expires=Thu, 29-May-2025 00:03:48 GMT
lang=english; domain=.datanodes.to; path=/
file_code=h10wazter9mf; domain=.datanodes.to; path=/; expires=Thu, 29-May-2025 00:03:48 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nw%2Ft%2BJW12DKeE85AfOd5Tdnyz0IeaX2TEhI6qV%2FEu%2FaIhWBoDzcp9EonveQvBRApPiJSuiVUX1vInCCnpPCXd7t5c%2BM3OSp9BaXlJKbLDqEYveIEgCeqGe%2Bt5208bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716330aed50afe-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=5935&min_rtt=483&rtt_var=10925&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3201&recv_bytes=1172&delivery_rate=6873417&cwnd=254&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=138&x=0"
X-Firefox-Spdy: h2

GET qn.ethnicspue.com/1clkn/31269

23.109.170.72

200 OK

6 B

URL GET
qn.ethnicspue.com/1clkn/31269
IP
23.109.170.72:443
ASN
#7979 SERVERS-COM

Requested by
https://datanodes.to/download
Certificate
IssuerLet's Encrypt
Subjectqn.ethnicspue.com
Fingerprint13:C7:7F:6D:6E:BA:A5:B1:24:05:53:A9:75:60:09:DE:81:37:18:50
ValidityMon, 31 Mar 2025 06:33:52 GMT - Sun, 29 Jun 2025 06:33:51 GMT

File type
ASCII text, with no line terminators
Size
6 B (6 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/31269 HTTP/1.1
Host: qn.ethnicspue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 May 2025 23:03:49 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9zV1OhDAcBHC%2B2dUFnYQDeASKlPDqi1fwkRT6B%2BtCuykV9PYSE32bTH6T8TwvKB7gb8kZ4afgeGKsbdqaV21ZD62o%2Br5tGl72vC1ZxceR46zWzol%2BJhfhtC7Cus5tES4TabJq6AYjKcPjof6aqza7jhD3VmiZIV4OMWdIe2v2lWwRItJiIaSvytJovg4hPoxFyJ7rIyt9ZL9EYNYizO%2BQviktj2V%2BQcDKPE883N9m4UZjl07JxEc8WSEJ%2FgtOg3A0GfuNVNJ6deYGmFl2%2F%2F73ONxZiUTSpgZCbNw72R%2B3Z03l; expires=Thu, 29-May-2025 23:03:49 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 29-May-2025 23:03:49 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

GET fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

142.250.74.35

200 OK

7.8 kB

URL GET
fonts.gstatic.com/s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v23/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://datanodes.to
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 May 2025 02:09:34 GMT
expires: Wed, 27 May 2026 02:09:34 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 23 Apr 2025 16:07:25 GMT
content-type: font/woff2
age: 161655
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/open-closed-f13f7375.js

172.67.69.166

200 OK

3.5 kB

URL GET
datanodes.to/theme_2023/dist/assets/open-closed-f13f7375.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (1681)
Size
3.5 kB (3487 bytes)
Hash
7b96d51da905a5c0edc478d43d79c7c8
17dd5bebfca4ffd4e42f72ef4ab9434a00d3e70f
d6d247a9877ed90663542f79369d23970577ba3910d707664fc06492d3878452

HTTP Headers

GET /theme_2023/dist/assets/open-closed-f13f7375.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-d9f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4zYRH3R6tGpCQe%2BVa1tbtsf8nA2iOefmZWoZI6R9rESC6gIwBm9DR9PakjGmk4fA5pAETQJxZlqEVapx8uz4C2o83qUPoqp0uHb9WoMxmYA%2FZf%2F8J5V%2BM3bGcpbqoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9471633b7de20afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=1653&min_rtt=383&rtt_var=1840&sent=226&recv=93&lost=0&retrans=0&sent_bytes=235867&recv_bytes=16112&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1776&x=0"
X-Firefox-Spdy: h2

GET undefined/ZE94cmkFLRsfVgVyGlQcFiNFV1siako0DVUmTAAKDDcfQhAFOk9cCgggDRYPFiAWBkcKKgxXWyIqLUMNHStKIx4rDQ8gPh0sXUArIiQIJDAJCTwjBSIhGyMgIg4sJBgiJyEjJA4kHDceISgdIzA9HhIZAiwdEycLDA4tMCpQdjImJEF9Pj8hMSU7MCc+Fks3DCIoF0IICB4rMQMmPilDLCIBAiQ5NX8xHycPdxkxEA9qSjAhDDw+FgQxfykZGQ4sEzAhMAwpV1smBzo/JS4MKio7Mh5BO1gACS41IwoXPRYrPQ0uKjsyHhMiARwNLTozDwI+OD49NkE3OFQJHzQ/SSs+JCohJy5COAgWFSAuMxkqRAoPDTAzEz1/PyABJhYqNCg2fi4YM1QBMCQxPiMpGiwqBiw7PCMNAEAzMB0/JFsAeikeLDYtFStPDjwXHBlZCB4BIwo9OTo9

0.0.0.0

0 B

URL GET
undefined/ZE94cmkFLRsfVgVyGlQcFiNFV1siako0DVUmTAAKDDcfQhAFOk9cCgggDRYPFiAWBkcKKgxXWyIqLUMNHStKIx4rDQ8gPh0sXUArIiQIJDAJCTwjBSIhGyMgIg4sJBgiJyEjJA4kHDceISgdIzA9HhIZAiwdEycLDA4tMCpQdjImJEF9Pj8hMSU7MCc+Fks3DCIoF0IICB4rMQMmPilDLCIBAiQ5NX8xHycPdxkxEA9qSjAhDDw+FgQxfykZGQ4sEzAhMAwpV1smBzo/JS4MKio7Mh5BO1gACS41IwoXPRYrPQ0uKjsyHhMiARwNLTozDwI+OD49NkE3OFQJHzQ/SSs+JCohJy5COAgWFSAuMxkqRAoPDTAzEz1/PyABJhYqNCg2fi4YM1QBMCQxPiMpGiwqBiw7PCMNAEAzMB0/JFsAeikeLDYtFStPDjwXHBlZCB4BIwo9OTo9
IP
0.0.0.0:0
ASN
#0

Requested by
https://datanodes.to/download

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ZE94cmkFLRsfVgVyGlQcFiNFV1siako0DVUmTAAKDDcfQhAFOk9cCgggDRYPFiAWBkcKKgxXWyIqLUMNHStKIx4rDQ8gPh0sXUArIiQIJDAJCTwjBSIhGyMgIg4sJBgiJyEjJA4kHDceISgdIzA9HhIZAiwdEycLDA4tMCpQdjImJEF9Pj8hMSU7MCc+Fks3DCIoF0IICB4rMQMmPilDLCIBAiQ5NX8xHycPdxkxEA9qSjAhDDw+FgQxfykZGQ4sEzAhMAwpV1smBzo/JS4MKio7Mh5BO1gACS41IwoXPRYrPQ0uKjsyHhMiARwNLTozDwI+OD49NkE3OFQJHzQ/SSs+JCohJy5COAgWFSAuMxkqRAoPDTAzEz1/PyABJhYqNCg2fi4YM1QBMCQxPiMpGiwqBiw7PCMNAEAzMB0/JFsAeikeLDYtFStPDjwXHBlZCB4BIwo9OTo9 HTTP/1.1
Host: undefined
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET www.gstatic.com/recaptcha/api2/logo_48.png

142.250.74.99

200 OK

2.2 kB

URL GET
www.gstatic.com/recaptcha/api2/logo_48.png
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdhelkqAAAAAH_f47GPnSuEgnjRo4Pf0ukRioGs&co=aHR0cHM6Ly9kYXRhbm9kZXMudG86NDQz&hl=en&v=jt8Oh2-Ue1u7nEbJQUIdocyd&size=invisible&cb=gad9k1lz08db
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint58:93:D6:74:22:41:22:FC:10:8C:BD:51:81:F5:29:DE:00:91:9B:FD
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/jt8Oh2-Ue1u7nEbJQUIdocyd/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 May 2025 10:27:36 GMT
expires: Thu, 29 May 2025 10:27:36 GMT
cache-control: public, max-age=604800
age: 563775
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap

142.250.74.10

200 OK

8.4 kB

URL GET
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap
IP
142.250.74.10:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintE8:3A:D1:2C:16:97:56:94:8B:01:F8:ED:EB:81:17:F8:D7:6C:B2:41
ValidityTue, 29 Apr 2025 19:29:18 GMT - Tue, 22 Jul 2025 19:29:17 GMT

File type
ASCII text
Size
8.4 kB (8395 bytes)
Hash
a1d4e0616226c98268848dcf99794ee1
93d82dcf1ed351b8797bd7ec3986b61bea2dd343
d585f2a922a586533e9e88963865d16543e72c91e142a9e2b6774a71c0ce4eb7

HTTP Headers

GET /css2?family=Poppins:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 May 2025 23:03:49 GMT
date: Wed, 28 May 2025 23:03:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET datanodes.to/images/logo.png?v=1

172.67.69.166

200 OK

15 kB

URL GET
datanodes.to/images/logo.png?v=1
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
PNG image data, 364 x 230, 8-bit/color RGBA, non-interlaced
Size
15 kB (15350 bytes)
Hash
c9338a5cbd74ee24aee2175a5ac9cfac
eb519e37c50d2dd8908d80a2dd203879f2a430c9
e73da34c3963cd34608bc4016fd1060cf58de21ef14321a153ec45bc004ff56e

HTTP Headers

GET /images/logo.png?v=1 HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/download
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:49 GMT
content-type: image/png
content-length: 15350
last-modified: Tue, 16 Jan 2024 14:16:42 GMT
etag: "65a68fca-3bf6"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xESva70U41912QDsfPB%2FtrcATk3y1fyPYuW1dfUndGAfNewBxRBKjqIuLlXh9jJJ2HPObqIDIJx%2BOdsKvrHuInXNY1d3UKs%2FvwRHAjFp2AlhOC5gKCosiTOM0%2BrZ5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 94716334994b0afe-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1757&min_rtt=445&rtt_var=1888&sent=98&recv=34&lost=0&retrans=0&sent_bytes=111383&recv_bytes=1945&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=769&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/cdn-cgi/challenge-platform/scripts/jsd/main.js

172.67.69.166

302 Found

8.5 kB

URL GET
datanodes.to/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type

Size
8.5 kB (8458 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Wed, 28 May 2025 23:03:49 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/6fab0cec561d/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fUFbGYGo6XHd%2F%2FNgKm4BAcFyWdhtuqfL5UJSgCRto%2BT6Fsx0KwfRARDdFfIh9Fd%2FwHHRAxim09gTB7RK9IQ4of1Dkurxa4M9hAdXq9FcKAvD%2FlZc0Sg%2B2SZ9LZpuCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 947163381b810afe-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=3053&min_rtt=445&rtt_var=3559&sent=148&recv=40&lost=0&retrans=0&sent_bytes=173513&recv_bytes=2326&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1234&x=0"
X-Firefox-Spdy: h2

GET datanodes.to/theme_2023/dist/assets/Tooltip-298cb247.js

172.67.69.166

200 OK

17 kB

URL GET
datanodes.to/theme_2023/dist/assets/Tooltip-298cb247.js
IP
172.67.69.166:443
ASN
#13335 CLOUDFLARENET

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectdatanodes.to
Fingerprint37:77:73:11:B8:A3:75:DF:17:A4:43:CB:D8:37:F9:B8:23:4A:C4:63
ValidityThu, 10 Apr 2025 04:51:00 GMT - Wed, 09 Jul 2025 05:50:41 GMT

File type
JavaScript source, ASCII text, with very long lines (16550)
Size
17 kB (16551 bytes)
Hash
e9abb5c958cc124ca4108f522fececdb
cb0430b6ad9229cf2179a201e15360e496f24491
8125fdfeff86def1e8543526af797cbb7eb4bd87a161da3f18968b3fd8a83e53

HTTP Headers

GET /theme_2023/dist/assets/Tooltip-298cb247.js HTTP/1.1
Host: datanodes.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://datanodes.to/theme_2023/dist/assets/FileActions-fa6032ae.js
Cookie: file_name=Far_Cry_3_-_Duology_--_fitgirlrepacks.org_--_.part1.rar; lang=english; file_code=h10wazter9mf; affiliate=CXrPJNMDbtIJ2fSUcUnMp3GjxaPxslYY%2F5On4O%2BM0M7HnF1fSqXsxuWprpnH1itz5V8Kb46YqodF1Qx5uWgQZSTwTDPVbZg%3D; _ga_7DP7NV2LKF=GS2.1.s1748473429$o1$g0$t1748473429$j60$l0$h0; _ga=GA1.1.480715960.1748473430
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 28 May 2025 23:03:50 GMT
content-type: application/javascript
last-modified: Sun, 09 Feb 2025 16:17:00 GMT
etag: W/"67a8d4fc-40a7"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7079
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kXRfQfUsEj5YQri7n2Y%2FBPyePsKduY%2BQvZ4mxhz9%2BONF17d7s8dywuH%2FNPNf9W58AO2mr3FOt%2BBsNx1YxJCw0ec11h6kWx2QIrndfCwwshhicqOdT%2BImnVQ96woRaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 9471633b7dde0afe-OSL
content-encoding: br
server-timing: cfL4;desc="?proto=TCP&rtt=2055&min_rtt=383&rtt_var=2824&sent=219&recv=90&lost=0&retrans=0&sent_bytes=228413&recv_bytes=16112&delivery_rate=61700815&cwnd=256&unsent_bytes=0&cid=7bf0f8a1feb7224d&ts=1773&x=0"
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiM-dzVfjd9Sq77QUwEPPUVEmTO4uAM-JviVCYZpSF0am4xIeHd5JiYIe-gURm-632jUvTI5

142.250.147.84

302 Found

0 B

URL GET
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiM-dzVfjd9Sq77QUwEPPUVEmTO4uAM-JviVCYZpSF0am4xIeHd5JiYIe-gURm-632jUvTI5
IP
142.250.147.84:443
ASN
#15169 GOOGLE

Requested by
https://datanodes.to/download
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
FingerprintC1:23:6B:8B:E9:B9:28:BB:DE:15:E9:38:B1:9E:50:AA:7D:13:C9:E9
ValidityTue, 29 Apr 2025 19:30:06 GMT - Tue, 22 Jul 2025 19:30:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AdBytiM-dzVfjd9Sq77QUwEPPUVEmTO4uAM-JviVCYZpSF0am4xIeHd5JiYIe-gURm-632jUvTI5 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://datanodes.to/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:OSVA6eouYKQ8eA6TJg0zXEj7at78Zg:mVH9pOe3_eq_1pWy;Path=/;Expires=Fri, 28-May-2027 23:03:51 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 28 May 2025 23:03:51 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AdBytiO2IeBHLXZlcR9OgM1XZaUufFGAWi4XHI4BtvD3egED30d4NZoAVSa6H029buUruxJX2PXlig&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-734514080%3A1748473431336453
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-WAx89G--AO2Hitx2Y_oDDw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 411
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (34)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML